08-08-2015 02:13 PM
radius scheme SIM
primary authentication X.X.X.X
primary accounting X.X.X.X
key authentication cipher xxxxxxxx
key accounting cipher xxxxxxxxxx
accounting login radius-scheme SIM
authentication lan-access radius-scheme SIM
authorization lan-access radius-scheme SIM
port access vlan 100
port-security port-mode userlogin-secure-ext
port-security tx-key-type 11key
undo dot1x handshake
dot1x mandatory-domain SIM
undo dot1x multicast-trigger
wlan service-template 1 crypto
bind WLAN-ESS 100
undo gtk-rekey enable
gtk-rekey method time-based 180
This SSID is responsible for connections of users with mobile chip.
Solved! Go to Solution.
08-08-2015 02:16 PM
The controller is EAP agnostic. Your RADIUS server would be configured for
Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
08-08-2015 02:24 PM
Hello Cappalli, thanks for answering.
To better explain the Radius server is in an environment that we have no access. What happens with the HP controllers is that when the User connects to the cell phone SSID, a window and at that time the User selects the device chip.
In Aruba controller I can not make the User choose the type of authentication
08-08-2015 03:19 PM
08-09-2015 03:25 AM
When using termination on the controller as you are, EAP-SIM is not supported. You would need to remove the termination setting and let termination of the EAP session be done on a RADIUS server that supports EAP-SIM.
Refer to the following for details:
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX