Security

Reply
Highlighted
Frequent Contributor I

Clearpass Client Certificate Information to External Syslog

Hi,

 

Is it possible to send any client certificate information especially the expiration date to an external syslog server?

 

We use SPLUNK to make great Dashboards for different wireless informations. It would be great to show an overview of the currently used certificates and information about their expire dates.

 

MVP Guru

Re: Clearpass Client Certificate Information to External Syslog

I'm not too sure on syslog, however I've set it up before using snmp traps with an alert configured for 'cppmNodeCertExpiry'.


ACMP, ACSA, ACDX #985
If my post addresses your query, give kudos:)
Frequent Contributor I

Re: Clearpass Client Certificate Information to External Syslog

The Access Tracker shows a lot of certificate informations which is great!

I will test some log settings. Maybe I get the information.

 

We don't have implement SNMP in our SPLUNK solution. So, the logging is our only possibilty at the moment.

Frequent Contributor I

Re: Clearpass Client Certificate Information to External Syslog

It's working now! Set the log level from modul RADIUS Server to DEBUG.

Thats all! Simple.

 

Thanks

Guru Elite

Re: Clearpass Client Certificate Information to External Syslog

You should never run in debug mode during normal operation.

| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: