AAA, NAC, Guest Access & BYOD

What are the specific rules to be added in firewall to Onboard an Android device?

Aruba Employee

When we try to Onboard an Android device, the device needs to goto Google play to download the "ClearPass Quick Connect" app.

The Captive Portal profile configured on the controller which will host the Device provisioning page must be mapped to the firewall rules which allows access to google play.

Below are the  steps to add the Destinations which we would need to add in the Captive Portal profile.

  1. Create Firewall Destination named GOOGLE-PLAY that contains android.clients.google.com and .ggpht.com (type=name)
  2. Add GOOGLE-PLAY to the Captive Portal Profile Whitelist
  3. Make sure the firewall policy ending in CP_list_operations appears at the top of the BYOD-role.
  4. Ensure you allow TCP 80 and TCP 5228 out to the Internet in post OnBoard role to allow Droid to "verify connectivity" correctly.
Version history
Revision #:
1 of 1
Last update:
‎07-11-2014 08:20 AM
Updated by:
 
Labels (1)
Contributors
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.