Controllerless Networks

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

You can have all users connect to the same SSID. You will want to control VLAN/VLANs via User-Roles. You can assign what network the user should be on based on the role that you assign them to. These roles can be returned by your RADIUS server, or by Role Derivation Rules.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos
------------------------------

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

i have standalone controller can explain more how can user in vlan 10 and user in vlan 20 and vlan 30 can authenticate in ssid psk with internal raduis server

------------------------------
mohamed gamal
------------------------------

Original Message:
Sent: Nov 16, 2021 10:49 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

You can have all users connect to the same SSID. You will want to control VLAN/VLANs via User-Roles. You can assign what network the user should be on based on the role that you assign them to. These roles can be returned by your RADIUS server, or by Role Derivation Rules.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

If you are using PSK as the authentication method, your only viable option would be to configure MPSK. You would need to set up an external RADIUS server to get MPSK working. You can not use the internal server for authentication. You can then return roles that you assign VLANs to.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos
------------------------------

Original Message:
Sent: Nov 16, 2021 03:23 PM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i have standalone controller can explain more how can user in vlan 10 and user in vlan 20 and vlan 30 can authenticate in ssid psk with internal raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 16, 2021 10:49 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

You can have all users connect to the same SSID. You will want to control VLAN/VLANs via User-Roles. You can assign what network the user should be on based on the role that you assign them to. These roles can be returned by your RADIUS server, or by Role Derivation Rules.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

sorry but cant used mpsk 
if i can use profile in aaa profile and assign another profile with different vlan in this profile 
it's applicable or not 


------------------------------
mohamed gamal
------------------------------

Original Message:
Sent: Nov 17, 2021 08:47 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

If you are using PSK as the authentication method, your only viable option would be to configure MPSK. You would need to set up an external RADIUS server to get MPSK working. You can not use the internal server for authentication. You can then return roles that you assign VLANs to.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 03:23 PM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i have standalone controller can explain more how can user in vlan 10 and user in vlan 20 and vlan 30 can authenticate in ssid psk with internal raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 16, 2021 10:49 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

You can have all users connect to the same SSID. You will want to control VLAN/VLANs via User-Roles. You can assign what network the user should be on based on the role that you assign them to. These roles can be returned by your RADIUS server, or by Role Derivation Rules.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

and if can create many different ap-group 
like that
ap-group "x40"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-40-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "X50"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "xS60"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-60-vap_prof"
virtual-ap "x-Guest-vap_prof"
ap-system-profile "apsys_prof-cvi57"
!
ap-group "x70"
virtual-ap "Guest-vap_prof"
virtual-ap "x-vap_prof"
virtual-ap "x-Guest-vap_prof"
!


wlan virtual-ap "x-STUFF-40-vap_prof"
aaa-profile "x-STUFF-40-aaa_prof"
ssid-profile "x-STUFF-40-ssid_prof"
vlan 40
!
wlan virtual-ap "x-STUFF-60-vap_prof"
aaa-profile "x-STUFF-60-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 60
!
wlan virtual-ap "x--STUFF-vap_prof"
aaa-profile "x-STUFF-aaa_prof"
ssid-profile "x-STUFF-ssid_prof"
vlan 50
!
wlan virtual-ap "x-SUFF70-vap_prof"
aaa-profile "x-SUFF70-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 70

------------------------------
mohamed gamal
------------------------------

Original Message:
Sent: Nov 17, 2021 08:47 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

If you are using PSK as the authentication method, your only viable option would be to configure MPSK. You would need to set up an external RADIUS server to get MPSK working. You can not use the internal server for authentication. You can then return roles that you assign VLANs to.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 03:23 PM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i have standalone controller can explain more how can user in vlan 10 and user in vlan 20 and vlan 30 can authenticate in ssid psk with internal raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 16, 2021 10:49 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

You can have all users connect to the same SSID. You will want to control VLAN/VLANs via User-Roles. You can assign what network the user should be on based on the role that you assign them to. These roles can be returned by your RADIUS server, or by Role Derivation Rules.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

You could clone the virtual AP and change the VLAN:

config t
wlan virtual-ap "guest-vap-prof-x40"
clone Guest-vap_prof
vlan 40

This will clone the guest virtual AP, name it guest-vap-prof-x40, and make it use vlan 40.  You can then add that vap "guest-vap-prof-x40" to the x40 ap-group.

