Security

Reply
Contributor II
Posts: 69
Registered: ‎04-03-2016

Client Authentication from the MC 7200 internal Auth Server

Hello,

 

When using the internal Authentication Server in the Mobility Controller, can a Client change his Username/Password that are stored on the Controller? Or this has to be done through an Admin Account only?

Guru Elite
Posts: 8,335
Registered: ‎09-08-2010

Re: Client Authentication from the MC 7200 internal Auth Server

No, they cannot. You should use a RADIUS server.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Contributor II
Posts: 69
Registered: ‎04-03-2016

Re: Client Authentication from the MC 7200 internal Auth Server

What if we used the internal Auth Server? It can support up to 8192 Accounts

Guru Elite
Posts: 8,335
Registered: ‎09-08-2010

Re: Client Authentication from the MC 7200 internal Auth Server

No. You should use a RADIUS server.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Contributor II
Posts: 69
Registered: ‎04-03-2016

Re: Client Authentication from the MC 7200 internal Auth Server

Any reason?!! This is supported in the MC 7200, and you can check the attached document.

 

For the dimensioning, please refer to Appendix D, table 24

Guru Elite
Posts: 8,335
Registered: ‎09-08-2010

Re: Client Authentication from the MC 7200 internal Auth Server

RADIUS servers are purpose built. The controller functionally was from a time when RADIUS servers were not easily accessible. The internal user database should be a last resort.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Contributor II
Posts: 69
Registered: ‎04-03-2016

Re: Client Authentication from the MC 7200 internal Auth Server

Yes, this is a temp solution in our scenario, until we implement an external Radius Server.

 

But my question is, can the Client change his Username/Password? If it was configured in the Controller?

 

Thanks.

Guru Elite
Posts: 20,815
Registered: ‎03-29-2007

Re: Client Authentication from the MC 7200 internal Auth Server

The client cannot change their username and password if that account is located in the internal database in a controller.



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Guru Elite
Posts: 8,335
Registered: ‎09-08-2010

Re: Client Authentication from the MC 7200 internal Auth Server

No, they cannot.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Contributor II
Posts: 69
Registered: ‎04-03-2016

Re: Client Authentication from the MC 7200 internal Auth Server

Thanks.

Search Airheads
Showing results for 
Search instead for 
Did you mean: