Security

Not sure why this is happening.. Seems every 3 hours workstations go through this instance. Should do the check, once the check is completed, it updates that their last posture was healthy and returns vlan 10 and username, shortly after it returns another enforcement profile that the last posture was unhealthy and moves them to the quarantine vlan we have setup, then it repeats this process.

Here is the screenshot of the 802.1x wired enforcement

The authentication every three hour looks like the default reauthentication time sent by a VLAN enforcement from ClearPass. 

As this reauthentication must have a current health posture to be a le to allow the client to the normal  LAN 10, but haven't got a health status for a long time the authentication fails the health check and is placed in the quarantine VLAN. This in turn trigger the the Onguard agent to submit health status again, and after a health staus a Dynamic authorization is sent forcing a new authentication. 

This time with a valid posture status. 

As I don't have any customers running Onguard I don't remember exact details with this function.

Start to look into your reauthentication settings.

------------------------------
Best Regards
Jonas Hammarbäck
MVP Guru, ACEX, ACDX #1600, ACCX #1335, ACX-Network Security
Aranya AB
If you find my answer useful, consider giving kudos and/or mark as solution
------------------------------

Original Message:
Sent: Jun 12, 2025 03:55 PM
From: Jscott1
Subject: Enforcement Profile Loop Aruba Clearpass

Not sure why this is happening.. Seems every 3 hours workstations go through this instance. Should do the check, once the check is completed, it updates that their last posture was healthy and returns vlan 10 and username, shortly after it returns another enforcement profile that the last posture was unhealthy and moves them to the quarantine vlan we have setup, then it repeats this process.

Here is the screenshot of the 802.1x wired enforcement