02-12-2008 12:18 PM
I will start out by saying I am VERY new to IAS, and fairly new to Aruba controllers.
What I want to do is be able to elevate the role of users based on the IAS policy they are accepted access by. Therefore I can have Active Directory group for users that I want to allow more access to and/or remove bandwidth contract on the same Aruba network.
Any assistance is appreciated.
02-22-2010 05:28 AM
I may be able to offer some assistance as I have what sounds like what you are trying to do in production.
The way I have configured my IAS is to send filter-id attributes back to the controller. I then use the filter-id to create server rules and assign user-roles based on that filter-id.
aaa profile "CORPORATE-aaa-profile"
aaa server-group "CORPORATE-server-group"
set role condition Filter-Id equals "Staff" set-value AD-Staff
set role condition Filter-Id equals "Students" set-value AD-Student
If this sounds like what your are trying to do let me know and I will be happy to help.
02-23-2010 05:46 AM