Security

 View Only
last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

what is the cloud auth behavior if lost connection to the aruba central

This thread has been viewed 15 times
  • 1.  what is the cloud auth behavior if lost connection to the aruba central

    Posted Aug 29, 2024 05:11 AM

    Hi All

    I just want to know if anyone can tell me what the cloud auth behavior is for both wireless and wired network 802.1x if it loses connection to the Aruba central.



    ------------------------------
    Sky Wong
    ------------------------------


  • 2.  RE: what is the cloud auth behavior if lost connection to the aruba central

    Posted Aug 29, 2024 05:26 AM

    Hi

    The result is the same as if you can't communicate with a local Radius server. You will get a timeout as there are no answer from the Radius server.

    In a CX switch you can utilize critical-role to assign a temporary role. That specifies the role that is applied when the RADIUS server is unreachable for authentication or when there is a request timeout.

    You can also specify cached reauth for already authenticated connections on the switch, to let the switch assign the same role again if there are no response from the Radius server during reauthentication.



    ------------------------------
    Best Regards
    Jonas Hammarbäck
    MVP Guru 2024, ACEX, ACDX #1600, ACCX #1335, ACX-Network Security, Aruba SME, ACMP, ACSA
    Aranya AB
    If you find my answer useful, consider giving kudos and/or mark as solution
    ------------------------------



  • 3.  RE: what is the cloud auth behavior if lost connection to the aruba central

    Posted Aug 29, 2024 10:49 AM

    No such thing as "fail open" in wireless. On the wired side exactly as @jonas.hammarback said below.




  • 4.  RE: what is the cloud auth behavior if lost connection to the aruba central

    EMPLOYEE
    Posted Aug 29, 2024 11:52 AM

    https://www.arubanetworks.com/techdocs/aos/aos10/survivability/



    ------------------------------
    Carson Hulcher, ACEX#110
    ------------------------------



  • 5.  RE: what is the cloud auth behavior if lost connection to the aruba central

    EMPLOYEE
    Posted Aug 29, 2024 06:34 PM

    and  most of the auth survivbility that are mentioned in the above URL also applies to Aruba Instant OS as well.



    ------------------------------
    If my post was useful accept solution and/or give kudos.
    Any opinions expressed here are solely my own and not necessarily that of HPE or Aruba.
    ------------------------------