03-20-2013 05:04 AM
we have two 7210 type controllers running ArubaOS 18.104.22.168.
The controllers are configured in an all-masters-model with one controller having a higher VRRP priority than the other.
Basically, I followed the configuration guidelines in Chapter 25 of the ArubaOS 6.2 User Guide.
One of the configured SSIDs uses EAP-TLS authentication.
My question is whether my clients' connectivity to the EAP-TLS enabled WLAN should persist if the active master controller fails?
My experience is that clients get disconnected once the active master controller is down. Also, it takes quite a while for a client to be able to re-establish connectivity again.
Is this normal behaviour with EAP-TLS authentication?
03-20-2013 06:14 AM - edited 03-20-2013 06:15 AM
Yep,As Far as i aware,It's normal - Each Controller got is own user-db (that the database that contain all the AAA info regarding all the users of your WLAN) . so when your 1st failed - your 2nd master need to build is own new user-db = each user/device need to re-auth.
have a gr8 day. :smileywink:
Aruba Airheads - Powered By community for empower the community
************ Don't Forget to Kudos + me,If i helped you******************
03-20-2013 08:05 AM
On any controller failover you will be disconnected and reconnected. The controllers do not currently share user table/state data between each other, therefore the client will need to reauthenticate. The time to do so will vary depending on how long it takes for the AP to come up and then the client to reauthenticate.
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX
03-21-2013 09:10 AM
My understanding is that stateful failover will be supported in the next version of code which is released. I would check with your SE on this feature/enhancement.