Aruba Clearpass - authentication error - No logon Servers by Ulises Cázares
Yesterday a client called me because he was having Wireless authentication issues using Aruba Clearpass.
The escenario was the following:
- Aruba Clearpass Cluster (4 servers)
- Primary DNS was unstable (sometines it replied and sometimes it didn't)
- The error in the access tracker was
After trying a few things like: changing the primary DNS, Creating another Authentication Source, restarting the DNS server, related with this message I got it working configuring Password Servers for that domain in all the cluster members. The path to do this is in: Configuration, Server Manager, Server Configuration, click in the server, go to edit the domain password servers and write one en each line.
When the DNS was failing, even after rebooting, Clearpass didn't authenticate users showing the same error. Must likely the DNS was returning domain controllers(DCs) that weren't accesible to Clearpass or didn't exist anymore. Once we "force" Clearpass to use the DCs that we knew were working fine all the authentications started working again.
I've been working with Clearpass for a few years now and not one time i've seen it to fail when everything else is working fine. When the authentication fails is due to some external factor like the DNS in this case
Hope this helps to someone in the future
Regards
Good contribution!
ReplyDelete