Security

amwc888 · ‎03-30-2016

Hi all,

I have a Cisco WLC 5508 WLC with version 8.1 code and have configured two RADIUS servers which are Aruba CPPM. What I'm trying to do is configure Radius fallback so in the event if the primary CPPM goes offline, the secondary CPPM will take over by servicing AAA request. In the event if the primary CPPM comes back online, it should takeover the AAA request servicing role from the secondary CPPM.

Unfortunately, I'm not able to get this fallback to work properly. I've taken the primary CPPM offline and brought it back online, but am still seeing the secondary CPPM continue to servicing AAA requests where I expect the primary CPPM to resume this role.

I have configured active fallback, configured the name of the probes to be sent, and left the default interval time it takes to send the probes at 300 seconds on the WLC.

Any advice is much appreciated. I have seen Cisco documents referencing ACS and ISE but not sure if CPPM is supported.

cappalli · ‎03-30-2016

This is a function of the wireless controller, not the RADIUS server. It may be best to ask this question on Ciscos forums if you don't get a response here.

Sent from Nine<>

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480

tarnold · ‎03-30-2016

You could also just configure the VIP between the two CPPMs so you can just use the VIP as the fail over and when the main comes back on it will fail back.

Thank You,
Troy

--Give Kudos: found something helpful, important, or cool? Click Kudos Star in a post.

--Problem Solved? Click "Accepted Solution" in a post.

amwc888 · ‎03-30-2016

Thanks gents, I'll try simulating the fallback option on the Cisco WLC in the lab and do some troubleshooting around it. If I can't get it to work, I'll look at redesigning the CPPM cluster using a VIP.

Innovate at the speed of mobile and IoT.

Be in the know.

Join, Learn, Share.

How can we help?

Essential Reading.

Ideas Exchange.

Security

Cisco WLC Fallback with CPPM

Cisco WLC Fallback with CPPM

Re: Cisco WLC Fallback with CPPM

Re: Cisco WLC Fallback with CPPM

Re: Cisco WLC Fallback with CPPM

Re: Cisco WLC Fallback with CPPM

Re: Cisco WLC Fallback with CPPM

Re: Cisco WLC Fallback with CPPM

Encrypting Guest traffic

Step-by-Step: How to Configure Microsoft IAS Radius Server from Scratch

limiting the number of device s a user can have

EAP-TLS Authenication

Aruba support LEAP?

Ap-80mb

CLI Command reference guide

Remote AP

ISO 24730 Standard

COTD: Boot options for controllers

WPA-PSK and VLAN assignment via MAC address

Cisco ACS and Aruba Radius Auth

Rolling out 802.1x with GTC

Making DHCP mandatory on Aruba WLAN

Wireless Group Policy on Windows 2008

Aruba Instant 6.4.2.6-4.1.1.10 Released 9/28/15

Aruba Instant 6.4.2.6-4.1.1.11 Released 11/27/2015

Re: ArubaOS Downloads

Remote AP Networks

Indoor 802.11n Site Survey and Planning

Base Designs Lab Setup for Validated Reference Design

Campus Network Design

Optimizing Aruba WLANs for Roaming Devices

Security

Cisco WLC Fallback with CPPM

Cisco WLC Fallback with CPPM

Re: Cisco WLC Fallback with CPPM

Re: Cisco WLC Fallback with CPPM

Re: Cisco WLC Fallback with CPPM

Re: Cisco WLC Fallback with CPPM

Re: Cisco WLC Fallback with CPPM

Re: Cisco WLC Fallback with CPPM

Follow Us