Wireless Access

 View Only

  • 1.  ClearPass Firmware Upgrade

    Posted Dec 09, 2025 02:25 PM

    Our organization is far behind and is preparing a couple back-to-back major firmware upgrades/rebuild. In a few of the to-do lists for upgrading the instructions say to verify that essential ports such as HTTP 80, HTTPS 443, SSH 22 and NTP 123 are open between all nodes in a cluster. I have little doubt that they are all open but, to leave no stone unturned, I looked for instructions to verify. The instructions I found say to SSH into a controller and use commands such as curl, wget, or telnet to test port connections between devices.

    I have one Publisher and 3 Subscribers that are virtual machines running 6.8.9.120997 pm C2000V (CP-VA-5K) platform. The CLI response is that the commands curl, wget, and telnet are not available. How can I resolve that or is there another way to test those port openings between my devices?

    Thanks in advance,



    -------------------------------------------


  • 2.  RE: ClearPass Firmware Upgrade

    Posted Dec 09, 2025 11:01 PM

    You can use: utils network connectivity <IP> <port>

    If the port is open, you will get a message like: Port 443 is open

    If its blocked, you will get a message like: Timed out waiting for response

    You can also use NMAP or Zenmap.



    ------------------------------
    Shpat | ACEP | ACMP | ACCP | ACDP
    Just an Aruba enthusiast and contributor by cases
    If you find my comment helpful, KUDOS are appreciated.
    ------------------------------



  • 3.  RE: ClearPass Firmware Upgrade

    Posted Dec 10, 2025 11:28 AM

    I appreciate your response. Unfortunately, utils and nmap are not recognized commands either. Just to be specific, I'm logging into my Publisher at the command line and attempting to execute the commands and test connectivity to one of my Subscribers. So far, none of the commands appear to be supported on my Publisher. I am logged in and using my appadmin account. Do I have to add this command ability separate from the firmware? Is that even possible?

    -------------------------------------------

    Original Message


  • 4.  RE: ClearPass Firmware Upgrade
    Best Answer

    Posted Dec 10, 2025 11:53 AM

    If all of the subscribers are in sync with the publisher, you're good.

    If you want to speed things up a bit, pre-load the image on the subscribers.

    If you're upgrading to 6.11 or 6.12, connectivity isn't going to matter as you'll be building out new VM appliances as part of the upgrade.



    ------------------------------
    Carson Hulcher, ACEX#110
    ------------------------------



Related Content