Herman,Our deployment was set this way from the beginning, but it has been a limited deployment until next month, when we take it live for everyone. This dual-interface is getting strange, since we now have a pub and sub, and the sub doesn't even have an address on data port. We just got approval to replace the old network (31 switches,~20 buildings, ~400ap's) and I'm now trying to configure SSO onboard with Azure AD, wired policy enforcement, and student/guest self registration for devices. Knowing what I know now (which isn't much), I would definitely have made different config choices. How would you recommend (order of operations) to go through configuring if you were going to deploy (or re-deploy) a basically new network with CPPM using Mobility Gateway, 7210 (x2) controllers, 505h (dorms)/515-555(public buildings/classrooms), 6200/6300, and 8325's for core and data center top of rack.We have the concept, but as you can see, some of the details are a bit quirky. We plan to use onboard for employees devices (local AD, but want to migrate to Azure AD instead if possible - we have intune, defender ATP). We're using domain authentication for students, but we have yet to solve the IOT (MPSK looks ideal for the rokus and such).We have Airwave, but it's all monitor only, and we have NetEdit, but only a pair of CX switches that just came in, so we have most of the ingredients - it's just the recipe is all jumbled.I see a guide for Clearpass Onboard Cloud Identity Provider setup: https://support.arubanetworks.com/Documentation/tabid/77/DMXModule/512/Command/Core_Download/Default.aspx?EntryId=32043And a guide for Defender ATP setup:
https://support.hpe.com/hpesc/public/docDisplay?docId=a00100312en_usAnd a guide for Palo Alto Firewall integration:
I'd like to use user based tunnel and/or port based tunnel with DUR to simplify the switch configs, but that doesn't seem finished in the CX switches.If there were a validated reference guide, I'd try that, but that link is busted..
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2020 Hewlett Packard Enterprise Development LPAll Rights Reserved.