Hey Colin, Thanks for the response.
Creating my own group is what i did, but historically 'default' and 'internal' server-group have always differed in that one had those server-rules and the other didn't.
#show version
ArubaOS (MODEL: Aruba3600), Version 6.4.4.16
#show aaa server-group default
Fail Through:No
Load Balance:No
Auth Servers
------------
Name Server-Type trim-FQDN Match-Type Match-Op Match-Str
---- ----------- --------- ---------- -------- ---------
Internal Internal No
Role/VLAN derivation rules
---------------------------
Priority Attribute Operation Operand Type Action Value Validated
-------- --------- --------- ------- ---- ------ ----- ---------
#show aaa server-group internal
Fail Through:No
Load Balance:No
Auth Servers
------------
Name Server-Type trim-FQDN Match-Type Match-Op Match-Str
---- ----------- --------- ---------- -------- ---------
Internal Internal No
Role/VLAN derivation rules
---------------------------
Priority Attribute Operation Operand Type Action Value Validated
-------- --------- --------- ------- ---- ------ ----- ---------
1 Role value-of String set role No
This changed somewhere in 8.x.
What is even the use of having both default and internal groups if they are identical in every way.
That said, I won't lose any sleep over it so feel free to ignore this.