09-17-2014 11:20 AM
I am new to all things Aruba. What I'm trying to do is add a user rule via the command line. I just don't know what the command is. I took a look at the manual, but I might not be looking for the right keywords as I couldn't find it. Aruba OS is version 126.96.36.199. If I didn't post this in the right forum, please move it or alert me and I'll repost in the appropriate section.
Thanks in advance.
09-17-2014 01:31 PM
What exactly are you trying to create? This chaper on Roles and Policies should help get you started. You'll need the PEFNG license for it to work.
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX
09-18-2014 05:40 AM
Thanks for the reply. Basically, I am creating a web form where users can register their wireless devices with the Aruba controller. So I want to write a script to SSH into the controller and run the command to add a user rule.
09-19-2014 08:10 AM - edited 09-19-2014 08:12 AM
(config) #aaa derivation-rules user <udr-ruleset-name>
(user-rule) #set role condition <bssid,dhcp-option,dhcp-option-77,encryption-type,
essid,location,macaddr> <contains,ends-with,equals,not-equals,starts-with> <value> set-value <role-name>
(user-rule) #set vlan condition <bssid,dhcp-option,dhcp-option-77,encryption-type,
essid,location,macaddr> <contains,ends-with,equals,not-equals,starts-with> <value> set-value <vlan>
Keep in mind that this was not designed to be a registration-type feature. It was designed to take groups of devices that share common properties and assign a role (for example, the DHCP fingerprint of game consoles, or the MAC prefix of a VoIP phone). You may run into scalability issues.
Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP