Security

last person joined: 20 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

AAA test through CPPM

This thread has been viewed 4 times

  • 1.  AAA test through CPPM

    Posted Nov 09, 2014 02:02 PM

    Hi,

     

    What service i need to configure in CPPM for AAA test from controller.

     

    Thanks...

    Nik..



  • 2.  RE: AAA test through CPPM
    Best Answer

    Posted Nov 09, 2014 03:41 PM

    You will need to configure a service that can handle PAP or MSCHAPv2 requests. If you configure a NAS-Identifier on the RADIUS server profile on the controller you can use that RADIUS attribute for the service classifcation. 

     

    If you're trying MSCHAPv2 authentications against AD make sure your CPPM is joined to the domain. This is not required for PAP.



  • 3.  RE: AAA test through CPPM
    Best Answer

    EMPLOYEE
    Posted Nov 09, 2014 03:42 PM

    Keep in mind that the test is designed as a connectivity check, not a credential check.

     

    You can use it without creating a service.

     

    Timeout = connectivity issues

    Reject = connectivity with RADIUS server is good



  • 4.  RE: AAA test through CPPM
    Best Answer

    EMPLOYEE
    Posted Nov 10, 2014 01:14 AM

    And for future refrence if someone else is looking at this post. You can do a CPPM AAA test to the AD with a user account in the policy simulation.

     

    Screen Shot 2014-11-10 at 12.10.33 AM.png