Security

 View Only
  • 1.  EAP-TEAP method

    Posted Oct 21, 2022 04:09 AM
    I'm trying to implement EAP-TEAP as per the bellow :

    Aruba ClearPass Workshop (2021) - Wireless Access #7 TEAP Authentication (EAP Chaining)

    What i cannot get is the Computer Authentication although i have the correct certificate on the machine.
    Should the Identity be checked (anonymous)?

    The certificate authority should be the on-prem internal root CA or the issuing SubCA?
    I noticed that computer authentication when appears gives :
    2022-10-21 05:20:50,256 [Th 282 Req 462670 SessId R0000289d-01-63520201] ERROR RadiusServer.Radius - rlm_ldap: ldap_search() failed: Bad search filter: (|(&(objectClass=user)(sAMAccountName=LABPC$)) (&(objectClass=user)(userPrincipalName=LABPC$)))
    2022-10-21 05:20:50,283 [Th 282 Req 462670 SessId R0000289d-01-63520201] ERROR RadiusServer.Radius - rlm_ldap: ldap_search() failed: Bad search filter: (|(&(objectClass=user)(sAMAccountName=LABPC$)) (&(objectClass=user)(userPrincipalName=LABPC$)))
    Any thoughts?


  • 2.  RE: EAP-TEAP method

    Posted Oct 21, 2022 11:24 AM
    I think you have another post around that Bad search filter for computer authentications. Please resolve that issue before further troubleshooting this one. First make sure that you can do normal computer authentication with EAP-TLS, then switch to TEAP.

    May be best to get Aruba support involved to get this investigated.

    ------------------------------
    Herman Robers
    ------------------------
    If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

    In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
    ------------------------------