Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

802.1x client certificate expired should authenticate with MAB

This thread has been viewed 5 times

  • 1.  802.1x client certificate expired should authenticate with MAB

    Posted Sep 22, 2018 09:41 AM
    Hi,

    I am having HP switch 5310 EI and going to integrate with Clearpass for 802.1x and MAB. I would like to know if an windows 802.1x capable device having wrong 802.1x profile or profile with expired certificate then that device can fall in MAB after certain 802.1x fail attempt . If yes then what setting do I need to configure .?


  • 2.  RE: 802.1x client certificate expired should authenticate with MAB

    EMPLOYEE
    Posted Sep 22, 2018 09:52 AM
    It should require no extra configuration.


  • 3.  RE: 802.1x client certificate expired should authenticate with MAB

    Posted Sep 22, 2018 09:55 AM
    Thanks Tim for your response. If windows client having 802.1x setting but wrong certificate then this windows client will automatically fall in MAB or will stuck with fail auth.


  • 4.  RE: 802.1x client certificate expired should authenticate with MAB

    EMPLOYEE
    Posted Sep 22, 2018 10:04 AM
    I believe it will fail through but it's been a while since I tested Comware. Did you try it?