Security

Hi all,

recently we received our first CX switch. So I started configuring it to be working the same as our other Aruba switches. Now I encountered the following: in our current Aruba switches, Clearpass logs what commands were executed by which administrators. With the CX switch it's ok to login as an administrator through tacacs (same as the other switches), but it doesn't log the administrator commands. It says: "no enforcement profiles matched to perform command authorization". I have only 1 enforcement profile for tacacs and it works fine for the current Aruba switches (and even for a few old cisco switches too), but not for the CX. I checked if there was anywhere a reference in that enforcement profile for a type of switch, but didn't find that.

So my goal is getting these authorizations like the current Aruba switches in the CX switches  too. Can anyone help in this?

Below some screenshots.

Aruba working fine:

CX authorizations:

Thanks in advance!

you can check the TACACS section of this short tutorial

Hi all,

recently we received our first CX switch. So I started configuring it to be working the same as our other Aruba switches. Now I encountered the following: in our current Aruba switches, Clearpass logs what commands were executed by which administrators. With the CX switch it's ok to login as an administrator through tacacs (same as the other switches), but it doesn't log the administrator commands. It says: "no enforcement profiles matched to perform command authorization". I have only 1 enforcement profile for tacacs and it works fine for the current Aruba switches (and even for a few old cisco switches too), but not for the CX. I checked if there was anywhere a reference in that enforcement profile for a type of switch, but didn't find that.

So my goal is getting these authorizations like the current Aruba switches in the CX switches  too. Can anyone help in this?

Below some screenshots.

Aruba working fine:

CX authorizations:

Thanks in advance!