Controller Based WLANs

How can I remove the domain-specific portion from the authentication request (user details) to a specific server?

Product and Software: This article applies to all Aruba controllers and ArubaOS 3.x and later.



Before the controller forwards an authentication request to a specified server, it can truncate the domain-specific portion of the user information. Truncating is useful when user entries on the authenticating server do not include domain information. You can specify this option with any server match rule. This option is only applicable when the user information is sent to the controller in the following formats:
<domain>\<user> - The <domain>\ portion is truncated.
<user>@<domain> - The @<domain> portion is truncated.

This option does not support client information sent in the format host/<pc-name>.<domain>

Using the WebUI

1) Navigate to the Configuration > Security > Authentication > Servers page.

2) Select Server Group to display the Server Group list.

3) Enter the name of the new server group and click Add.

4) Select the name to configure the server group.

5) Under Servers, click Edit for a configured server, or click New to add a server to the group.

 

  • If editing a configured server, select Trim FQDN, scroll right, and click Update Server.
  • If adding a new server, select a server from the drop-down menu, then select Trim FQDN, scroll right, and click Add Server.

6) Click Apply.

 

Using the CLI

aaa server-group corp-serv
auth-server radius-2 match-authstring contains abc.corpnet.com trim-fqdn

Version History
Revision #:
1 of 1
Last update:
‎07-02-2014 06:05 PM
Updated by:
 
Labels (1)
Contributors
Search Airheads
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.