Palo Alto Clearpass integration disconnecting

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Palo Alto Clearpass integration disconnecting

Cyber Elite
Cyber Elite

We are looking to utilize Cleaspass sending information to ours Palos for the purpose of user-id. We have this applied in some test groups but we are running into an issue where after a few days the connection appears to time out and the Palos stop received user-id information from Clearpass.

 

There are no errors in the Palos system logs, Clearpass just stops signing into the Palo. It does not appear there are any timeout timers on the Clearpass side. Is the only times that would affect this connection on the Palo side the API Key Lifetime or the Idel timeout?
 

2 REPLIES 2

L0 Member

Hi,

Seeing this on our firewalls as well at the minute. No errors logged in Event Viewer on Clearpass, just that the connection from the PA admin account times out, then the firewall stops receiving user-id from Clearpass.

 

Did you have any success fixing this?

Cyber Elite
Cyber Elite

Ours ended up being a configuration mismatch on our Clearpass servers. We have two ClearPass servers and the "service parameters" of one was missing a true/false or a checkbox that the other had and that ended up fixing our issue. However I dont remember exactly which parameter it was.

  • 820 Views
  • 2 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!