Security

I am working on project, We have established communication between VPN Concentrator(Aruba 7210) and Branch Gateway (Aruba 7008) which connects remote site to Head Office and we manage these devices via Aruba Central.

We have CPPM already running with Mobility Master in head office, it acts as Radius and TACACS server. How can I integrate CPPM with Aruba Central, so that we can onboard users from remote side on to authenticate via same CPPM publisher? 

I have attached basic topology diagram.

Hi,

where do you want to "onboard your users"?

• at Instant APs in Branch managed by central?
• at APs in Branch managed by Mobilty Master in main site?
• one of a lot of other possibilities?

Regards, Jö

Jo,

I want onboard users on IAPs at branch managed by Central.

Hi,

you can configure in central for the IAP cluster everything like you do on your MM for APs at your main location. (Just menus/WebUI slightly different)

• SSID with WPA Enterprise. Radius Server will be your internal CPPM
• BYOD portal for onboarding. redirect pointing to your CPPM
• Guest Portal. Redirect pointing to your CPPM. (But I would do this via central guest portal)

You just have to ensure, that clients at branch can reach CPPM Portal and that APs can talk radius to your CPPM.

Regards, Jö