AAA, NAC, Guest Access & BYOD

Configuring AP FQLN in Aruba OS 6.3 for defining Airgroup Shared Location on CPPm

In Aruba OS 6.3, can we use "Shared Location" on Clearpass to allow Apple TVs within a certain location or with a certain FQLN? 


How to configure APs to a certain location in Aruba OS 6.3 so that we could use the "shared location" option? 


How to configure AP FQLN on Aruba OS 6.3? There is no option to upload RF Plan hence we cannot map the Campus, Building and Floor.

 

Environment  : Aruba OS 6.3, Aruba Controller 72xx, M3, 3xxx or 6xx

 

Unlike pre-6.3 Aruba OS, there is no option to upload RF Plan in Aruba OS 6.3, we cannot map the AP FQLN from the Web UI while provisioning APs.

 

RF Plan feature on the Aruba Controller has been deprecated from Aruba OS 6.3

 

We could define arbitrary FQLN values for APs by provisioning APs from the CLI or use "AP-Group" or "AP-Name" for defining "Shared Locations".

 

Yes we can still use "Shared Location" to make Apple TVs viewable from certain AP locations only. Although there is no option to upload "RF Plan" on the Controller, we could use an RF Plan from VisualRF in Airwave.  If we're not using Airwave, we could provision the APs with arbitrary location IDs from CLI.  The following shows an example of the same:
 
(Aruba) #show ap database long
 
AP Database
-----------
Name               Group    AP Type  IP Address    Status    Flags  Switch IP     Standby IP  Wired MAC Address  Serial #   Port  FQLN  Outer IP  User
----               -----    -------  ----------    ------    -----  ---------     ----------  -----------------  --------   ----  ----  --------  ----
Test-ArubaAP     default  125      172.16.0.25    Up 1m:6s         172.16.0.254  0.0.0.0    00:1a:1e:de:8c:1e  AJ0177599   N/A   N/A   N/A
 
 
Flags: U = Unprovisioned; N = Duplicate name; G = No such group; L = Unlicensed
       I = Inactive; D = Dirty or no config; E = Regulatory Domain Mismatch
       X = Maintenance Mode; P = PPPoE AP; B = Built-in AP
       R = Remote AP; R- = Remote AP requires Auth; C = Cellular RAP;
       c = CERT-based RAP; 1 = 802.1x authenticated AP; 2 = Using IKE version 2
       u = Custom-Cert RAP; S = Standby-mode AP; J = USB cert at AP
       M = Mesh node; Y = Mesh Recovery
 
Port information is available only on 6xx.
 
Total APs:4
 
(Aruba) #configure t
Enter Configuration commands, one per line. End with CNTL/Z
 
(Aruba) (config) #provision-ap ?
<cr>
 
(Aruba) (config) #provision-ap
(Aruba) (AP provisioning) #read-bootinfo ap-name Test-ArubaAP
(Aruba) (AP provisioning) #show provisioning-ap-list
 
Access Points Provisioning List
-------------------------------
Current IP    AP Name            AP Group  Location name  SNMP sysLocation  AP Type  Serial #   AP State
----------    -------            --------  -------------  ----------------  -------  --------   --------
172.16.0.25  Test-ArubaAP    default   N/A            N/A            125      AJ0177599   -
Total APs:1
 
(Aruba) (AP provisioning) #
(Aruba) (AP provisioning) #
(Aruba) (AP provisioning) #fqln 2.2.2.2
(Aruba) (AP provisioning) #
(Aruba) (AP provisioning) #
(Aruba) (AP provisioning) #reprovision ap-name Test-ArubaAP
(Aruba) (AP provisioning) #
(Aruba) (AP provisioning) #
(Aruba) (AP provisioning) #show ap active
 
Active AP Table
---------------
Name               Group    IP Address    11g Clients  11g Ch/EIRP/MaxEIRP  11a Clients  11a Ch/EIRP/MaxEIRP  AP Type  Flags  Uptime  Outer IP
----               -----    ----------    -----------  -------------------  -----------  -------------------  -------  -----  ------  --------
Test-ArubaAP      default  172.16.0.25      0          AP:HT:11/20.5/20.5   0            AP:HT:36+/21/21      125      Aa     3m:21s  N/A
 
Flags: 1 = 802.1x authenticated AP; 2 = Using IKE version 2;
       A = Enet1 in active/standby mode;  B = Battery Boost On; C = Cellular;
       D = Disconn. Extra Calls On; E = Wired AP enabled; F = AP failed 802.1x authentication;
       H = Hotspot Enabled; K = 802.11K Enabled; L = Client Balancing Enabled; M = Mesh;
       N = 802.11b protection disabled; P = PPPOE; R = Remote AP;
       S = AP connected as standby; X = Maintenance Mode;
       a = Reduce ARP packets in the air; d = Drop Mcast/Bcast On; u = Custom-Cert RAP;
       r = 802.11r Enabled
 
