Hi.
As Joseph already wrote. You need to return the correct role in Aruba-Admin-Role radius attribute.
On AirWave you can define your own roles in AMP Setup / Roles or you can return any off the predefined roles.
For example for ReadOnly access you can return
Radius:Aruba |
Aruba-Admin-Role |
= |
Read-Only Monitoring & Auditing |
.
For full Admin access to all parts of the AirWave you will return
1. |
Radius:Aruba |
Aruba-Admin-Role |
= |
Admin |
If you just need a specific access, for example only to selected folders, you return the role that has that specific access granted.
Best, Gorazd
------------------------------
Gorazd Kikelj
------------------------------
Original Message:
Sent: Apr 18, 2022 07:53 AM
From: Colin Joseph
Subject: Airwave and Radius
You need to return the "Aruba-Admin-Role" radius attribute of "root" for the user to successfully login to Airwave. Please see the ClearPass Instructions for a radius server here: https://community.arubanetworks.com/browse/articles/blogviewer?blogkey=28fa655f-4aba-470e-931f-43047f2a5b78
------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.
Original Message:
Sent: Apr 15, 2022 02:17 PM
From: Ali AlJanaby
Subject: Airwave and Radius
Greetings,
I know this is an old thread but I am wondering if you ever found a solution?
I am having the same exact issue - everything is configured correctly - NPS log is showing access granted - Airwave says Login failed
------------------------------
Ali AlJanaby
Original Message:
Sent: Jun 15, 2016 11:56 AM
From: Luiz Clarke
Subject: Airwave and Radius
Hi everyone,
I'm trying to set up Radius authentication for my Airwave administrators, but without success so far. I'm using NPS.
I have followed the guide below to configure the network policy (only thing I did different was changing the vendor code from 14823 to 12740, since I'm using the Dell version).
http://community.arubanetworks.com/aruba/attachments/aruba/unified-wired-wireless-access/20391/1/Management%20Authentication%20using%20Windows%202008%20as%20a%20Radius%20Server.pdf
By the way, great guide!
I have placed my domain account in the user group, but when I try to authenticate I receive a "login failed" message and in the NPS logs I see the following message:
The account/password are correct, I'm not sure why I'm receiving this mismatch error. I also have the radius information properly set up under AMP Setup > Authentication.
The Admin role is also in place.
Any ideas of what may be causing this behavior?