Security

matthew.sheppard · ‎05-03-2018

Hi All,

Having some trouble configuring our Mobility Master to do TACACS via CPPM. Have created a new server-group on the MM and can point it back to CPPM for root logons however when accessing via an read-only account (we are sending back aruba-admin-role read-only) we can not login and see the following error in Access Tracker.

Requested priv_level= greater than Max Allowed priv_level=

Any ideas, hopefully this isn't like with the iAPs where we cannot have read-only access via TACACS.

Thanks,

Matt.

cappalli · ‎05-03-2018

Do you have Session Authorization enabled in the server definition on the MM side?

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.

matthew.sheppard · ‎05-08-2018

Hi Tim,

No I don't believe we did, do we need to enable it?

Thanks,

Matt

cappalli · ‎05-08-2018

Yes

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.

Security

Controlling access to Mobility Master via CPPM TACACS service

Re: Controlling access to Mobility Master via CPPM TACACS service

Re: Controlling access to Mobility Master via CPPM TACACS service

Re: Controlling access to Mobility Master via CPPM TACACS service

Amigopod Operator Login assignment using VSAs?

Clearpass evaluation

Bonjour (AirPlay) by device location with CP

Backup CPPM

Can't see IOS Onboard device

Amigopod Operator Login assignment using VSAs?

Re: Server Rules and logical expressions

Re: Using Clearpass with EOL hardware.

Re: Restricting who can onboard a device in ClearPass

Re: ClearPass Policy Manager 5.0.1.38855 upgrade to 5.1.1

Deploying BYOD: Onboarding, Provisioning, Policy, Reporting

WLAN Security Fundamentals

[AirheadsConf LV 2013 Breakout] Networks - Mobility Access Switch Security Architecture

[VIDEO] Captive Portal Authentication with Aruba Instant and ClearPass

[VIDEO] 802.1X Authentication with Aruba Instant and ClearPass

Aruba Instant 6.4.2.6-4.1.1.11 Released 11/27/2015

Aruba Instant 6.4.2.6-4.1.1.10 Released 9/28/15

Remote AP Networks

Lync Over Aruba WiFi

AOS and CPPM – Dot1x Authentication and integration

ClearPass 6.4.0 Release Notes

Very High Density 802.11ac Networks Validated Reference Design

Security

Controlling access to Mobility Master via CPPM TACACS service

Re: Controlling access to Mobility Master via CPPM TACACS service

Re: Controlling access to Mobility Master via CPPM TACACS service

Re: Controlling access to Mobility Master via CPPM TACACS service

Follow Us