I'm trying to retrieve a packet capture from clearpass.
The way I thought this could be done is via Administration » Server Manager » Server Configuration » Collect Logs
Here I select only " Capture network packets Duration of dump: 60 secs.".
After triggering the authentication I want to see, I stop the doanload (also tried letting it run for full duration) and then download the resulting .tar.gz file.
Winrar however says this tar.gz file is corrupt and won't let me open it. 7Zip does manage to open te file and gives me a .tar file.
This .tar I can open with both winrar and 7Zip. The final file is a file without extention which cannot be loaded into wireshark.
How do I get a readable packet capture so I can analyze whats going wrong with avaya ers4500 mac auth?