Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Updating CRLs failed behavior Clearpass

This thread has been viewed 1 times

  • 1.  Updating CRLs failed behavior Clearpass

    Posted Apr 19, 2017 03:06 AM

    Hi all,

     

    Currently we have some issues with our PKI, and i would like to understand the behaviorof Clearpass.

     

    We check every hour the CRL. The CRL has a lifetime of 24 hour. Now we receive the error "Updating CRLs failed". Is Clearpass using the CRL untill the end of the lifetime? And what happens if CRL lifetime exceeds? Is traffic continue working (but cann't guaranteed), or will Clearpass block the authentications because it can't validate it?

     

    Thanks in advance for your reply.