I hope that makes sense.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
------------------------------

Original Message:
Sent: Nov 18, 2021 06:58 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

and if can create many different ap-group 
like that
ap-group "x40"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-40-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "X50"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "xS60"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-60-vap_prof"
virtual-ap "x-Guest-vap_prof"
ap-system-profile "apsys_prof-cvi57"
!
ap-group "x70"
virtual-ap "Guest-vap_prof"
virtual-ap "x-vap_prof"
virtual-ap "x-Guest-vap_prof"
!


wlan virtual-ap "x-STUFF-40-vap_prof"
aaa-profile "x-STUFF-40-aaa_prof"
ssid-profile "x-STUFF-40-ssid_prof"
vlan 40
!
wlan virtual-ap "x-STUFF-60-vap_prof"
aaa-profile "x-STUFF-60-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 60
!
wlan virtual-ap "x--STUFF-vap_prof"
aaa-profile "x-STUFF-aaa_prof"
ssid-profile "x-STUFF-ssid_prof"
vlan 50
!
wlan virtual-ap "x-SUFF70-vap_prof"
aaa-profile "x-SUFF70-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 70

------------------------------
mohamed gamal

Original Message:
Sent: Nov 17, 2021 08:47 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

If you are using PSK as the authentication method, your only viable option would be to configure MPSK. You would need to set up an external RADIUS server to get MPSK working. You can not use the internal server for authentication. You can then return roles that you assign VLANs to.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 03:23 PM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i have standalone controller can explain more how can user in vlan 10 and user in vlan 20 and vlan 30 can authenticate in ssid psk with internal raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 16, 2021 10:49 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

You can have all users connect to the same SSID. You will want to control VLAN/VLANs via User-Roles. You can assign what network the user should be on based on the role that you assign them to. These roles can be returned by your RADIUS server, or by Role Derivation Rules.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

so you can explain more 
how can configure if have 4 different vlan and one ssid 

wlan virtual-ap "guest-vap-prof-x40"
clone Guest-vap_prof
vlan 40

wlan virtual-ap "guest -vap_prox60"
clone Guest-vap_prof
vlan 60



------------------------------
mohamed gamal
------------------------------

Original Message:
Sent: Nov 18, 2021 08:26 AM
From: Colin Joseph
Subject: broadcast the same ssid name with different vlan on each APgroup .

You could clone the virtual AP and change the VLAN:

config t
wlan virtual-ap "guest-vap-prof-x40"
clone Guest-vap_prof
vlan 40

This will clone the guest virtual AP, name it guest-vap-prof-x40, and make it use vlan 40.  You can then add that vap "guest-vap-prof-x40" to the x40 ap-group.

I hope that makes sense.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

Original Message:
Sent: Nov 18, 2021 06:58 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

and if can create many different ap-group 
like that
ap-group "x40"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-40-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "X50"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "xS60"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-60-vap_prof"
virtual-ap "x-Guest-vap_prof"
ap-system-profile "apsys_prof-cvi57"
!
ap-group "x70"
virtual-ap "Guest-vap_prof"
virtual-ap "x-vap_prof"
virtual-ap "x-Guest-vap_prof"
!


wlan virtual-ap "x-STUFF-40-vap_prof"
aaa-profile "x-STUFF-40-aaa_prof"
ssid-profile "x-STUFF-40-ssid_prof"
vlan 40
!
wlan virtual-ap "x-STUFF-60-vap_prof"
aaa-profile "x-STUFF-60-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 60
!
wlan virtual-ap "x--STUFF-vap_prof"
aaa-profile "x-STUFF-aaa_prof"
ssid-profile "x-STUFF-ssid_prof"
vlan 50
!
wlan virtual-ap "x-SUFF70-vap_prof"
aaa-profile "x-SUFF70-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 70

