Wireless Access

Reply
Guru Elite

Re: Apple Remote Desktop for a wireless lab


@mattjhughes wrote:

Sorry I can not understand the output from the command that well,  are you thinking it is being blocked on 5900? or is that standard for UDP traffic on that port (the Y flag)   Also when I try to change the role using the comand. 

 

aaa user add 10.31.17.16 role Secure-Role

and then look in the user-table it still has the old role assigned..  

 

Any ideas on what should be my next steps? Thank you much for the help so far.  

 


also, the aaa user add command is case-sensitive for the role. The ip address and role need to be typed exactly; there is no error output to the command.

 


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.4 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars
Highlighted
Frequent Contributor II

Re: Apple Remote Desktop for a wireless lab

 

 

It seems like it will throw an "Unknown role" error if you do enter it incorrectly

 

 

(Aruba7240) #aaa user add 10.31.89.78 role Secure-FAKE
Unknown role

in the end I just changed the role for these machines in Clearpass when they authencated for the time being.    It still does not work with the following role, I turned off Deep Packet and Classification

 

user-role Secure-Role
 max-sessions 65535
 dpi disable
 web-cc disable
 access-list session global-sacl
 access-list session apprf-Secure-Role-sacl
 access-list session allowall
!

 

 

10.31.14.176    10.31.17.16     17   5900  55272  0/0     0    0   8   tunnel 3267 84   0          0          FY              
10.31.17.16     10.31.14.176    17   3283  3283   0/0     0    0   0   tunnel 3267 2    1          94         FC              
10.31.17.16     10.31.14.176    17   55272 5900   0/0     0    0   0   tunnel 3267 84   43         2064       FC              
10.31.14.176    10.31.17.16     6    60290 5900   0/0     5    0   0   tunnel 3267 163  373        19396                      
10.31.14.176    10.31.17.16     17   3283  3283   0/0     0    0   1   tunnel 3267 2    1          94         F               
10.31.17.16     10.31.14.176    6    5900  60290  0/0     5    0   0   tunnel 3267 163  379        116046     C  

I suppose it could be related to the program itself, but it works via the Wired network.

 

 

 

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: