So if you run "show running-config | begin "aaa rfc" on your controller (directly on the controller, not a conductor)
Do you see and "enable-radsec"?
------------------------------
If my post was useful, please Accept Solution and Give Kudos.
------------------------------
Zak Chalupka
Principal Engineer - HPE Aruba
ACDX | ACMP | ACSP | ACCP
wifizak@hpe.com------------------------------
Ideas expressed here are solely my own and not necessarily that of HPE Aruba.
------------------------------
Original Message:
Sent: Mar 21, 2024 05:44 PM
From: mbrodzin
Subject: CPPM + 7030 controller
Hi All,
Have CPPM 6.9.13 with the latest security path and 7030 controller with some 305 APs.
There is Sponsored Guest Access configure, which work fine except CoA (would like to disconnect guest users whenever i want).
So the rfc3576 is configured on both sides. Enforcement profile is ok (i think). When i try to do CoA from CPPM i got:
- on CPPM: failed for device....
- on controller: rc_rfc3576.c, rc_process_rfc3576_request:168: CoA server X.X.X.X(cppm ip) has radsec enabled, but CoA request did not come via secure connection.
Radsec is off.
Regards
M.