Wireless Access

Reply
Occasional Contributor II
Posts: 38
Registered: ‎03-30-2016

User Role after MAC Auth

Hi:

I'm working with mac auth in a test environment using the controller's internal database.

Even though I've set a "MAC Authentication Default Role" in the aaa profile, the role that gets assigned to the user is coming from the user entry in the internal database.

 

Is there a way to have the aaa proflie's MAC auth default role be assigned?

 

There does not seem to be a way to delete the internal database role in the GUI.

 

Thanks,

Tony

 

Aruba Employee
Posts: 159
Registered: ‎02-14-2013

Re: User Role after MAC Auth

If you are using the server-group "default" or "internal" it would have a derivation rule as below. 

 

aaa server-group "default"
auth-server Internal
set role condition role value-of

Try deleting the rule or create a different server-group that doesn't have the derivation rule. 

Thanks,
Rajaguru Vincent
CWNA | CWSP | CWAP | CWDP | ACMP
Occasional Contributor II
Posts: 38
Registered: ‎03-30-2016

Re: User Role after MAC Auth

Thank you.

Yes, the default server group was in use.

I had forgotten about that.

All is well with a shiny, new server group!

Thank you!

Search Airheads
Showing results for 
Search instead for 
Did you mean: