Controllerless Networks

Hi all,

need help with settings / workaround as when we implement this ARUBA AP (previously using Cisco), we notice that our AD user profile logon script no longer/unable to run. This really inconvenient as we can't use script to push when user login to windows.

below is the current setting 

have notice few things when troubleshooting:

-I tried to create new SSID with less secure the logon script able to push. 

-when user log out = WIFI connection unlink need user credential to connect to WIFI again.

Are you assigning a user-role post network login that allows access to the AD DCs?

What EAP method?  Are you using computer and/or user authentication?

Hi all,

need help with settings / workaround as when we implement this ARUBA AP (previously using Cisco), we notice that our AD user profile logon script no longer/unable to run. This really inconvenient as we can't use script to push when user login to windows.

below is the current setting 

have notice few things when troubleshooting:

-I tried to create new SSID with less secure the logon script able to push. 

-when user log out = WIFI connection unlink need user credential to connect to WIFI again.

Are you assigning a user-role post network login that allows access to the AD DCs?

-Not sure about this, can provide path to check?

What EAP method?  Are you using computer and/or user authentication?

-We using EAP-TLS and EAP (PEAP) both are accepted 

- We using computer and user authentication.

Are you assigning a user-role post network login that allows access to the AD DCs?

What EAP method?  Are you using computer and/or user authentication?

Hi all,

need help with settings / workaround as when we implement this ARUBA AP (previously using Cisco), we notice that our AD user profile logon script no longer/unable to run. This really inconvenient as we can't use script to push when user login to windows.

below is the current setting 

have notice few things when troubleshooting:

-I tried to create new SSID with less secure the logon script able to push. 

-when user log out = WIFI connection unlink need user credential to connect to WIFI again.

First, check what user role is being assigned to the session when a user isn't logged in, and then after the user has logged in.  That is available on the UI dashboard or through CLI show clients.

Once you know what the user roles in play are, check the configuration of those user roles either under the Security configuration in the UI or through CLI.

Are you assigning a user-role post network login that allows access to the AD DCs?

-Not sure about this, can provide path to check?

What EAP method?  Are you using computer and/or user authentication?

-We using EAP-TLS and EAP (PEAP) both are accepted 

- We using computer and user authentication.

Are you assigning a user-role post network login that allows access to the AD DCs?

What EAP method?  Are you using computer and/or user authentication?

Hi all,

need help with settings / workaround as when we implement this ARUBA AP (previously using Cisco), we notice that our AD user profile logon script no longer/unable to run. This really inconvenient as we can't use script to push when user login to windows.

below is the current setting 

have notice few things when troubleshooting:

-I tried to create new SSID with less secure the logon script able to push. 

-when user log out = WIFI connection unlink need user credential to connect to WIFI again.

Hi Chulcher seems like it has something to do with ClearPass as we are using it for authentication. where to check next?

as below

First, check what user role is being assigned to the session when a user isn't logged in, and then after the user has logged in.  That is available on the UI dashboard or through CLI show clients.

Once you know what the user roles in play are, check the configuration of those user roles either under the Security configuration in the UI or through CLI.

Are you assigning a user-role post network login that allows access to the AD DCs?

-Not sure about this, can provide path to check?

What EAP method?  Are you using computer and/or user authentication?

-We using EAP-TLS and EAP (PEAP) both are accepted 

- We using computer and user authentication.

Are you assigning a user-role post network login that allows access to the AD DCs?

What EAP method?  Are you using computer and/or user authentication?

Hi all,

need help with settings / workaround as when we implement this ARUBA AP (previously using Cisco), we notice that our AD user profile logon script no longer/unable to run. This really inconvenient as we can't use script to push when user login to windows.

below is the current setting 

have notice few things when troubleshooting:

-I tried to create new SSID with less secure the logon script able to push. 

-when user log out = WIFI connection unlink need user credential to connect to WIFI again.