Wireless Access

Hello Folks,

Is there a way to disable SSH access to APs managed by Aruba Central.

When I tried to ssh to one of our APs:

ssh admin@1x.2.3.4xx
The authenticity of host '1x.2.3.4xx (1x.2.3.4xx)' can't be established.
RSA key fingerprint is SHA256:qlR+7xxxxx7Hj4+Vv3cIEOmQxxxxxxxxxxx
This key is not known by any other names
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added '1x.2.3.4xx' (RSA) to the list of known hosts.
admin@1x.2.3.4xx's password:

=================================

I verified in the running config that there is a configured admin account:

hash-mgmt-password
hash-mgmt-user admin password hash ********
hash-mgmt-user readonly password hash ******** usertype read-only

This has been ID'ed as a vulnerability and am looking for a Global way from AC to disable access.

Thanks,

Alex

Set a policy to disallow access except from specific networks.

https://www.arubanetworks.com/techdocs/AOS_10.x_Books/AOS10-Hardening-Guide.pdf

Hello Folks,

Is there a way to disable SSH access to APs managed by Aruba Central.

When I tried to ssh to one of our APs:

ssh admin@1x.2.3.4xx
The authenticity of host '1x.2.3.4xx (1x.2.3.4xx)' can't be established.
RSA key fingerprint is SHA256:qlR+7xxxxx7Hj4+Vv3cIEOmQxxxxxxxxxxx
This key is not known by any other names
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added '1x.2.3.4xx' (RSA) to the list of known hosts.
admin@1x.2.3.4xx's password:

=================================

I verified in the running config that there is a configured admin account:

hash-mgmt-password
hash-mgmt-user admin password hash ********
hash-mgmt-user readonly password hash ******** usertype read-only

This has been ID'ed as a vulnerability and am looking for a Global way from AC to disable access.

Thanks,

Alex