Yeah on ArubaOS-S the radius host a.b.c.d clearpass command kindly grabs the CA cert from that ip address … pity on CX you need to add it manually :-( I’m sure it’’’ come at some point. Never had to reboot OS-S switches for any of the auth related configs to come online
Original Message:
Sent: 9/13/2024 11:51:00 AM
From: ascott
Subject: RE: DUR not valid as Flash file copy error
For us we already were running DUR but added UBT that night. I know that on our CX switches we install a trusted cert for UBT to work and have to reboot after that. On AOS we add some radius commands with "clearpass" on the end for the cert, "I think", and I'm guessing that's why a reboot was needed. I could be wrong. Good news is a reboot resolved the issue.
Original Message:
Sent: Sep 13, 2024 11:44 AM
From: alexs-nd
Subject: DUR not valid as Flash file copy error
Never seen that issue before, been running DURs for years then it happens on 1 switch stack
A
Original Message:
Sent: 9/13/2024 10:42:00 AM
From: ascott
Subject: RE: DUR not valid as Flash file copy error
We did the same. Thank you it worked for us as well.
The information transmitted is intended only for the person or entity to which it is addressed and may contain proprietary, business-confidential and/or privileged material. If you are not the intended recipient of this message you are hereby notified that any use, review, retransmission, dissemination, distribution, reproduction or any action taken in reliance upon this message is prohibited. If you received this in error, please contact the sender and delete the material from any and all computers and other devices.
Any views expressed in this message are those of the individual sender and may not necessarily reflect the views of the company.
Original Message:
Sent: 9/13/2024 1:53:00 AM
From: alexs-nd
Subject: RE: DUR not valid as Flash file copy error
Rebooted the switch and it started working as expected
Original Message:
Sent: 9/12/2024 8:21:00 PM
From: ascott
Subject: RE: DUR not valid as Flash file copy error
Having the same issue tonight. Did you get a fix?
Original Message:
Sent: Jul 17, 2024 03:34 PM
From: alexs-nd
Subject: DUR not valid as Flash file copy error
Thanks for the quick reply.
Also attempting to delete the DURs fails with no error
Have currently got about 40 switches running authentication using same config/DURs
There's no vlan assignment in the DURA they just use the statically assigned vlan
Will raise a TAC case tomorrow
The flash error appears on multiple entries fo9r multipeswitch ports performing authentication
Rgds
Aex
Original Message:
Sent: 7/17/2024 11:36:00 AM
From: Herman Robers
Subject: RE: DUR not valid as Flash file copy error
The Flash file copy error may worry me the most. Could it be that it's a separate message but show up at the same line for some reason? DUR should not trigger any flash copy or config changes, it should all happen 'in memory'.
I found the following debug commands for troubleshooting DUR on ArubaOS-Switch:
debug destination sessiondebug eventsdebug security port-access authenticator
What I have seen is that if it works on one switch, not on the other, that the configured/assigned VLAN/name is not present on the switch where you see the error. But if you can't find a clear explanation, I would reach out to TAC as flash file copy error may indicate a hardware failure requiring a hardware replacement.
------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
Original Message:
Sent: Jul 17, 2024 06:51 AM
From: alexs-nd
Subject: DUR not valid as Flash file copy error
Hi,
i'm in the process of pushing out DURs across our estate
All switches ( standalone or multiple switch stack) running WC.16.11.13
I've done 4 sites multiple switches / stacks using same defined DURs and they've all worked.
At 1 site I have a 5 switch stack and. am getting an error saying
05619 DCA SR2-CMDR ... deauthenticating client downloaded user role .... is not valid Flash file copy error.
but the DUR is valid, theyre the same ones used everywhere else. Also the command to delete a DUR doesnt work
and there are no errors in the logs .
However, show user-role down det does show the DUR contents and they are valid
Any thoughts ?
Am progressing. the "have you switched it off and on ?" avenue :-)
A