Security

 View Only

  • 1.  clearpass onguard login credentials keeps popping up

    Posted Dec 19, 2022 09:42 AM
    Hi

    clearpass onguard login credentials keeps popping up continuously & when I use my credentials it shows a massage (Authentication Failed ) 

    but no other issue except that.

    Knowing that this happened on the next day when I renewed the HTTPS server certificate and it is a CA cert

    in access tracker this is what shows me
    TACACS
    		 username [Policy Manager Admin Network Login Service] REJECT


    clearpass onguard mode: check health- no authentication 

    how to fix it,please?


  • 2.  RE: clearpass onguard login credentials keeps popping up

    Posted Dec 20, 2022 03:25 AM

    Kind of figured out the problem, I've two devices one publisher & subscriber but the subscriber is out of sync for more that two days   But is pingable

    the FIPS is enabled  

    And somehow can not drop the subscriber from both and the VIP

    the issue is that onGuard is connected to the subscriber after the renewal somehow 

    how can I fix subscriber & why or how to make OnGuard connect back to the master knowing that I turned off the all the services on the subscriber but OnGuard keeps waiting until the subscriber is back it looks like the OnGuard doesn't see the publisher  

    if I turns off FIPS what will happen 

    any help pls


    Original Message


  • 3.  RE: clearpass onguard login credentials keeps popping up

    Posted Dec 20, 2022 03:34 AM
    Hi

    Normally you should only enable FIPS if you have a requirement to be FIPS compliant.
    Do you have virtual IP addresses (VIP) configured? If so you need to remove the VIP configuration from the Subscriber before you drop the subscriber from the cluster and then make it a subscriber again. 
    As the node have been out of sync for more than 24 hours it will not be possible to come back in a functioning cluster without dropping the node.

    If you can't drop the node, open a support ticket with Aruba TAC to work on the issue.

    ------------------------------
    Best Regards
    Jonas Hammarbäck
    ACCX #1335, ACMP, ACDP, ACNSP, ACEP, ACSA
    Aranya AB
    If you find my answer useful, consider giving kudos and/or mark as solution
    ------------------------------

    Original Message


  • 4.  RE: clearpass onguard login credentials keeps popping up

    Posted Dec 20, 2022 03:45 AM
    Thanks
    Original Message


Related Content