Hi we are in the transition of switching from Cisco to Aruba (2930M Edges, 8230 Core) systems, we are having issues with configuring the ports for a dynamic set up and so far the current configuration is not functioning as we would like it, so before I ask the real question I want to make sure that what we are asking for is possible.On any single PoE port, we need to be able to have 5 different configurations depending on what we plugin:Requirements:1: Cisco IP Phone, using LLDP-MED2: PC, Using NPS and Workstation Security Group membership to set VLAN3: Aruba AP4: Both Cisco Phone and PC connected to Phones passthrough port.5: if any of the above fail to authenticate then fail the connecting device to VLAN 51Apart from Option 3, all can be done on a Cisco switch.Separately I can get options 1 & 2 working, but if I try to merge to get option 4 functionality the phone works but the PC doesn't, it just fails to authenticate.The Phone is using a Device Profile that uses the OUI 0012BB (I think).The PC is using AAA Port-Access Authenticator to query Radius (Windows Server 2012 NPS) for VLAN membership.Thanks.
untagged vlan 1 aaa port-access authenticator aaa port-access authenticator unauth-vid 51 aaa port-access authenticator client-limit 2 aaa port-access device-identity "Cisco-Phone" bypass spanning-tree bpdu-protection exit
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2020 Hewlett Packard Enterprise Development LPAll Rights Reserved.