Community Home > Discuss > Technology > Security > Re: Error Joining Clearpass to AD

Security

Reply
Frequent Contributor II
dmendez7

Error Joining Clearpass to AD

‎11-29-2017 05:03 PM

Hi there.

 

I'm getting an error while I try to join Clearpass to AD.

 

Scenario:

Clearpass hostname: cppm_enp

IP address: 10.5.0.4

Active directory IP: 10.5.0.10

Domain Controller name (FQDN): PocociAD.seguridadpublica.go.cr as you can see on the following capture:Join AD 3.png

If I go to the command line an put nslookup I get that: Join AD 4.png

Also I have created a new entry on the DNS service for the clearpass server.

Both servers (Clearpass and AD) ping each others.

 

Then, I go to Administration-> Server Manager--> Server configuration and then to Join AD domain option and fullfil the fields as you can see on the following capture: AD Join.PNG

As you can see the NetBios field obtain the value automatically after I write the complete Domain Controller name, then I write the password and Click Save and the process starts. And then it shows the next error: AD Join 2.PNGJust to clarify the time on both servers are synchronized.

 

Thank you in advance!


Daniel Méndez Vargas
ACMP, ACCP
Alert a Moderator
Message 1 of 7
1,404 Views
Reply
0 Kudos
Guru Elite Guru Elite
Guru Elite
cappalli

Re: Error Joining Clearpass to AD

‎11-29-2017 05:34 PM

Is there a firewall between ClearPass and the domain controllers? Are the required ports allowed between them?


| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Alert a Moderator
Message 2 of 7
1,390 Views
Reply
0 Kudos
MVP Guru
MVP Guru
Victor Fabian

Re: Error Joining Clearpass to AD

‎11-29-2017 05:35 PM

Have you tried doing an NSLOOKup from ClearPass CLI ?

Get Outlook for iOS
Thank you

Victor Fabian
Lead Mobility Architect @WEI
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Alert a Moderator
Message 3 of 7
1,389 Views
Reply
0 Kudos
Frequent Contributor II
dmendez7

Re: Error Joining Clearpass to AD

‎11-30-2017 07:39 AM

Hi Victor, yes, I have tried, look: Join AD 5.PNG


Daniel Méndez Vargas
ACMP, ACCP
Alert a Moderator
Message 4 of 7
1,326 Views
Reply
0 Kudos
Highlighted
Frequent Contributor II
dmendez7

Re: Error Joining Clearpass to AD

‎11-30-2017 07:43 AM

Hi Tim, I have created a new rule on Windows Firewall allowing port TCP/UDP 389 and nothing happened.


Daniel Méndez Vargas
ACMP, ACCP
Alert a Moderator
Message 5 of 7
1,324 Views
Reply
0 Kudos
Guru Elite Guru Elite
Guru Elite
cappalli

Re: Error Joining Clearpass to AD

‎11-30-2017 07:46 AM

https://technet.microsoft.com/en-us/library/dd772723%28v=ws.10%29.aspx

| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Alert a Moderator
Message 6 of 7
1,321 Views
Reply
0 Kudos
Frequent Contributor II
dmendez7

Re: Error Joining Clearpass to AD

‎11-30-2017 08:16 AM

Thank you Tim, I think it was necessary to disable and enable again the firewall to "apply changes". Now its joined.

 

Thanks Victor too.


Daniel Méndez Vargas
ACMP, ACCP
Alert a Moderator
Message 7 of 7
1,295 Views
Reply
0 Kudos
Search Airheads
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

© Copyright 2019 Hewlett Packard Enterprise Development LP
All Rights Reserved.
Powered by Lithium