Security

Reply
Highlighted
Frequent Contributor I

Re: 802.1x with internal db and Radius server

It is on first. It was working fine.

 

Can I ask you if I want a rule to be matched and only responds to request if NAS ID matches then how should I achieve this? What should be the parameters at both ends that is controller and nps?

 

On controller it is NAS ID but on nps it is NAS PORT ID I dont know whats the difference.

Guru Elite

Re: 802.1x with internal db and Radius server

The NAS-ID configured in the Radius Server on the Aruba Controller is the name NAS-ID that is seen in the NPS event viewer and can be referenced in the remote access policy.

 

If you have two different SSIDs and you want to differentiate between them, on the Aruba Controller you will need to (1) Create a new Radius server exactly like the previous one, except the NAS-ID is different (2) Create a new server group and put that new server in it (3) Add that server group to the new AAA profile for the Virtual AP for that new WLAN:

 

Radius Server Config on the Aruba Controller:

nas1.png

 

How it looks in the Event Viewer on the NPS server:

 

nas2.png

 

How you make it a condition in your remote access policy on NPS:

nas3.png

 

nas4.png


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.4 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars
Frequent Contributor I

Re: 802.1x with internal db and Radius server

All good now. Your last post helped me. I was entering NAS identifier at wrong place :(

Thanks a lot.

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: