Wired Intelligent Edge

 View Only
last person joined: 16 hours ago 

Bring performance and reliability to your network with the HPE Aruba Networking Core, Aggregation, and Access layer switches. Discuss the latest features and functionality of your switching devices, and find ways to improve security across your network to bring together a mobile-first solution
Expand all | Collapse all

Insurmountable compatibility MacSec IEEE 802.1AE problems AOS Switch to AOS-CX Switch

This thread has been viewed 7 times
  • 1.  Insurmountable compatibility MacSec IEEE 802.1AE problems AOS Switch to AOS-CX Switch

    Posted Jan 18, 2024 06:27 AM

    Please advice, anyone with working switches ?



    ------------------------------
    Steinar
    ------------------------------


  • 2.  RE: Insurmountable compatibility MacSec IEEE 802.1AE problems AOS Switch to AOS-CX Switch
    Best Answer

    Posted Jan 22, 2024 11:07 AM

    From CX manual:

    Specifies the CKN (Connectivity Association Key Name). Range: 1 to 64 hexadecimal characters

    Specifies the CAK (Connectivity Association Key) in plaintext. Range: 1 to 64 hexadecimal characters.

    AOS:

    Enter the CKN as a string of hexadecimal digits up to 32 characters long

    Enter the CAK as a string of hexadecimal digits up to 64 characters long

    This mean that for the AOS the CAK limitation is 32 byte ascii/characters 

    • Bee aware some other setting smay be accepted, during input.

    ie, a 34 characters ascii CAK will be silent truncated....to 32 characters

    ie.:

    12345678901234567890123456789012

    and

    1234567890123456789012345678901234

    will both work, in AOS >< CX MacSec (on AOS side)

    as

    12345678901234567890123456789012

    on CX side will

    • So: stay with CKN/CAK 32/32 ascii/characters. (digits and letters)


    ------------------------------
    Steinar
    ------------------------------