Security

 View Only
last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

CPPM - authentication with Dell notebooks

This thread has been viewed 25 times
  • 1.  CPPM - authentication with Dell notebooks

    Posted Aug 13, 2024 10:03 AM

    Dear experts,

    We have CPPM as a RADIUS server in our network and we have a problem with Dell Latitude laptops 802.1x authentication. Some models are working well but Latitude 7430 and some 5520 are not able to authenticate. Everytime when I try to authenticate these models on LAN or WLAN there is only timeout in Access Tracker:

    When we try the packet capture we found out that the client stop communicating with server after some time, so thats why there is the timeout:

    The biggest mystery is that the some of the Latitude 5520 are working and some not. These laptops are identical.

    Did someone face this kinf of problem?

    Thanks

    Vaclav



  • 2.  RE: CPPM - authentication with Dell notebooks

    Posted Aug 13, 2024 10:09 AM

    Hi

    • Can you describe a bit more about the clients:
    • Do you have the latest drivers for the WLAN NIC installed?
    • Is it the same version of drivers on machines that work and machines not working?
    • Is your SSID configured with WPA2 or WPA3?
    • Is the error consistent, so a specific machine can never authenticate and another have no problem in the same location?


    ------------------------------
    Best Regards
    Jonas Hammarbäck
    MVP Guru 2024, ACEX, ACDX #1600, ACCX #1335, ACX-Network Security, Aruba SME, ACMP, ACSA
    Aranya AB
    If you find my answer useful, consider giving kudos and/or mark as solution
    ------------------------------



  • 3.  RE: CPPM - authentication with Dell notebooks

    Posted Aug 13, 2024 11:00 AM

    Hi, the clients have Win11 22H1 with Bitdefender installed. And there are latest drivers on all working and not working endpoints. SSID is configured with WPA2. Error is consistent, specific machine can never authenticate on LAN nor WLAN.

    Laptops Dell diagnostic didnt find any errors.

    Vaclav




  • 4.  RE: CPPM - authentication with Dell notebooks

    EMPLOYEE
    Posted Aug 13, 2024 11:17 AM

    Are the working and non-working clients connected to the same network?  Have the exact same supplicant configuration?  What EAP method is being used?



    ------------------------------
    Carson Hulcher, ACEX#110
    ------------------------------



  • 5.  RE: CPPM - authentication with Dell notebooks

    Posted Aug 13, 2024 12:29 PM

    Yes, it is same network and same switch. EAP method is PEAP. Supplicant is configured from GPO, so it is same on all machines.




  • 6.  RE: CPPM - authentication with Dell notebooks

    EMPLOYEE
    Posted Aug 13, 2024 12:39 PM

    Sounds like that specific client has an error then.  Either troubleshoot with Microsoft or, probably quicker, wipe the machine and start over.



    ------------------------------
    Carson Hulcher, ACEX#110
    ------------------------------



  • 7.  RE: CPPM - authentication with Dell notebooks
    Best Answer

    MVP
    Posted Aug 14, 2024 04:38 AM

    PEAP is deprecated. Is Windows Credential Guard enabled on those clients? It has incompatibilities with PEAP authentication.

    With CPM 6.11 & newer, by default there can be some incompatibilities with older TPM chips in clients. I know that affects EAP-TLS. Not sure about PEAP credential storage.



    ------------------------------
    Bruce Osborne ACCP ACMP
    Liberty University

    The views expressed here are my personal views and not those of my employer
    ------------------------------



  • 8.  RE: CPPM - authentication with Dell notebooks

    Posted Aug 27, 2024 04:45 AM

    Thank you all, Credentials Guard was the problem.