BLDG01-F1# sh running-config Current configuration: ! !Version ArubaOS-CX FL.10.05.0001 !export-password: default hostname BLDG01-F1 user admin group administrators password ciphertext AQBapWuhprnxKXLb4zjyNq7EImrSxoC+mScxxj+sxba3qQvQYgAAALqGFM7NaDljbfP/JH3n/iKxRQ4BGvIyXsC01/nvMdQtVi6+escpOFRJmnYHRauT0HvXeI31R0LDzUOOY2H/aRfmlLGus3U36QIigSsmaiB01l1CsixQVPFnLnxuTSntxT9O tls certified-algorithms-only clock timezone pst8pdt radius-server tracking interval 60 radius-server tracking retries 3 ntp server 10.80.2.219 iburst ntp enable ntp vrf mgmt cli-session max-per-user 5 timeout 0 ! ! ! ! radius-server host aoss-cppm.tmelab.net key ciphertext AQBapdAz4irjSK61Zg/CFArsNYWKbn1LObqDD/v9SH1eMQ6ABQAAADY26liu retries 5 tracking enable clearpass-username admin clearpass-password ciphertext AQBapYv/u3/YfG9vYRpFxmOTtsFLIWxuAX442RdG9j11jsZ6CQAAACZ5Y2/BK9FmhQ== vrf mgmt ! radius dyn-authorization enable logging facility local1 ssh server vrf default ssh server vrf mgmt crypto pki ta-profile cp ta-certificate -----BEGIN CERTIFICATE----- MIIDYzCCAkugAwIBAgIQZiDAdPhWQqNE3PpMDBcTBjANBgkqhkiG9w0BAQsFADBE MRMwEQYKCZImiZPyLGQBGRYDbmV0MRYwFAYKCZImiZPyLGQBGRYGdG1lbGFiMRUw EwYDVQQDEwx0bWVsYWItQUQtQ0EwHhcNMTcwMzI5MDExMzA4WhcNMjIwMzI5MDEy MzA4WjBEMRMwEQYKCZImiZPyLGQBGRYDbmV0MRYwFAYKCZImiZPyLGQBGRYGdG1l bGFiMRUwEwYDVQQDEwx0bWVsYWItQUQtQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrdqdR2QQm4Lo3i/X9bvTu41cf3sVFzPFn727zlgrYySXWtyvW M3Jzf6P3FsqQzrsaP+QhlNsYMTrY2Yiccm7C9gNshpx95elzXsZ2TBP88qoUPD9F jH42YgnqAN61+opmct8aRgSJhTtKv+WEolVtLgL9/CL3zmvmbpz3oyYjF9W3lesp D52BeEbPqsBrALbYQypxJJLonZuueM7ePhSYbPnbrGuV8M9BiDyEyQ87OUYGgq7J krwjrer+BKYFIxqJQDHbY96ozbaUScv8nOylpUrH56r3jT5Xn05JDdOIJvBKniYK ZxIK+m4Mv2XS0zxuZBG1F1YDl/bcQ353jazbAgMBAAGjUTBPMAsGA1UdDwQEAwIB hjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBQuBjOz0LpCALxkgy9bWbziV+1D UDAQBgkrBgEEAYI3FQEEAwIBADANBgkqhkiG9w0BAQsFAAOCAQEAydVR86YZez9N uIvJOftLczu0y3YfGoA5PK88Yv3TSMv+gxK5yiceU2HkV3PvVeCXyN9Nn9EUKLJ8 87/BqDTsNKKD20axHNk/w2p5I8LY6g/Y8t3N84gXx3439+GezBdlxznEmWAhebAQ /JMnp+aD9Xhw9tgGeDXMB/GIhx0PCK22VbRUoDeZP3o+LmdB2fOdqhfN8+e2OMpz AGsBGGEJJWqOKSUkHC25Jkl0RfyymdxuWEflHofbF2DjSWheR023A5dA6a5WkxTV 7WxwC8ekitnlY5BT2ZHV1LXLUsgvuN3j8G2+yvYiS6Z/da3ORb6Grm79sqZpzlKZ XWjU/zVxBQ== -----END CERTIFICATE----- END_OF_CERTIFICATE vsf secondary-member 3 vsf member 1 type jl668a link 1 1/1/25 link 2 1/1/26 vsf member 2 type jl666a link 1 2/1/25 link 2 2/1/26 vsf member 3 type jl661a link 1 3/1/49 link 2 3/1/50 class ip clshello 10 match icmp any any class ip test client track ip vlan 1 client track ip vlan 10 voice vlan 20,70,100,195,197-200,4000 spanning-tree interface mgmt no shutdown ip static 10.6.9.15/24 default-gateway 10.6.9.1 ubt-client-vlan 4000 ubt zone Aruba vrf default primary-controller ip 10.6.9.6 backup-controller ip 10.6.9.5 enable mac-group localmacauth seq 10 match mac 00:04:f2:80:23:57 port-access policy plcyhello 10 class ip clshello port-access role localmacauthrole mtu 1600 reauth-period 5 port-access role phone_role auth-mode client-mode vlan trunk allowed 10 port-access device-profile localauthdp enable associate role localmacauthrole associate mac-group localmacauth port-access port-security enable aaa authentication port-access dot1x authenticator enable aaa authentication port-access mac-auth enable interface lag 1 no shutdown no routing vlan trunk native 1 vlan trunk allowed 1,195,197-200 lacp mode active interface 1/1/1 no shutdown no routing vlan access 1 aaa authentication port-access auth-precedence mac-auth dot1x aaa authentication port-access mac-auth cached-reauth cached-reauth-period 6000 quiet-period 0 reauth reauth-period 600 enable interface 1/1/2 shutdown description radius_assign_att no routing vlan access 1 aaa authentication port-access auth-precedence mac-auth dot1x aaa authentication port-access client-limit 10 aaa authentication port-access mac-auth cached-reauth cached-reauth-period 6000 quiet-period 0 reauth reauth-period 600 enable client track ip update-interval 60 interface 1/1/3 no shutdown no routing vlan access 1 interface 1/1/4 no shutdown no routing vlan access 1 interface 1/1/5 no shutdown no routing vlan access 1 interface 1/1/6 no shutdown no routing vlan access 1 interface 1/1/7 no shutdown no routing vlan access 1 interface 1/1/8 no shutdown no routing vlan access 1 interface 1/1/9 no shutdown no routing vlan access 1 interface 1/1/10 no shutdown no routing vlan access 1 interface 1/1/11 no shutdown no routing vlan access 1 interface 1/1/12 no shutdown no routing vlan access 1 interface 1/1/13 no shutdown no routing vlan access 1 interface 1/1/14 no shutdown no routing vlan access 1 interface 1/1/15 no shutdown no routing vlan access 1 interface 1/1/16 no shutdown no routing vlan access 1 interface 1/1/17 no shutdown no routing vlan access 1 interface 1/1/18 no shutdown no routing vlan access 1 interface 1/1/19 no shutdown no routing vlan access 1 interface 1/1/20 no shutdown no routing vlan access 1 interface 1/1/21 no shutdown no routing vlan access 1 interface 1/1/22 no shutdown no routing vlan access 1 interface 1/1/23 no shutdown no routing vlan access 1 interface 1/1/24 no shutdown no routing vlan access 1 interface 1/1/25 no shutdown interface 1/1/26 no shutdown interface 1/1/27 no shutdown no routing vlan access 1 interface 1/1/28 shutdown lag 1 interface 2/1/1 shutdown no routing vlan trunk native 1 vlan trunk allowed 10 interface 2/1/2 shutdown description radius_allow_access no routing vlan access 1 aaa authentication port-access auth-precedence mac-auth dot1x aaa authentication port-access client-limit 10 aaa authentication port-access mac-auth cached-reauth cached-reauth-period 6000 quiet-period 0 reauth reauth-period 600 enable client track ip update-interval 60 interface 2/1/3 no shutdown no routing vlan trunk native 1 vlan trunk allowed all spanning-tree port-type admin-edge aaa authentication port-access allow-cdp-bpdu aaa authentication port-access allow-lldp-bpdu aaa authentication port-access client-limit 2 port-access security violation action shutdown aaa authentication port-access dot1x authenticator max-eapol-requests 3 max-retries 1 reauth enable aaa authentication port-access mac-auth cached-reauth cached-reauth-period 86400 quiet-period 30 enable interface 2/1/4 no shutdown no routing vlan access 1 interface 2/1/5 no shutdown no routing vlan access 1 interface 2/1/6 no shutdown no routing vlan access 1 interface 2/1/7 no shutdown no routing vlan access 1 interface 2/1/8 no shutdown no routing vlan access 1 interface 2/1/9 no shutdown no routing vlan access 1 interface 2/1/10 no shutdown no routing vlan access 1 interface 2/1/11 no shutdown no routing vlan access 1 interface 2/1/12 no shutdown no routing vlan access 1 interface 2/1/13 no shutdown no routing vlan access 1 interface 2/1/14 no shutdown no routing vlan access 1 interface 2/1/15 no shutdown no routing vlan access 1 interface 2/1/16 no shutdown no routing vlan access 1 interface 2/1/17 no shutdown no routing vlan access 1 interface 2/1/18 no shutdown no routing vlan access 1 interface 2/1/19 no shutdown no routing vlan access 1 interface 2/1/20 no shutdown no routing vlan access 1 interface 2/1/21 no shutdown no routing vlan access 1 interface 2/1/22 no shutdown no routing vlan access 1 interface 2/1/23 no shutdown no routing vlan access 1 interface 2/1/24 no shutdown no routing vlan access 1 interface 2/1/25 no shutdown interface 2/1/26 no shutdown interface 2/1/27 no shutdown no routing vlan access 1 interface 2/1/28 no shutdown no routing vlan access 1 interface 3/1/1 no shutdown no routing vlan access 1 interface 3/1/2 no shutdown no routing vlan access 1 interface 3/1/3 no shutdown no routing vlan access 1 interface 3/1/4 no shutdown no routing vlan access 1 interface 3/1/5 no shutdown no routing vlan access 1 interface 3/1/6 no shutdown no routing vlan access 1 interface 3/1/7 no shutdown no routing vlan access 1 interface 3/1/8 no shutdown no routing vlan access 1 interface 3/1/9 no shutdown no routing vlan access 1 interface 3/1/10 no shutdown no routing vlan access 1 interface 3/1/11 no shutdown no routing vlan access 1 interface 3/1/12 no shutdown no routing vlan access 1 interface 3/1/13 no shutdown no routing vlan access 1 interface 3/1/14 no shutdown no routing vlan access 1 interface 3/1/15 no shutdown no routing vlan access 1 interface 3/1/16 no shutdown no routing vlan access 1 interface 3/1/17 no shutdown no routing vlan access 1 interface 3/1/18 no shutdown no routing vlan access 1 interface 3/1/19 no shutdown no routing vlan access 1 interface 3/1/20 no shutdown no routing vlan access 1 interface 3/1/21 no shutdown no routing vlan access 1 interface 3/1/22 no shutdown no routing vlan access 1 interface 3/1/23 no shutdown no routing vlan access 1 interface 3/1/24 no shutdown no routing vlan access 1 interface 3/1/25 no shutdown no routing vlan access 1 interface 3/1/26 no shutdown no routing vlan access 1 interface 3/1/27 no shutdown no routing vlan access 1 interface 3/1/28 no shutdown no routing vlan access 1 interface 3/1/29 no shutdown no routing vlan access 1 interface 3/1/30 no shutdown no routing vlan access 1 interface 3/1/31 no shutdown no routing vlan access 1 interface 3/1/32 no shutdown no routing vlan access 1 interface 3/1/33 no shutdown no routing vlan access 1 interface 3/1/34 no shutdown no routing vlan access 1 interface 3/1/35 no shutdown no routing vlan access 1 interface 3/1/36 no shutdown no routing vlan access 1 interface 3/1/37 no shutdown no routing vlan access 1 interface 3/1/38 no shutdown no routing vlan access 1 interface 3/1/39 no shutdown no routing vlan access 1 interface 3/1/40 no shutdown no routing vlan access 1 interface 3/1/41 no shutdown no routing vlan access 1 interface 3/1/42 no shutdown no routing vlan access 1 interface 3/1/43 no shutdown no routing vlan access 1 interface 3/1/44 no shutdown no routing vlan access 1 interface 3/1/45 no shutdown no routing vlan access 1 interface 3/1/46 no shutdown no routing vlan access 1 interface 3/1/47 no shutdown no routing vlan access 1 interface 3/1/48 no shutdown no routing vlan access 1 interface 3/1/49 no shutdown interface 3/1/50 no shutdown interface 3/1/51 no shutdown no routing vlan access 1 interface 3/1/52 no shutdown lag 1 interface loopback 0 ip address 10.10.10.15/32 interface vlan 1 ip address 20.1.1.1/24 no ip dhcp interface vlan 200 ip address 10.1.200.4/24 ip route 0.0.0.0/0 10.1.200.1 ip dns host aoss-cppm.tmelab.net 10.5.8.12 ip dns host aoss-cppm.tmelab.net 10.5.8.12 vrf mgmt ! ! ! ! ! ip source-interface ubt interface vlan200 https-server vrf default https-server vrf mgmt BLDG01-F1#