------------------------------
mohamed gamal

Original Message:
Sent: Nov 17, 2021 08:47 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

If you are using PSK as the authentication method, your only viable option would be to configure MPSK. You would need to set up an external RADIUS server to get MPSK working. You can not use the internal server for authentication. You can then return roles that you assign VLANs to.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 03:23 PM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i have standalone controller can explain more how can user in vlan 10 and user in vlan 20 and vlan 30 can authenticate in ssid psk with internal raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 16, 2021 10:49 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

You can have all users connect to the same SSID. You will want to control VLAN/VLANs via User-Roles. You can assign what network the user should be on based on the role that you assign them to. These roles can be returned by your RADIUS server, or by Role Derivation Rules.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

That is the correct way.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
------------------------------

Original Message:
Sent: Nov 18, 2021 08:35 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

so you can explain more 
how can configure if have 4 different vlan and one ssid 

wlan virtual-ap "guest-vap-prof-x40"
clone Guest-vap_prof
vlan 40

wlan virtual-ap "guest -vap_prox60"
clone Guest-vap_prof
vlan 60



------------------------------
mohamed gamal

Original Message:
Sent: Nov 18, 2021 08:26 AM
From: Colin Joseph
Subject: broadcast the same ssid name with different vlan on each APgroup .

You could clone the virtual AP and change the VLAN:

config t
wlan virtual-ap "guest-vap-prof-x40"
clone Guest-vap_prof
vlan 40

This will clone the guest virtual AP, name it guest-vap-prof-x40, and make it use vlan 40.  You can then add that vap "guest-vap-prof-x40" to the x40 ap-group.

I hope that makes sense.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

Original Message:
Sent: Nov 18, 2021 06:58 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

and if can create many different ap-group 
like that
ap-group "x40"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-40-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "X50"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "xS60"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-60-vap_prof"
virtual-ap "x-Guest-vap_prof"
ap-system-profile "apsys_prof-cvi57"
!
ap-group "x70"
virtual-ap "Guest-vap_prof"
virtual-ap "x-vap_prof"
virtual-ap "x-Guest-vap_prof"
!


wlan virtual-ap "x-STUFF-40-vap_prof"
aaa-profile "x-STUFF-40-aaa_prof"
ssid-profile "x-STUFF-40-ssid_prof"
vlan 40
!
wlan virtual-ap "x-STUFF-60-vap_prof"
aaa-profile "x-STUFF-60-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 60
!
wlan virtual-ap "x--STUFF-vap_prof"
aaa-profile "x-STUFF-aaa_prof"
ssid-profile "x-STUFF-ssid_prof"
vlan 50
!
wlan virtual-ap "x-SUFF70-vap_prof"
aaa-profile "x-SUFF70-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 70

------------------------------
mohamed gamal

Original Message:
Sent: Nov 17, 2021 08:47 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

If you are using PSK as the authentication method, your only viable option would be to configure MPSK. You would need to set up an external RADIUS server to get MPSK working. You can not use the internal server for authentication. You can then return roles that you assign VLANs to.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 03:23 PM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i have standalone controller can explain more how can user in vlan 10 and user in vlan 20 and vlan 30 can authenticate in ssid psk with internal raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 16, 2021 10:49 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

You can have all users connect to the same SSID. You will want to control VLAN/VLANs via User-Roles. You can assign what network the user should be on based on the role that you assign them to. These roles can be returned by your RADIUS server, or by Role Derivation Rules.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

how can user in many  different vlan can authenticate in ssid psk or guest with internl raduis server

------------------------------
mohamed gamal
------------------------------

Original Message:
Sent: Nov 18, 2021 08:26 AM
From: Colin Joseph
Subject: broadcast the same ssid name with different vlan on each APgroup .

You could clone the virtual AP and change the VLAN:

config t
wlan virtual-ap "guest-vap-prof-x40"
clone Guest-vap_prof
vlan 40

This will clone the guest virtual AP, name it guest-vap-prof-x40, and make it use vlan 40.  You can then add that vap "guest-vap-prof-x40" to the x40 ap-group.

