Controller-less WLANs

How to configure management authentication on IAP using Tacacs Server?
Requirement:

Instant access points come with default username and password i.e  admin/admin.  This does not go long way, as the IAP start finding their place in campus and corporate networks.

With many administrators managing and monitoring the clustered IAP networks, TACACS or Active Directory based authentication is more useful.



Solution:

Keep this in view, IAP development teams have integrated TACACS and Radius based management authentication. 



Configuration:

Follow the below steps to configure radius authentication in IAP:

  1. Login to IAP web interface
  2. Select "System" from the main menu and then click on "Admin" tab
  3. Under local authentication, select as "Authentication Server"
  4. Under the "Auth Server 1" Select "New Server"
  5. Filling the name, IP address and shared key for Tacacs server and click OK.

 

                                                                         



Verification

Logout of the IAP web interface and try logging in using the username and password on TACACS server.

Version History
Revision #:
2 of 2
Last update:
‎08-04-2015 05:45 PM
Updated by:
 
Labels (1)
Contributors
Comments
Walter-den-besten

Is it also possible to have different access levels for users defined in tacacs?

I prefer to have some users with "view only" access, as wel as a user with guest registration only access.

 

What should the configuration on the tacacs server by to have this accomplished?

Search Airheads
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.