Channel followed by "*" indicates channel selected due to unsupported configured channel.
(Aruba) (AP provisioning) #
 
(Aruba) (AP provisioning) #show ver
Aruba Operating System Software.
ArubaOS (MODEL: Aruba3200), Version 6.3.0.0
Website: http://www.arubanetworks.com
Copyright (c) 2002-2013, Aruba Networks, Inc.
Compiled on 2013-06-12 at 21:09:29 PDT (build 38660) by p4build
 
ROM: System Bootstrap, Version CPBoot 1.3.0.3 (build 34552)
Built: 2012-07-19 22:16:19
Built by: p4build@re_client_34552
  
Switch uptime is 35 minutes 26 seconds
Reboot Cause: Power Failure.
Supervisor Card
Processor XLR 508 (revision C4) with 1188M bytes of memory.
32K bytes of non-volatile configuration memory.
512M bytes of Supervisor Card System flash (model=CF 512MB).
  
(Aruba) (AP provisioning) # show datapath session table 172.16.0.25
 
 
Datapath Session Table Entries
------------------------------
 
Flags: F - fast age, S - src NAT, N - dest NAT
       D - deny, R - redirect, Y - no syn
       H - high prio, P - set prio, T - set ToS
       C - client, M - mirror, V - VOIP
       Q - Real-Time Quality analysis
       I - Deep inspect, U - Locally destined
       E - Media Deep Inspect, G - media signal
 
  Source IP     Destination IP  Prot SPort DPort  Cntr Prio ToS Age Destination TAge Packets   Bytes      Flags
--------------  --------------  ---- ----- -----  ---- ---- --- --- ----------- ---- --------- ---------  -----
172.16.0.254    172.16.0.25     47   0     0      0/0     0 0   0   1/1         15   16        1408       F
172.16.0.25     172.16.0.254    47   0     0      0/0     0 40  0   1/1         15   18        1614       FC
172.16.0.25     172.16.0.254    17   8211  8224   0/0     0 0   1   local       a    0         0          FYI
172.16.0.254    172.16.0.25     17   8224  8211   0/0     0 0   1   local       a    2         462        FCI
172.16.0.25     172.16.0.254    17   8211  8222   0/0     0 0   2   1/1         16   0         0          FYCI
172.16.0.254    172.16.0.25     17   8211  8211   0/0     0 0   2   1/1         16   0         0          FYI
172.16.0.254    172.16.0.25     17   8222  8211   0/0     0 0   1   1/1         16   12        3303       FI
172.16.0.25     172.16.0.254    17   8211  8211   0/0     0 0   1   1/1         16   15        2390       FCI
172.16.0.254    172.16.0.25     17   8421  8211   0/0     0 0   0   1/1         a    0         0          FYI
172.16.0.254    172.16.0.25     17   8419  8211   0/0     0 0   0   local       8    2         270        FCI
172.16.0.25     172.16.0.254    17   8211  8421   0/0     0 0   1   1/1         b    0         0          FYCI
172.16.0.25     172.16.0.254    17   8211  8419   0/0     0 0   1   local       9    0         0          FYI
 
  
AP Database
-----------
Name               Group    AP Type  IP Address    Status    Flags  Switch IP     Standby IP  Wired MAC Address  Serial #   Port  FQLN  Outer IP  User
----               -----    -------  ----------    ------    -----  ---------     ----------  -----------------  --------   ----  ----  --------  ----
Test-ArubaAP     default  125      172.16.0.25    Up 2m:7s         172.16.0.254  0.0.0.0    00:1a:1e:de:8c:1e  AJ0177599  N/A  2.2.2.2   N/A
 
Flags: U = Unprovisioned; N = Duplicate name; G = No such group; L = Unlicensed
       I = Inactive; D = Dirty or no config; E = Regulatory Domain Mismatch
       X = Maintenance Mode; P = PPPoE AP; B = Built-in AP
       R = Remote AP; R- = Remote AP requires Auth; C = Cellular RAP;
       c = CERT-based RAP; 1 = 802.1x authenticated AP; 2 = Using IKE version 2
       u = Custom-Cert RAP; S = Standby-mode AP; J = USB cert at AP
       M = Mesh node; Y = Mesh Recovery
 
Port information is available only on 6xx.
 
Total APs:4

Note: A couple of caveats to remember is that if any Apple TVs are not defined in CPPM, then all clients can see them.  Also, on the latest CPPM version 6.1 we can only define 5 location types and we have a drop down to select the AP location (AP Group, AP Name or AP FQLN) in CPPM.
Version history
Revision #:
1 of 1
Last update:
‎07-16-2014 07:36 AM
Updated by:
 
Labels (1)
Contributors
Search Airheads
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.