I hope that makes sense.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

Original Message:
Sent: Nov 18, 2021 06:58 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

and if can create many different ap-group 
like that
ap-group "x40"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-40-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "X50"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "xS60"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-60-vap_prof"
virtual-ap "x-Guest-vap_prof"
ap-system-profile "apsys_prof-cvi57"
!
ap-group "x70"
virtual-ap "Guest-vap_prof"
virtual-ap "x-vap_prof"
virtual-ap "x-Guest-vap_prof"
!


wlan virtual-ap "x-STUFF-40-vap_prof"
aaa-profile "x-STUFF-40-aaa_prof"
ssid-profile "x-STUFF-40-ssid_prof"
vlan 40
!
wlan virtual-ap "x-STUFF-60-vap_prof"
aaa-profile "x-STUFF-60-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 60
!
wlan virtual-ap "x--STUFF-vap_prof"
aaa-profile "x-STUFF-aaa_prof"
ssid-profile "x-STUFF-ssid_prof"
vlan 50
!
wlan virtual-ap "x-SUFF70-vap_prof"
aaa-profile "x-SUFF70-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 70

------------------------------
mohamed gamal

Original Message:
Sent: Nov 17, 2021 08:47 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

If you are using PSK as the authentication method, your only viable option would be to configure MPSK. You would need to set up an external RADIUS server to get MPSK working. You can not use the internal server for authentication. You can then return roles that you assign VLANs to.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 03:23 PM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i have standalone controller can explain more how can user in vlan 10 and user in vlan 20 and vlan 30 can authenticate in ssid psk with internal raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 16, 2021 10:49 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

You can have all users connect to the same SSID. You will want to control VLAN/VLANs via User-Roles. You can assign what network the user should be on based on the role that you assign them to. These roles can be returned by your RADIUS server, or by Role Derivation Rules.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

The user VLAN is assigned by the Virtual AP VLAN.  An AP gets its configuration from the AP group that it is in.  An AP can be on the other side of the country, but it will tunnel all user traffic to the MC and put the user on whatever VLAN is defined in the Virtual AP of the AP group that the AP is in.

I hope this makes sense.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
------------------------------

Original Message:
Sent: Nov 18, 2021 08:45 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

how can user in many  different vlan can authenticate in ssid psk or guest with internl raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 18, 2021 08:26 AM
From: Colin Joseph
Subject: broadcast the same ssid name with different vlan on each APgroup .

You could clone the virtual AP and change the VLAN:

config t
wlan virtual-ap "guest-vap-prof-x40"
clone Guest-vap_prof
vlan 40

This will clone the guest virtual AP, name it guest-vap-prof-x40, and make it use vlan 40.  You can then add that vap "guest-vap-prof-x40" to the x40 ap-group.

I hope that makes sense.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

Original Message:
Sent: Nov 18, 2021 06:58 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

and if can create many different ap-group 
like that
ap-group "x40"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-40-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "X50"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "xS60"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-60-vap_prof"
virtual-ap "x-Guest-vap_prof"
ap-system-profile "apsys_prof-cvi57"
!
ap-group "x70"
virtual-ap "Guest-vap_prof"
virtual-ap "x-vap_prof"
virtual-ap "x-Guest-vap_prof"
!


wlan virtual-ap "x-STUFF-40-vap_prof"
aaa-profile "x-STUFF-40-aaa_prof"
ssid-profile "x-STUFF-40-ssid_prof"
vlan 40
!
wlan virtual-ap "x-STUFF-60-vap_prof"
aaa-profile "x-STUFF-60-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 60
!
wlan virtual-ap "x--STUFF-vap_prof"
aaa-profile "x-STUFF-aaa_prof"
ssid-profile "x-STUFF-ssid_prof"
vlan 50
!
wlan virtual-ap "x-SUFF70-vap_prof"
aaa-profile "x-SUFF70-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 70

------------------------------
mohamed gamal

Original Message:
Sent: Nov 17, 2021 08:47 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

If you are using PSK as the authentication method, your only viable option would be to configure MPSK. You would need to set up an external RADIUS server to get MPSK working. You can not use the internal server for authentication. You can then return roles that you assign VLANs to.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 03:23 PM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i have standalone controller can explain more how can user in vlan 10 and user in vlan 20 and vlan 30 can authenticate in ssid psk with internal raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 16, 2021 10:49 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

You can have all users connect to the same SSID. You will want to control VLAN/VLANs via User-Roles. You can assign what network the user should be on based on the role that you assign them to. These roles can be returned by your RADIUS server, or by Role Derivation Rules.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

thanks 
but you have any documentaion how can configure this solution

------------------------------
mohamed gamal
------------------------------

Original Message:
Sent: Nov 18, 2021 09:02 AM
From: Colin Joseph
Subject: broadcast the same ssid name with different vlan on each APgroup .

The user VLAN is assigned by the Virtual AP VLAN.  An AP gets its configuration from the AP group that it is in.  An AP can be on the other side of the country, but it will tunnel all user traffic to the MC and put the user on whatever VLAN is defined in the Virtual AP of the AP group that the AP is in.

I hope this makes sense.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

Original Message:
Sent: Nov 18, 2021 08:45 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

how can user in many  different vlan can authenticate in ssid psk or guest with internl raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 18, 2021 08:26 AM
From: Colin Joseph
Subject: broadcast the same ssid name with different vlan on each APgroup .

You could clone the virtual AP and change the VLAN:

config t
wlan virtual-ap "guest-vap-prof-x40"
clone Guest-vap_prof
vlan 40

This will clone the guest virtual AP, name it guest-vap-prof-x40, and make it use vlan 40.  You can then add that vap "guest-vap-prof-x40" to the x40 ap-group.

I hope that makes sense.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

Original Message:
Sent: Nov 18, 2021 06:58 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

and if can create many different ap-group 
like that
ap-group "x40"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-40-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "X50"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "xS60"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-60-vap_prof"
virtual-ap "x-Guest-vap_prof"
ap-system-profile "apsys_prof-cvi57"
!
ap-group "x70"
virtual-ap "Guest-vap_prof"
virtual-ap "x-vap_prof"
virtual-ap "x-Guest-vap_prof"
!


wlan virtual-ap "x-STUFF-40-vap_prof"
aaa-profile "x-STUFF-40-aaa_prof"
ssid-profile "x-STUFF-40-ssid_prof"
vlan 40
!
wlan virtual-ap "x-STUFF-60-vap_prof"
aaa-profile "x-STUFF-60-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 60
!
wlan virtual-ap "x--STUFF-vap_prof"
aaa-profile "x-STUFF-aaa_prof"
ssid-profile "x-STUFF-ssid_prof"
vlan 50
!
wlan virtual-ap "x-SUFF70-vap_prof"
aaa-profile "x-SUFF70-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 70

------------------------------
mohamed gamal

Original Message:
Sent: Nov 17, 2021 08:47 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

If you are using PSK as the authentication method, your only viable option would be to configure MPSK. You would need to set up an external RADIUS server to get MPSK working. You can not use the internal server for authentication. You can then return roles that you assign VLANs to.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 03:23 PM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i have standalone controller can explain more how can user in vlan 10 and user in vlan 20 and vlan 30 can authenticate in ssid psk with internal raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 16, 2021 10:49 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

You can have all users connect to the same SSID. You will want to control VLAN/VLANs via User-Roles. You can assign what network the user should be on based on the role that you assign them to. These roles can be returned by your RADIUS server, or by Role Derivation Rules.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

I don't understand what you are trying to do, in detail.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
------------------------------

Original Message:
Sent: Nov 18, 2021 09:11 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

thanks 
but you have any documentaion how can configure this solution

------------------------------
mohamed gamal

Original Message:
Sent: Nov 18, 2021 09:02 AM
From: Colin Joseph
Subject: broadcast the same ssid name with different vlan on each APgroup .

The user VLAN is assigned by the Virtual AP VLAN.  An AP gets its configuration from the AP group that it is in.  An AP can be on the other side of the country, but it will tunnel all user traffic to the MC and put the user on whatever VLAN is defined in the Virtual AP of the AP group that the AP is in.

I hope this makes sense.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

Original Message:
Sent: Nov 18, 2021 08:45 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

how can user in many  different vlan can authenticate in ssid psk or guest with internl raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 18, 2021 08:26 AM
From: Colin Joseph
Subject: broadcast the same ssid name with different vlan on each APgroup .

You could clone the virtual AP and change the VLAN:

config t
wlan virtual-ap "guest-vap-prof-x40"
clone Guest-vap_prof
vlan 40

This will clone the guest virtual AP, name it guest-vap-prof-x40, and make it use vlan 40.  You can then add that vap "guest-vap-prof-x40" to the x40 ap-group.

I hope that makes sense.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

Original Message:
Sent: Nov 18, 2021 06:58 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

and if can create many different ap-group 
like that
ap-group "x40"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-40-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "X50"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "xS60"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-60-vap_prof"
virtual-ap "x-Guest-vap_prof"
ap-system-profile "apsys_prof-cvi57"
!
ap-group "x70"
virtual-ap "Guest-vap_prof"
virtual-ap "x-vap_prof"
virtual-ap "x-Guest-vap_prof"
!


wlan virtual-ap "x-STUFF-40-vap_prof"
aaa-profile "x-STUFF-40-aaa_prof"
ssid-profile "x-STUFF-40-ssid_prof"
vlan 40
!
wlan virtual-ap "x-STUFF-60-vap_prof"
aaa-profile "x-STUFF-60-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 60
!
wlan virtual-ap "x--STUFF-vap_prof"
aaa-profile "x-STUFF-aaa_prof"
ssid-profile "x-STUFF-ssid_prof"
vlan 50
!
wlan virtual-ap "x-SUFF70-vap_prof"
aaa-profile "x-SUFF70-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 70

------------------------------
mohamed gamal

Original Message:
Sent: Nov 17, 2021 08:47 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

If you are using PSK as the authentication method, your only viable option would be to configure MPSK. You would need to set up an external RADIUS server to get MPSK working. You can not use the internal server for authentication. You can then return roles that you assign VLANs to.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 03:23 PM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i have standalone controller can explain more how can user in vlan 10 and user in vlan 20 and vlan 30 can authenticate in ssid psk with internal raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 16, 2021 10:49 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

You can have all users connect to the same SSID. You will want to control VLAN/VLANs via User-Roles. You can assign what network the user should be on based on the role that you assign them to. These roles can be returned by your RADIUS server, or by Role Derivation Rules.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

let me clarify what i do  
i have a  standalone controller 
3 ssid (psk +guest +guest with external server)
 and i have many building so i have many and different vlan for users
i want to create same ssid on all access point on all building 
but how can user authenticate 
i know when create ssid assign ssid in ap-group and one vlan 
but in this case i have many different vlan 
so how do that

------------------------------
mohamed gamal
------------------------------

Original Message:
Sent: Nov 18, 2021 09:11 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

thanks 
but you have any documentaion how can configure this solution

------------------------------
mohamed gamal

Original Message:
Sent: Nov 18, 2021 09:02 AM
From: Colin Joseph
Subject: broadcast the same ssid name with different vlan on each APgroup .

The user VLAN is assigned by the Virtual AP VLAN.  An AP gets its configuration from the AP group that it is in.  An AP can be on the other side of the country, but it will tunnel all user traffic to the MC and put the user on whatever VLAN is defined in the Virtual AP of the AP group that the AP is in.

I hope this makes sense.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

Original Message:
Sent: Nov 18, 2021 08:45 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

how can user in many  different vlan can authenticate in ssid psk or guest with internl raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 18, 2021 08:26 AM
From: Colin Joseph
Subject: broadcast the same ssid name with different vlan on each APgroup .

You could clone the virtual AP and change the VLAN:

config t
wlan virtual-ap "guest-vap-prof-x40"
clone Guest-vap_prof
vlan 40

This will clone the guest virtual AP, name it guest-vap-prof-x40, and make it use vlan 40.  You can then add that vap "guest-vap-prof-x40" to the x40 ap-group.

I hope that makes sense.

------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

Original Message:
Sent: Nov 18, 2021 06:58 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

and if can create many different ap-group 
like that
ap-group "x40"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-40-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "X50"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-vap_prof"
virtual-ap "x-Guest-vap_prof"
!
ap-group "xS60"
virtual-ap "Guest-vap_prof"
virtual-ap "x-STUFF-60-vap_prof"
virtual-ap "x-Guest-vap_prof"
ap-system-profile "apsys_prof-cvi57"
!
ap-group "x70"
virtual-ap "Guest-vap_prof"
virtual-ap "x-vap_prof"
virtual-ap "x-Guest-vap_prof"
!


wlan virtual-ap "x-STUFF-40-vap_prof"
aaa-profile "x-STUFF-40-aaa_prof"
ssid-profile "x-STUFF-40-ssid_prof"
vlan 40
!
wlan virtual-ap "x-STUFF-60-vap_prof"
aaa-profile "x-STUFF-60-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 60
!
wlan virtual-ap "x--STUFF-vap_prof"
aaa-profile "x-STUFF-aaa_prof"
ssid-profile "x-STUFF-ssid_prof"
vlan 50
!
wlan virtual-ap "x-SUFF70-vap_prof"
aaa-profile "x-SUFF70-aaa_prof"
ssid-profile "x-SUFF70-ssid_prof"
vlan 70

------------------------------
mohamed gamal

Original Message:
Sent: Nov 17, 2021 08:47 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

If you are using PSK as the authentication method, your only viable option would be to configure MPSK. You would need to set up an external RADIUS server to get MPSK working. You can not use the internal server for authentication. You can then return roles that you assign VLANs to.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 03:23 PM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i have standalone controller can explain more how can user in vlan 10 and user in vlan 20 and vlan 30 can authenticate in ssid psk with internal raduis server

------------------------------
mohamed gamal

Original Message:
Sent: Nov 16, 2021 10:49 AM
From: Dustin Burns
Subject: broadcast the same ssid name with different vlan on each APgroup .

You can have all users connect to the same SSID. You will want to control VLAN/VLANs via User-Roles. You can assign what network the user should be on based on the role that you assign them to. These roles can be returned by your RADIUS server, or by Role Derivation Rules.

------------------------------
Dustin Burns
Lead Mobility Engineer @WEI

ACCX 1271| ACMX 509| ACSP | ACDA | MVP Guru 2021
If my post was useful accept solution and/or give kudos

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------

The smallest unit of a wireless network is the Virtual AP. On the commandline, you should clone the Virtual-AP and in the cloned Virtual AP, set it to the new VLAN. Then you can add that Virtual AP to the ap-group where you want that new vlan. First you should create new ap-groups for those locations, then add the cloned Virtual APs to those new ap-groups.

example:

config t

wlan virtual ap <new virtual ap name>

Clone <existing virtual ap name>

VLAN <new vlan number>

write mem

After that you can add the new virtual AP name to whatever ap-group you want. You cannot add that virtual AP to an ap-group that is broadcasting the same SSID, however...

For example

config t

wlan virtual-ap campusguest-vlan20

clone campusguest

vlan 20

write mem

ap-group <new ap group>

wlan virtual-ap campusguest-vlan20

You can do this as many times as you see fit.

------------------------------
Linda Xlie
------------------------------

Original Message:
Sent: Nov 16, 2021 05:54 AM
From: mohamed gamal
Subject: broadcast the same ssid name with different vlan on each APgroup .

i want to  all user with different vlan can login and authenticate in one ssid 
so how can create ssid and how can user in vlan 20 , vlan 30 , vlan 40 ,vlan 50 can login and authenticate in same ssid 
aruba controller version 8.7.5.1

------------------------------
mohamed gamal
------------------------------