Security

 View Only
Back to discussions
Expand all | Collapse all

Machine Auth Cacheing failed authentications?

This thread has been viewed 1 times

  • 1.  Machine Auth Cacheing failed authentications?

    Posted Apr 02, 2019 09:45 AM

    Recently one of our security testers changed his OU, and forgot to change it back before he left for the day.

     

    When he came back in he was denied due to not being in the correct OU.  Typically when this happens, our desktop group takes the PC to their work room, puts the device back onto the network and corrects the OU.  GPResult showed the PC now in the correct OU.

     

    When they took the machine back to the users desk, it still failed to auth.  Looking in the Access Tracker we show it still passing the incorrect OU information.

     

    Cached good authentications is expected, but does clearpass also cache failed authentication credentials?  

     

    Thank you,

     

    Howard



  • 2.  RE: Machine Auth Cacheing failed authentications?
    Best Answer

    Posted Apr 02, 2019 09:57 AM

    It does cache group lookups:  Please see here for ideas on how to fix:  https://community.arubanetworks.com/t5/Security/Update-Clearpass-with-fresh-AD-info/td-p/145910



  • 3.  RE: Machine Auth Cacheing failed authentications?

    Posted Apr 02, 2019 10:30 AM

    Thank you,  I will change these settings, test and report back.



Related Content