Security

Reply
Highlighted
Frequent Contributor II

Radius CoA Bounce Host-Port Failed

Hi all,

 

I'm having an issue with Radius CoA, which doesn't work as I expected. What I'm trying to do is to use CPPM to authenticate a device based on its MAC address, then profile it and after that have CPPM send bounce host-port message to the switch to assign proper VLAN for that device. The authentication and profiling process have worked well so far. However, I got stuck at CoA step:

 

6.PNG

 

2.PNG

 

I'm using an Aruba 5400 switch for testing. I tried changing the CoA profile to Aruba Bounce Host-Port (instead of HPE Bounce Host-Port), but it didn't work either:

 

4.PNG

 

I checked the switch and look like it did receive CoA messages from CPPM:

 

3.PNG

 

Below is my configuration on CPPM and Aruba switch:

1.PNG

 

5.PNG

 

Please tell me what I did wrong. I really appreciate your help.

 

Thank you,

Highlighted
Moderator

Re: Radius CoA Bounce Host-Port Failed

Make sure both the switch and ClearPass are using NTP and that the time is correct.


If this response is more than 1 year old, it may no longer be accurate. Please consult official Aruba documentation, TAC or your Aruba SE.

| Aruba Alumni | @timcappalli | timcappalli.me |

Highlighted
Occasional Contributor II

Re: Radius CoA Bounce Host-Port Failed

 
Highlighted
Moderator

Re: Radius CoA Bounce Host-Port Failed

The Switching profile is built in. You likely have your switch defined as Aruba instead of Hewlett Packard Enterprise.

Don't modify the built in profiles. They work as is.


If this response is more than 1 year old, it may no longer be accurate. Please consult official Aruba documentation, TAC or your Aruba SE.

| Aruba Alumni | @timcappalli | timcappalli.me |

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: