Security

Hi

A customer is running multiple clusters based on C1000 and C3010 hardware servers. During deployment in the lab environments we haven't seen any issues after update to ClearPass 6.11.7. But after deployment in the first production C1000 cluster we see that the Radius service is indicated as Stopped in the Services Control tab on both the servers in the cluster. It's not totally stopped, because some clients get through with authentication, so the impression is that the service is restarting over and over again. No logs in the Event log regarding issues with the Radius service. Only reports from users with authentication issues.

Has anyone else noticed any strange behavior after update to 6.11.7?

On other customers running virtual ClearPass server I haven't seen issues with 6.11.7.

We are currently working with TAC to solve the issue.

Did you find a root cause and solution for this? Have not seen this myself.

Hi

A customer is running multiple clusters based on C1000 and C3010 hardware servers. During deployment in the lab environments we haven't seen any issues after update to ClearPass 6.11.7. But after deployment in the first production C1000 cluster we see that the Radius service is indicated as Stopped in the Services Control tab on both the servers in the cluster. It's not totally stopped, because some clients get through with authentication, so the impression is that the service is restarting over and over again. No logs in the Event log regarding issues with the Radius service. Only reports from users with authentication issues.

Has anyone else noticed any strange behavior after update to 6.11.7?

On other customers running virtual ClearPass server I haven't seen issues with 6.11.7.

We are currently working with TAC to solve the issue.

Hi Jonas,

I had this issue last week also after updating to 6.11.7. One of my authorisation sources was not functioning correctly, even it was not used.

The radius and tacacs service started but stopped very quickly. 

After deleting the authz source the services could start. and it al worked again.

Best regards,

Erik

Original Message:
Sent: Mar 11, 2024 10:22 AM
From: Herman Robers
Subject: Radius service stops after update to ClearPass 6.11.7 on C1000 machines

Did you find a root cause and solution for this? Have not seen this myself.

------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.

Original Message:
Sent: Mar 06, 2024 07:07 AM
From: jonas.hammarback
Subject: Radius service stops after update to ClearPass 6.11.7 on C1000 machines

Hi

A customer is running multiple clusters based on C1000 and C3010 hardware servers. During deployment in the lab environments we haven't seen any issues after update to ClearPass 6.11.7. But after deployment in the first production C1000 cluster we see that the Radius service is indicated as Stopped in the Services Control tab on both the servers in the cluster. It's not totally stopped, because some clients get through with authentication, so the impression is that the service is restarting over and over again. No logs in the Event log regarding issues with the Radius service. Only reports from users with authentication issues.

Has anyone else noticed any strange behavior after update to 6.11.7?

On other customers running virtual ClearPass server I haven't seen issues with 6.11.7.

We are currently working with TAC to solve the issue.

------------------------------
Best Regards
Jonas Hammarbäck
MVP Guru 2024, ACEX, ACDX #1600, ACCX #1335, ACX-Network Security, Aruba SME, ACMP, ACSA
Aranya AB
If you find my answer useful, consider giving kudos and/or mark as solution
------------------------------

Did you find a root cause and solution for this? Have not seen this myself.

Hi

A customer is running multiple clusters based on C1000 and C3010 hardware servers. During deployment in the lab environments we haven't seen any issues after update to ClearPass 6.11.7. But after deployment in the first production C1000 cluster we see that the Radius service is indicated as Stopped in the Services Control tab on both the servers in the cluster. It's not totally stopped, because some clients get through with authentication, so the impression is that the service is restarting over and over again. No logs in the Event log regarding issues with the Radius service. Only reports from users with authentication issues.

Has anyone else noticed any strange behavior after update to 6.11.7?

On other customers running virtual ClearPass server I haven't seen issues with 6.11.7.

We are currently working with TAC to solve the issue.

Hi Herman

No we have not got any root cause from TAC yet. They are still working with the logs.

We rolled back to the previous version and the function was restored.

Did you find a root cause and solution for this? Have not seen this myself.

Hi

A customer is running multiple clusters based on C1000 and C3010 hardware servers. During deployment in the lab environments we haven't seen any issues after update to ClearPass 6.11.7. But after deployment in the first production C1000 cluster we see that the Radius service is indicated as Stopped in the Services Control tab on both the servers in the cluster. It's not totally stopped, because some clients get through with authentication, so the impression is that the service is restarting over and over again. No logs in the Event log regarding issues with the Radius service. Only reports from users with authentication issues.

Has anyone else noticed any strange behavior after update to 6.11.7?

On other customers running virtual ClearPass server I haven't seen issues with 6.11.7.

We are currently working with TAC to solve the issue.

Hi Jons,

I my case, rollback did not work, after starting the appliance same issue.

Yes I tested with some authz sources, but forgot to delete them, but the query was not fully right. Missing a ";"

Best regards,

Erik

Hi Herman

No we have not got any root cause from TAC yet. They are still working with the logs.

We rolled back to the previous version and the function was restored.

Did you find a root cause and solution for this? Have not seen this myself.

Hi

A customer is running multiple clusters based on C1000 and C3010 hardware servers. During deployment in the lab environments we haven't seen any issues after update to ClearPass 6.11.7. But after deployment in the first production C1000 cluster we see that the Radius service is indicated as Stopped in the Services Control tab on both the servers in the cluster. It's not totally stopped, because some clients get through with authentication, so the impression is that the service is restarting over and over again. No logs in the Event log regarding issues with the Radius service. Only reports from users with authentication issues.

Has anyone else noticed any strange behavior after update to 6.11.7?

On other customers running virtual ClearPass server I haven't seen issues with 6.11.7.

We are currently working with TAC to solve the issue.

Hi

A customer is running multiple clusters based on C1000 and C3010 hardware servers. During deployment in the lab environments we haven't seen any issues after update to ClearPass 6.11.7. But after deployment in the first production C1000 cluster we see that the Radius service is indicated as Stopped in the Services Control tab on both the servers in the cluster. It's not totally stopped, because some clients get through with authentication, so the impression is that the service is restarting over and over again. No logs in the Event log regarding issues with the Radius service. Only reports from users with authentication issues.

Has anyone else noticed any strange behavior after update to 6.11.7?

On other customers running virtual ClearPass server I haven't seen issues with 6.11.7.

We are currently working with TAC to solve the issue.

Hi,

we have exactly the same issue.
TAC support couldn't solve the problem so far.

Our old clearpass installation works like charm, no propblems at all.
We exported the configruation of our running productive clearpass and imported the config on our new clearpass server (6.11.8).
As soon as we use the radius for example wifi auth. the radius service is crashing.

Ablsoutly no idea why this is happening.
Send a tons of logs to TAC but without any solution.

Any news here?

Regards from Springfield.

Hi

A customer is running multiple clusters based on C1000 and C3010 hardware servers. During deployment in the lab environments we haven't seen any issues after update to ClearPass 6.11.7. But after deployment in the first production C1000 cluster we see that the Radius service is indicated as Stopped in the Services Control tab on both the servers in the cluster. It's not totally stopped, because some clients get through with authentication, so the impression is that the service is restarting over and over again. No logs in the Event log regarding issues with the Radius service. Only reports from users with authentication issues.

Has anyone else noticed any strange behavior after update to 6.11.7?

On other customers running virtual ClearPass server I haven't seen issues with 6.11.7.

We are currently working with TAC to solve the issue.

Hi,

we have exactly the same issue.
TAC support couldn't solve the problem so far.

Our old clearpass installation works like charm, no propblems at all.
We exported the configruation of our running productive clearpass and imported the config on our new clearpass server (6.11.8).
As soon as we use the radius for example wifi auth. the radius service is crashing.

Ablsoutly no idea why this is happening.
Send a tons of logs to TAC but without any solution.

Any news here?

Regards from Springfield.

Hi

A customer is running multiple clusters based on C1000 and C3010 hardware servers. During deployment in the lab environments we haven't seen any issues after update to ClearPass 6.11.7. But after deployment in the first production C1000 cluster we see that the Radius service is indicated as Stopped in the Services Control tab on both the servers in the cluster. It's not totally stopped, because some clients get through with authentication, so the impression is that the service is restarting over and over again. No logs in the Event log regarding issues with the Radius service. Only reports from users with authentication issues.

Has anyone else noticed any strange behavior after update to 6.11.7?

On other customers running virtual ClearPass server I haven't seen issues with 6.11.7.

We are currently working with TAC to solve the issue.

Hi

We have got the information from TAC that they have found a bug and is working on a fix. Bug track ID CP-52622.

The fix hasn´t been deliviered yet, and we have postponed the patching to 6.11.7 on our C3010 servers.

------------------------------
Best Regards
Jonas Hammarbäck
MVP Guru 2024, ACEX, ACDX #1600, ACCX #1335, ACX-Network Security, Aruba SME, ACMP, ACSA
Aranya AB
If you find my answer useful, consider giving kudos and/or mark as solution

Original Message:
Sent: May 14, 2024 10:18 AM
From: Ralph Wiggum
Subject: Radius service stops after update to ClearPass 6.11.7 on C1000 machines

Hi,

we have exactly the same issue.
TAC support couldn't solve the problem so far.

Our old clearpass installation works like charm, no propblems at all.
We exported the configruation of our running productive clearpass and imported the config on our new clearpass server (6.11.8).
As soon as we use the radius for example wifi auth. the radius service is crashing.

Ablsoutly no idea why this is happening.
Send a tons of logs to TAC but without any solution.

Any news here?

Regards from Springfield.

Original Message:
Sent: Mar 06, 2024 07:07 AM
From: jonas.hammarback
Subject: Radius service stops after update to ClearPass 6.11.7 on C1000 machines

Hi

A customer is running multiple clusters based on C1000 and C3010 hardware servers. During deployment in the lab environments we haven't seen any issues after update to ClearPass 6.11.7. But after deployment in the first production C1000 cluster we see that the Radius service is indicated as Stopped in the Services Control tab on both the servers in the cluster. It's not totally stopped, because some clients get through with authentication, so the impression is that the service is restarting over and over again. No logs in the Event log regarding issues with the Radius service. Only reports from users with authentication issues.

Has anyone else noticed any strange behavior after update to 6.11.7?

On other customers running virtual ClearPass server I haven't seen issues with 6.11.7.

We are currently working with TAC to solve the issue.

------------------------------
Best Regards
Jonas Hammarbäck
MVP Guru 2024, ACEX, ACDX #1600, ACCX #1335, ACX-Network Security, Aruba SME, ACMP, ACSA
Aranya AB
If you find my answer useful, consider giving kudos and/or mark as solution
------------------------------

Hi

We have got the information from TAC that they have found a bug and is working on a fix. Bug track ID CP-52622.

The fix hasn´t been deliviered yet, and we have postponed the patching to 6.11.7 on our C3010 servers.

Hi,

we have exactly the same issue.
TAC support couldn't solve the problem so far.

Our old clearpass installation works like charm, no propblems at all.
We exported the configruation of our running productive clearpass and imported the config on our new clearpass server (6.11.8).
As soon as we use the radius for example wifi auth. the radius service is crashing.

Ablsoutly no idea why this is happening.
Send a tons of logs to TAC but without any solution.

Any news here?

Regards from Springfield.

Hi

A customer is running multiple clusters based on C1000 and C3010 hardware servers. During deployment in the lab environments we haven't seen any issues after update to ClearPass 6.11.7. But after deployment in the first production C1000 cluster we see that the Radius service is indicated as Stopped in the Services Control tab on both the servers in the cluster. It's not totally stopped, because some clients get through with authentication, so the impression is that the service is restarting over and over again. No logs in the Event log regarding issues with the Radius service. Only reports from users with authentication issues.

Has anyone else noticed any strange behavior after update to 6.11.7?

On other customers running virtual ClearPass server I haven't seen issues with 6.11.7.

We are currently working with TAC to solve the issue.

Is this bug present in 6.12.1?

We are getting ready to deploy our C3000 & C3010 servers on 6.11 ISO & then to 6.12.1.

Hi

We have got the information from TAC that they have found a bug and is working on a fix. Bug track ID CP-52622.

The fix hasn´t been deliviered yet, and we have postponed the patching to 6.11.7 on our C3010 servers.

Hi,

we have exactly the same issue.
TAC support couldn't solve the problem so far.

Our old clearpass installation works like charm, no propblems at all.
We exported the configruation of our running productive clearpass and imported the config on our new clearpass server (6.11.8).
As soon as we use the radius for example wifi auth. the radius service is crashing.

Ablsoutly no idea why this is happening.
Send a tons of logs to TAC but without any solution.

Any news here?

Regards from Springfield.

Hi

A customer is running multiple clusters based on C1000 and C3010 hardware servers. During deployment in the lab environments we haven't seen any issues after update to ClearPass 6.11.7. But after deployment in the first production C1000 cluster we see that the Radius service is indicated as Stopped in the Services Control tab on both the servers in the cluster. It's not totally stopped, because some clients get through with authentication, so the impression is that the service is restarting over and over again. No logs in the Event log regarding issues with the Radius service. Only reports from users with authentication issues.

Has anyone else noticed any strange behavior after update to 6.11.7?

On other customers running virtual ClearPass server I haven't seen issues with 6.11.7.

We are currently working with TAC to solve the issue.