Wired Intelligent Edge (Campus Switching and Routing)

Reply
Highlighted
Frequent Contributor I

Aruba Switch EST Enrollment to ClearPass

Has anyone gotten EST enrollment working from an Aruba Switch (e.g. 3810M) to ClearPass Onboard? I have the CA configured correctly as a registration authority (RA) and it is valid in Onboard. However, I am unable to get the switch to enroll due to SSL connection error. I have a ta-profile for the upstream intermediate CA that the RA is connected to loaded on the switch. I can't help but notice that the URL that ClearPass says to use for EST is using port 9 instead of 443. Thoughts? Just wondering what I am missing. 

Occasional Contributor II

Re: Aruba Switch EST Enrollment to ClearPass

Shouldn't that be /9 instead of :9, is that a GUI display issue?  ( I think the /9 is just the 9th Ca you have setup, it just increments each time)

 

If it was a port, it would be straight after your hostname, before the folder structure.

Frequent Contributor I

Re: Aruba Switch EST Enrollment to ClearPass

Good call on that. Yeah, that has to be a GUI bug.

 

Regardless, can't seem to get it to work. TAC call it is

Frequent Contributor I

Re: Aruba Switch EST Enrollment to ClearPass

I did notice that in Onboard you have the option for configuring the EST authentication for either shared secret or HTTP Basic/Digest. The switch does not seem to have shared secret as an option. Is there a place to configure the HTTP auth on the switch?

Frequent Contributor I

Re: Aruba Switch EST Enrollment to ClearPass

Nevermind. I found it. The user has to be an active guest account for HTTP auth.

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: