Hi Tim, thanks for the update.
We run a number of Aruba 2620 & 2530 switches in our environment and something that bit us when we first implemented ClearPass and 802.1x + MAC Auth through these switches about 1.5 years ago was lack of support for a number of features related to network authentication. For example today, based on the guide, on an Aruba 2530 "ArubaOS" running YB.16.05.0004 there is currently:
- No downloadable user role support
- No support for "ip client-tracker"
- Unless it's changed in the last year and a bit there was also no support for RFC4675 for tagging VLANs on these switches - we had a ticket open with both Aruba & HPE (back in the day) and it was raised as a feature request and the typical response of use a higher model switch as the 2920 supported this at the time. Sorry if this has been added since.
- i'm sure there's more.
I can certainly appreciate this is an entry level switch and that's not an issue however do you know if there's any Aruba/HPE resource that tables these features that heavily relate to network authentication support specifically? Otherwise it makes reading these guides a little misleading at times unless you know what each switch can and cant do or a minimum model required, etc.
Regards
Jonathan