Clearpass Tacacs+ with aruba controller
02-21-2019 04:52 AM
Have configured Aruba controller and clearpass for tacacs+
I am authentication with clearpass local user repositary and I am able to authenticate perfectly.
But I am still able to login into the contoller through its local username and password also.
I want the users to login through username and password provided in clearpass local user repositary only.
any ideas on how can i stop authenticating admins from logging in through local username.
Re: Clearpass Tacacs+ with aruba controller
02-21-2019 06:29 AM
depends on what you want to achieve.
You can diable local authentiocation totally.
AOS8: Configuration -> System -> Admin page.
I prefere to leave built in admin for emergencies. So I do not disable local login.
Password for local admin known by only few employees or somehow put into safe place for emergency.
Delete all other local users.
That way you'll see rejected login in CPPM, if someone logs in as "admin". But login still will work, if he knows the secured admin password.
Please Accept as solution, if my post was helpful.