09-07-2012 10:23 AM
Understand MASTER/LOCAL is for redundancy, but from authentication aspect, can I have Local APs connecting to Local Controller to authenticate user to a Local RADIUS?
For Bridge mode RAP, if I specify authentication server pointing to a local Radius server, will the authentication be going back to the controller and back to the local site again, since the controller is the Radius Client to the radius server?
Having said that, for a deployment without redundancy, I can have multiple remote site with RAP to a single Controller at HQ all running bridge mode?
Appreciate if anyone can help =)
09-07-2012 11:49 AM
You should think of master local as a management model more than redundancy. You might want to take a look at the controller VRD.
In your model, you're talking about authentication using an authenticaiton server on the local site correct? Authentication from the controller would have to go back to the local site, and you'd likely want to have a site-to-site VPN for that to happen. If you want bridged traffic with local authentication you're likely better off using Aruba Instant AP at the site.
Director, Strategic Account Solutions
09-09-2012 11:16 PM
Hi Andy, Thanks for the response, appreciate it =)
With the Master/Local deployment can i assign remote site AP to do authentication with the remote site Radius Server instead of letting the authentication traffic going back to the Master Controller located at the HQ and back to the Remote Site.
Sorry if the question sounds silly, as I assume the Master Controller is the Radius Client of the Remote Site Radius as the configuration held there.