ClearPass with RODC and EAP-PEAP MS-CHAPv2

View Only

last person joined: 21 hours ago

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).

Back to discussions

Expand all | Collapse all

ClearPass with RODC and EAP-PEAP MS-CHAPv2

This thread has been viewed 23 times

1. ClearPass with RODC and EAP-PEAP MS-CHAPv2

1 Kudos
PK97
Posted Nov 30, 2021 01:03 PM

Reply Reply Privately
Hi Airheads!

During a recent project I came across the error "AD status:No trusted SAM account (0xc000018b)" in combination with using a Read-Only Domain Controller.

I've written a blog post on how to fix this.

ClearPass, Read-only Domain Controller (RODC) and PEAP-MSCHAPv2

Feel free to check it out and leave me a comment.

This post is intended to give users a possibly solution if they are searching here for the error code.

------------------------------
Philipp Koch | Senior Technical Consultant @ Bohnen IT | ACDX | ACEP | Germany
------------------------------
2. RE: ClearPass with RODC and EAP-PEAP MS-CHAPv2

0 Kudos
leo.ma
Posted Nov 17, 2022 04:38 AM

Reply Reply Privately
hi
If clearpass is separated from the dc domain, it should not be able to resolve the ad host of the rodc, right?

------------------------------
leo ma
------------------------------

Original Message

Security

ClearPass with RODC and EAP-PEAP MS-CHAPv2

1. ClearPass with RODC and EAP-PEAP MS-CHAPv2

2. RE: ClearPass with RODC and EAP-PEAP MS-CHAPv2