06-20-2013 12:47 PM
I would like to assign a vlan-pool to a particular user role. Is this possible?
I've tried both web-gui and ssh and it won't let me put in a vlan-pool. In fact the ssh actually yells at me and tells me it's a pool and won't do it.
(Aruba620) (config) # (Moss-Aruba620) (config) #user-role Students
(Aruba620) (config-role) #vlan Students <---This is the vlan-pool i created
Named VLAN "Students" is a VLAN pool
(Aruba620) (config-role) #
06-20-2013 01:06 PM
Vlan-pools have beeen around for a long time.... not sure why you think they are only supported in 6.3
We are testing on 220.127.116.11 with a 620 controller just trying to prove the concept for a larger install with 7210's.
Large install that will include several buildings but will only have a few user roles. (Staff, Student, Dorm Device)
Will be using CPPM and the goal is instead of creating a vlan for each building's roles (17 buildings x 3 roles = 51 vlans)
We would like to create 3 vlan-pools and then based upon the user login, CPPM would send back role and vlan pool. Or at very least send back role and let the aruba use the role to assign it to the vlan-pool. We can assign it to a single vlan but not to a pool.
I know we can accomplish this in CPPM but I'm just trying to simplfy how many rules I would need to create in CPPM. 3 General rules instead of rules per each building via AP group.
06-20-2013 01:11 PM
See the following post, i had the same question not long ago:
VLAN pools have been around for a while, but their usage in roles and or RADIUS VSAs was not supported until 6.3.
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX
06-20-2013 01:26 PM
VLAN Derivation from Named VLAN Pools
Named VLANs can be configured under user rule, server derivation, user derivation, and VSA in this release. Previously, only single VLAN ID names supported the above.