Wireless Access

Hi Community,

is there a Way to create a new Operater Login for Clearpass guest? We actualy lost the Username/Password for Clearpass Guest.

 

Thanks

You can but you should be able to login if you have access to the policy manager (https://<ClearPass-ip>/tips) > dashboard > quick links (guest)



Thank you

Victor Fabian

Pardon typos sent from Mobile

Hi

yes i can do this. But i dont have any privileges.

 

admin (Null Profile)

 

How can i change this?

 

Thanks

I'm not sure I get what's happening here.

Have you lost the username/password for admin access to Clearpass?

Or just an operator login to the Guest section of Clearpass?

Or are we talking about the old Clearpass Guest (3.9.x)?

 

 

If you lost the appadmin and/or admin password:

 

From the CPPM user-guide - you will need to contact TAC during this procedure..

Resetting the Passwords to Factory Default
To reset Administrator passwords in Policy Manager to factory defaults, you can login to the CLI as the apprecovery
user. The password to log in as the apprecovery user is dynamically generated.

Perform the following steps to generate the recovery password:
1. Connect to the Policy Manager appliance via the front serial port (using any terminal program). See "Resetting the Passwords to Factory Default" on page 26 for details.
2. Reboot the system. See the restart command.
3. After the system restarts, the following prompt is displayed for ten seconds:
Generate support keys? [y/n]:
Enter ‘y’ at the prompt. The system prompts you with the following choices:
Please select a support key generation option.
1) Generate password recovery key
2) Generate a support key
3) Generate password recovery and support keys
Enter the option or press any key to quit:
4. To generate the recovery key, select option 1.
5. To generate a support key and a recovery key and support, select option 3.
6. After the password recovery key is generated, email the key to Aruba technical support. A unique password will be
generated from the recovery key and emailed back to you.
7. Enter the following at the command prompt:
[apprecovery] app reset-passwd
*******************************************************
* WARNING: This command will reset the system account *
* passwords to factory default values *
*******************************************************
Are you sure you want to continue? [y/n]: y
INFO - Password changed on local node
INFO - System account passwords have been reset to
factory default values

 

Hi,
i already can login in Clearpass as Admin.
Just a login to Clearpass Guest as Operater has no privileges.

Thanks

*need more information*

 

Login to Clearpass (https://servername/tips) as admin.

From Dashboard click the link Guest.

Verify that you now have full operator access.

 

If not - verify that you admin user has Super Administrator role under:

Administration » Users and Privileges » Admin Users

 

Assuming you are using a different user you need to verify that you have the appropriate role, role mapping, service and translation rules (in Guest) for the user you are logging in with.

Is the user in the local admin database, in the local user db, in AD - or where?

 

 

Hi,
we don't have Operater Access after clicking the Link in the Dashboard.
Yes the Admin user is in Super Administrator role.
The Admin User is in Local Database.
In Clearpass Guest we changed the Login to LDAP some weeks ago.
We never logged in as Operator after this Change.
A login via LDAP as Receptionist works fine.

Thanks

Hmm.. Do you see the admin login in the Access Tracker? Is the admin account you are using the local one - or one that exists in your LDAP/AD-database?

 

If it's the external user you need to make sure that you have the right role mappings in place in the service that validates the admin-login. Check out these posts and verify this against your own implementaion..

 

http://community.arubanetworks.com/t5/AAA-NAC-Guest-Access-BYOD/Customize-Guest-Operator-Login-on-CPPM/ta-p/186192

 

http://community.arubanetworks.com/t5/AAA-NAC-Guest-Access-BYOD/ClearPass-guest-operator-logins/td-p/92146

Hi,

we are currently in contact with the aruba support. A remote Session with aruba bring no suggestions.

I will post here if we have an solution.

Greetings

Without more information - logging, screenshots etc. I'm afraid theres not much more we can help you with here. Looking forward to the solution jweber. Sounds like an interresting problem - if you don't mind me saying so ;) 

 

Unfortunately I did this myself a long while ago and got locked out of the guest admin.  The only way I could recover was to restore a backup.  Hopefully TAC will have a better solution for you.