Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

2930F crash by login to web-gui with AAA Authentication enabled

This thread has been viewed 13 times

  • 1.  2930F crash by login to web-gui with AAA Authentication enabled

    Posted Jul 30, 2019 09:39 AM

    I have three new aruba 2930F (24 and 48 Port).

     

    I configured TACACS Login to console via Clearpass

    aaa authentication ssh login tacacs local

    aaa authentication ssh enable tacacs local

    aaa authentication login privilege-mode

     

    and Web Login via peap-mschapv2

    aaa authentication web login peap-mschapv2 local

    aaa authentication web enable peap-mschapv2 local

     

    In this config the Switch sometimes crash and reboots after i entered my credentials in the web-login. Mostly when I'm already logged in with the same account via SSH.

     

    Anybody experiencing the same problem? Any Solution

     

    Firmware-Version:

    WC16.08.003 and    WC.16.09.0001

     

    Saved crash information:
    Health Monitor: Write Error Restr Mem Access
    HW Addr=0xe25bf24f IP=0x1e965d88 Task='tHttpd' Task ID=0x37a2d500
    fp: 0x28dac30c sp:0x28dac2fc cpsr: 0x2000001f



  • 2.  RE: 2930F crash by login to web-gui with AAA Authentication enabled

    Posted Jul 30, 2019 10:27 AM

    Do you see this on all 3 new switches?

     

    Can your reproduce it, even when the rest of the config is default? so only the neccessery AAA/radius config in it.

     

    any relevant log info? show log -r



  • 3.  RE: 2930F crash by login to web-gui with AAA Authentication enabled

    EMPLOYEE
    Posted Jul 31, 2019 03:05 AM

    Switch crashes and reboots should be reported through Aruba TAC as they should never occur.



  • 4.  RE: 2930F crash by login to web-gui with AAA Authentication enabled
    Best Answer

    Posted Aug 27, 2019 06:31 AM

    Firmware 16.09.003 should solve the Problem

     

    CR_0000249696

    Symptom/Scenario: When RADIUS authentication is configured for Web UI access and an attempt toestablish an HTTP connection is made to the switch from a web browser, the switch may crash with aHealth Monitor: Read Error Restr Mem Access message and Task='tHttpd'.



  • 5.  RE: 2930F crash by login to web-gui with AAA Authentication enabled

    Posted Jul 15, 2021 01:21 PM
    I am seeing this on a 2530-48G-POE+ switch

    Master -- Saved Crash Information (most recent first):
    ======================================================

    SubSystem 100 went down: 01/01/90 00:00:47
    Health Monitor: Read Error Restr Mem Access
    HW Addr=0x10000000 IP=0x46caf8c Task='tHttpd' Task ID=0xe01bd40
    fp: 0x08983204 sp:0x089831a8 cpsr: 0x2000001f dfsr: 0x00000005

    And it does look like AAA and Radius are configured

    aaa server-group radius "clearpass" host 10.78.192.74
    aaa accounting update periodic 5
    aaa accounting network start-stop radius server-group "clearpass"

    The code is 16.04.0009, so this bug seems to cross platforms

    Is there an Aruba document describing this bug and the fix in 16.09.xxxx code?

    ------------------------------
    Dan Tomkinson
    ------------------------------

    Original Message


  • 6.  RE: 2930F crash by login to web-gui with AAA Authentication enabled

    MVP GURU
    Posted Jul 22, 2021 06:37 AM
    Look release note... there is a all info... (and bug fixed)

    ------------------------------
    PowerArubaSW : Powershell Module to use Aruba Switch API for Vlan, VlanPorts, LACP, LLDP...

    PowerArubaCP: Powershell Module to use ClearPass API (create NAD, Guest...)

    PowerArubaCL: Powershell Module to use Aruba Central

    PowerArubaCX: Powershell Module to use ArubaCX API (get interface/vlan/ports info)..

    ACEP / ACMX #107 / ACDX #1281
    ------------------------------

    Original Message