Can I omit or misrepresent the server and service type and versioning information in ClearPass?

last person joined: 2 days ago

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).

Back to discussions

Expand all | Collapse all

Can I omit or misrepresent the server and service type and versioning information in ClearPass?

This thread has been viewed 0 times

1. Can I omit or misrepresent the server and service type and versioning information in ClearPass?

0 Kudos
michaelordona
Posted Aug 20, 2019 07:34 PM

Reply Reply Privately
A security audit found an issue with our ClearPass servers, "response header information leakage". ClearPass is doing our captive portal for our wifi, and ClearPass disclosed the server type or versioning information through response headers. Can I change this response?

Security

Can I omit or misrepresent the server and service type and versioning information in ClearPass?

1. Can I omit or misrepresent the server and service type and versioning information in ClearPass?