Security

Reply
MVP Guru

Re: CPPM AD Authentication Error Message : Reading windind reply failed!

 

Good point.

 

If there's an issue with joining the domain would I been able to complete the process and see it listed under the authentication source ?

 

 

Thank you

Victor Fabian
Lead Mobility Architect @WEI
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Guru Elite

Re: CPPM AD Authentication Error Message : Reading windind reply failed!

Make sure the CPPM computer account was not disabled or removed from the domain.

*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.4 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars
MVP Guru

Re: CPPM AD Authentication Error Message : Reading windind reply failed!

 

Could it be a firewall issue on the domain controller ? 

 

Besides using port 389 what other ports do I need ?

Thank you

Victor Fabian
Lead Mobility Architect @WEI
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
MVP Guru

Re: CPPM AD Authentication Error Message : Reading windind reply failed!


@cjoseph wrote:
Make sure the CPPM computer account was not disabled or removed from the domain.

Let me confirm that.

Thank you

Victor Fabian
Lead Mobility Architect @WEI
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Guru Elite

Re: CPPM AD Authentication Error Message : Reading windind reply failed!

You may need to open TCP 445 / 137 / 138

 

There is a predefined firewall  ruleset in Windows Server that opens all necessary ports for AD. You can modify the scope of that ruleset for the ClearPass server IP(s)


| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
MVP Guru

Re: CPPM AD Authentication Error Message : Reading windind reply failed!

They are going to update the firewall/antivirus ...

Thank you

Victor Fabian
Lead Mobility Architect @WEI
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
MVP Guru

Re: CPPM AD Authentication Error Message : Reading windind reply failed!

 

Removed all the firewall rules and the computer account is there as well but still now luck

Thank you

Victor Fabian
Lead Mobility Architect @WEI
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Guru Elite

Re: CPPM AD Authentication Error Message : Reading windind reply failed!

I would remove it from the domain and add it back.


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.4 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars
MVP Guru

Re: CPPM AD Authentication Error Message : Reading windind reply failed!

 

Golden now .

 

Removed it from the domain and readded it ...and just in case also rebooted clearpass and we are all set...

 

The firewall seem to be blocking it..

 

Thanks guys

Thank you

Victor Fabian
Lead Mobility Architect @WEI
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
MVP

Re: CPPM AD Authentication Error Message : Reading windind reply failed!

Hi,

 

I am experiencing the same issue.

Our CPPM is currently not joined to any Active Directory domains.

However, it does have some Authentication Sources that are Active Directory domains and they are working without issue.

 

I am currently trying to add in a new source, but when the users attempt to authentication the same error message is generated.

 

I have tried few things, like adjusting the bind DN, and toggling "Allow bind using user password", as suggested here and in other posts.

 

I have read a few other posts in the forums about this error but can't seem to find what could be causing the issue in our case.

 

Any other suggestions?

Does joining the CPPM to an AD domain require a reboot?

 

Thank you,

 

Cheers

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: