Security

Reply
Occasional Contributor I

ClearPass endpoint profile expiry?

I'm finding that some endpoints on our network profile fine when initially switched on, but if left powered on for a long time (roughly 5 days?) seem to drop back to not profiled. Is this expected behaviour? I understand the profiler uses DHCP discovers as one method of identifying the device, and I could understand that perhaps devices with long leases might not DHCP discover very often and thus might not get profiled very often. What I can't seem to find documented is in what circumstances an already profiled device will go back to not profiled or any settings to adjust that.

Regular Contributor I

Re: ClearPass endpoint profile expiry?

Are you marking these endpoint as known?

 

Maybe there is endpoint cleanup configured, that causes the endpoints to be deleted. Please check it under Cluster-Wide Parameters > Cleanup Intervals 

 

 



- - - - Aruba ACCX #748, ACDX #758, ACMP, ACEAP | HPE Master ASE - - - -
- - - - - - - Feel free to give kudos or accept as a solution! - - - - - - - - -
Occasional Contributor I

Re: ClearPass endpoint profile expiry?

The endpoints are marked as known, and additionally the cleanup interval for profiled unknown endpoints is set to 60 days so I don't believe that should be happening.

 

I guess the easy way to prove this is to put something in the description/attributes and see if it's still there once the endpoint goes back to not profiled.

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: