Security

Hi,

We've got a cluster of controllers (aruba0, arubal1 - arubal4) that are running ArubaOS 6.4.3.6. As normal, our RADIUS server configurations a rereplicated from the master controller down to all the local ones. Looking in my RADIUS accounting logs, I can see that the nas-ip-address matches up with the IP address of the controller sending rthe RADIUS auth request. However the nas identifier is always that of the master controller. This is correct because on aruba0 I've set the nas identifier to be "aruba0" and this gets pushed to all the other controllers. If I log onto a local controller , I can;t modify the nasidentifier as seen in a RADIUS server configuration because its read only. Is there any way of getting each local controller to advertise its own name as the nasidentifier instead of that of the master controller?

or do I just leave it blank and let the local controler fill in stuff itself?

One of the wireless SE can confirm but you should be able to go into the locals and configure the NAS ID otherwise it will take the setting from the master.

hmmm tried that. For 1 of our radius servers, removed the master controller settings for nasidentifier and pushed the config. Went to one of our local controllers and tried to edit that particular radius server nas identifier. It's greyed out, I can set the source interface but everything else in the temolate is read only. Re-adding the nasidentifier on the master and it apears on the local controller, again read only

A

Not sure where it's located but one of other SE can chime in. I know there is a setting somewhere to override the NAS ID in the locals