Security

last person joined: 18 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

CPPM Onboard Single point of failure

This thread has been viewed 2 times

  • 1.  CPPM Onboard Single point of failure

    Posted Sep 07, 2020 04:40 AM

    I'm having a doubt. After I deploy Clear pass in a network and configure it to dynamically push configurations for the authenticated switches such as Vlans and ACLs (Consider all the devices are Comware) what happens if the clearpass hardware device fails. How will the switches get the configurations. Will there be a single point of failure? How can we overcome it.

     

    Thanks in advance.



  • 2.  RE: CPPM Onboard Single point of failure
    Best Answer

    EMPLOYEE
    Posted Sep 07, 2020 05:03 AM

    CPPM is AAA server used for authentication/authorization and accounting. We can push enforcement profiles to NAD devices based on rules we set in enforcement policy.

     

    If you have standalone CPPM server in event of failure , all authentications will fail to avoid this we always need standby CPPM serer if event of failure standby will take over and start processing auths.