Wireless Access

Reply
Contributor I
Posts: 29
Registered: ‎04-16-2014

Controller management access order: internal users and RADIUS server?

Hi all,

 

Where can I define the order of controller management access identity source? I have setup RADIUS management access but every time I log in as a admin (internal user) it first tries to authenticate using RADIUS and only after failure it checks the internal user.

 

Is there a way that in management access the internal users would be checked first and only after that the RADIUS and external identity sources?

 

Many thanks,

Aruba Employee
Posts: 20
Registered: ‎01-24-2013

Re: Controller management access order: internal users and RADIUS server?

Hi Friend,

 

Always strongest authentication first :)

Valued Contributor II
Posts: 804
Registered: ‎12-01-2014

Re: Controller management access order: internal users and RADIUS server?

HI,

 

Are you talking about Auth servers ? if so we can change order by using up down buttons as shown in the snapshot.

 

Mgmt_Auth.png

 

Please feel free for any further clarity on this.

Cheers,
Venu Puduchery,
[Is my post helped you ? Give Kudos :) ]
Contributor I
Posts: 29
Registered: ‎04-16-2014

Re: Controller management access order: internal users and RADIUS server?

I'm not using Internal database as a authentication server. I have couple of management users statically added as you have "admin" setup in your screenshot.

 

I have also own user for Airwave and for other NMS to fetch data with SSH from the controllers. They'll also do the failed RADIUS attempt before using "internal" accounts :(   

Guru Elite
Posts: 8,456
Registered: ‎09-08-2010

Re: Controller management access order: internal users and RADIUS server?

[ Edited ]

Unfortunately this cannot be changed. For security reasons, RADIUS/TACACS+ authentication happens first.


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Contributor I
Posts: 29
Registered: ‎04-16-2014

Re: Controller management access order: internal users and RADIUS server?

That's not good...

 

But thanks for the answer! Really appreciate it!

 

Guru Elite
Posts: 8,456
Registered: ‎09-08-2010

Re: Controller management access order: internal users and RADIUS server?

You can submit a feature request on the idea portal.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Search Airheads
Showing results for 
Search instead for 
Did you mean: