Security

Hi Team,

I need assistance with Agentless OnGuard configuration in Aruba ClearPass Policy Manager. I am testing how Agentless OnGuard works on a Windows Server running on a VMware ESXi VM.

Environment Details:

1. CPPM Version:6.11.1

2. Target OS:Windows Server 2022 on VMware ESXi

3. OnGuard Mode: Agentless

Configuration Completed:

1. Configured Agentless OnGuard settings in CPPM as per the documentation.

2. Completed all prerequisites on the Windows Server, including WMI, RPC, and firewall rules.

 After completing the configuration, I am unable to see the endpoint in the OnGuard Activity tab under Monitoring.

Could you please guide me on what I might be missing or how to troubleshoot this? Any suggestions on logs to check or common misconfigurations would be appreciated.

Thank you for your support.

Regards, 

Dipali 

It may be good to work with TAC. Agentless is not widely used as far as I know, and it requires a remote system (ClearPass) to upload and run an executable on a Windows system, which for security feels like something most admins would not want. I think to remember that somewhere in the past years, Windows restricted where you can upload executables and run them; but don't remember the details.

It may be good to upgrade first to a recent ClearPass version, then see if the executable is actually dropped on the Windows system and executed.

------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your HPE Aruba Networking partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact HPE Aruba Networking TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or HPE Aruba Networking.

In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------

I've upgraded ClearPass to version 6.12.0 and tested the agentless execution on the Windows Server. The executable does get dropped and run, but unfortunately the clearpass ongaurd agentless service still does not start. I'm attaching a screenshot for your reference so you can see the current state.i can't see lgos or any alerts on aruba clearpass access tracker. and not even in window server event viewer.

Please advise on the next steps or if there are additional checks you'd recommend.

Regards,

Dipali Garud

Original Message:
Sent: Jun 03, 2026 09:54 AM
From: Herman Robers
Subject: Issue with Agentless OnGuard - Endpoint Not Visible in OnGuard Activity Tab

It may be good to work with TAC. Agentless is not widely used as far as I know, and it requires a remote system (ClearPass) to upload and run an executable on a Windows system, which for security feels like something most admins would not want. I think to remember that somewhere in the past years, Windows restricted where you can upload executables and run them; but don't remember the details.

It may be good to upgrade first to a recent ClearPass version, then see if the executable is actually dropped on the Windows system and executed.

------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your HPE Aruba Networking partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact HPE Aruba Networking TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or HPE Aruba Networking.

In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------

I suggest to test it with the latest patch or 6.12.x that is 6.12.7

------------------------------
If my post was useful accept solution and/or give kudos.
Any opinions expressed here are solely my own and not necessarily that of HPE or Aruba.
------------------------------

Original Message:
Sent: Jun 05, 2026 02:01 AM
From: Dipali Garud
Subject: Issue with Agentless OnGuard - Endpoint Not Visible in OnGuard Activity Tab

I've upgraded ClearPass to version 6.12.0 and tested the agentless execution on the Windows Server. The executable does get dropped and run, but unfortunately the clearpass ongaurd agentless service still does not start. I'm attaching a screenshot for your reference so you can see the current state.i can't see lgos or any alerts on aruba clearpass access tracker. and not even in window server event viewer.

Please advise on the next steps or if there are additional checks you'd recommend.

Regards,

Dipali Garud

Original Message:
Sent: Jun 03, 2026 09:54 AM
From: Herman Robers
Subject: Issue with Agentless OnGuard - Endpoint Not Visible in OnGuard Activity Tab

It may be good to work with TAC. Agentless is not widely used as far as I know, and it requires a remote system (ClearPass) to upload and run an executable on a Windows system, which for security feels like something most admins would not want. I think to remember that somewhere in the past years, Windows restricted where you can upload executables and run them; but don't remember the details.

It may be good to upgrade first to a recent ClearPass version, then see if the executable is actually dropped on the Windows system and executed.

------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your HPE Aruba Networking partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact HPE Aruba Networking TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or HPE Aruba Networking.

In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------