Security

Hi, 

I've tryed a lot but i cant connect my clearpass to my domain, the FQDN is correct and username and password are also correct but i recived follow message:

Adding host to AD domain...
INFO - Fetched REALM 'CPASS.TESTDOMAIN.COM' from domain FQDN
'cpass.testdomain.com'
INFO - Fetched the NETBIOS name 'CPASS'
INFO - Creating domain directories for 'CPASS'
INFO - Using Administrator as the CPASS's username
Enter Administrator's password:
kinit succeeded but ads_sasl_spnego_krb5_bind failed: Unspecified GSS
failure. Minor code may provide more information : Server not found in Kerberos database
Failed to join domain: failed to connect to AD: Unspecified GSS
failure. Minor code may provide more information : Server not found in Kerberos database
INFO - Restoring smb configuration
INFO - Restoring krb5 configuration file
INFO - Deleting domain directories for 'CPASS'
ERROR - ClearPass failed to join the domain CPASS.TESTDOMAIN.COM with
domain controller as cpass.testdomain.com
Join domain failed 

The Clearpass-server has a static IP (as he shuld) and is knowen to the domain

best greads

Max

https://community.arubanetworks.com/t5/AAA-NAC-Guest-Access-BYOD/Common-Clearpass-domain-Joining-errors/ta-p/192591

thank you, I've sean it bevor but it wasent helpfull... i've made nslookup from clerpass to the domain and it works fine and the DC and the Clearpass-server are in the same subnet so the DC kann see him. But it still dose not worke

Hi,

Is there a firewall between you Clearpass and the AD? I had to create new rules on the windows firewall for LADP ports that Clearpass use to join to AD. Also check the time on both servers clearpass and AD.

Hi,

thank you all for the support i solved the Problem ... it was just stupidity of my. It turned out that i forget to name the DC so he had the domain but nothing else.

sorry for costing you such trubble