Support Support Downloads Knowledge Base Juniper Support Portal Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[JSA] RADIUS authentication with Clear Pass fails in JSA

0

0

Article ID: KB36557 KB Last Updated: 09 Mar 2021Version: 1.0
Summary:
 

When RADIUS authentication is used with Clear Pass in Juniper Secure Analytics (JSA), JSA tries to communicate with the default NAS IP-Address (127.0.0.1) for authentication with Clear Pass and authentication fails. This is because the default NAS IP-Address configured in JSA is 127.0.0.1.

This article explains how to change the default NAS IP-Address configuration and ensure that authentication succeeds.

 

Symptoms:
 
  • When trying to log in to the GUI via the user-defined accounts (RADIUS authentication already configured), the login fails.

  • The NAS IP-Address under the RADIUS protocol in the packet capture shows the IP-Address as 127.0.0.1.

 

Cause:
 

By default, the NAS IP-Address configured in JSA is 127.0.0.1 and that is why JSA is using the NAS IP-Address as 127.0.0.1.

 

Solution:
 

The NAS IP-Address is configured in the /opt/qradar/conf/login.conf file in JSA.

To change the NAS IP-Address:

  1. Execute the following:

    1. cd /opt/qradar/conf/
    2. cp login.conf login.conf.old
    3. vi login.conf
  2. Modify the NAS IP-Address field with the IP-Address used for JSA management. Ensure that there is an "@" at the beginning of the IP-Address. 

  3. After the file has been modified and saved, verify and confirm that the changes have been successfully incorporated. 

  4. Execute a full deploy of the services from the WebUI. After the full deploy, the NAS IP-Address should use the JSA Management IP-Address (as specified in the login.conf file). 

 

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search