Security

Reply
Occasional Contributor I

Can I join Clearpass to multiple domains?

I have a Clearpass instance that I want to service two different domains. The Clearpass server is able to ping both AD servers. I am currently joined to one of them. Is it possible for me to join Clearpass to the other AD server as well so I can perform RADIUS authentications? 

 

I am aware that you cannot join via IP address. But the DNS servers on the side that Clearpass is currently on/joined to is not able to query the other domain.

 

I've tried adding the DNS server that the second domain is on as a "Tertiary DNS" but Clearpass is only querying the "Primary DNS".

 

Any advice would help. Thanks!

Guru Elite

Re: Can I join Clearpass to multiple domains?

The DNS server would require entries for any other domains you want to join.

Note that domain join is only required for 802.1X with legacy EAP methods like PEAPv0/EAP-MSCHAPv2.

| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: