Command of the Day

Reply
Guru Elite
Posts: 21,009
Registered: ‎03-29-2007

COTD: local-userdb-guest add

ArubaOS 3.4 has greatly expanded its built-in guest access offering, adding features such as being able to specify guest start and finish times in the future, emailing guest credentials and customizable fields. ArubaOS allows you to add these guest users via the commandline. Below is the very comprehensive syntax for the "local-userdb-guest add" command:

local-userdb-guest add {generate-username|username } {generate-password|password
}


Since ArubaOS also allows you to automatically email guest credentials (http://airheads.arubanetworks.com/vBulletin/showthread.php?p=2369) you can create a few one-liners:

- Create guest user with random username and password. Make the user work for only 24 hours and send an email to the distribution list that is responsible for guest username and passwords:

(M3.arubanetworks.com) #local-userdb-guest add generate-username generate-password expiry duration 1440 email dl-guestlist@company.com

GuestConnect
Username: guest-3125348
Password: fFgf0920
Start date: Fri Jul 31 03:31:00 2009

Expiration: 1440 minutes

(M3.arubanetworks.com) #show local-userdb-guest


User Summary
------------
Name Password Role E-Mail Enabled Expiry Status Sponsor-Name Grantor-Name
---- -------- ---- ------ ------- ------ ------ ------------ ------------
guest-3125348 ******** guest dl-guestlist@company.com Yes 8/1/2009 3:31 Active cjoseph

User Entries: 1


As you can see the "grantor" or user who logged into the controller to create that guest is recorded (cjoseph in this case).

A detailed log of when this user was created (Jul 31 03:31:31), by whom (cjoseph), the ip address it was created from (192.168.15.30) and the interface it was created from (cli) is also in the audit trail:

(M3.arubanetworks.com) #show audit-trail 1

Jul 31 03:31:31 cli: USER:cjoseph@192.168.15.3 COMMAND: -- command executed successfully

This is great for organizations that would like a single username and password daily for guest access like hotels. It would be very easy to have a host login to the controller via username/password or certificate and run this command on a daily basis.


Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Occasional Contributor II
Posts: 23
Registered: ‎01-23-2009

Re: COTD: local-userdb-guest add

That's pretty powerful for the CLI-hackers of this world.

Any of this possible via SNMP?

Frank
Guru Elite
Posts: 21,009
Registered: ‎03-29-2007

No SNMP Set

Sorry Frank,

Aruba does not have SNMP "SET"


Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Search Airheads
Showing results for 
Search instead for 
Did you mean: