Wireless Access

Occasional Contributor I

Dynamic Vlan - RSA radius server



I am trying to configure dynamic vlan assignment on aruba controller 3200 using RSA as authentication / Radius server (8.1)

I got the authentication part working. But not the vlan assignment , not sure what are the attributes that i need and how to configure both controller and rsa for this setup. 


Has anyone done this before?  All the reference I have found is for AD as the radius server. 


Can someone help?


Trusted Contributor I

Re: Dynamic Vlan - RSA radius server

This may not be the answer you're needing, but unfortunately I don't know the RSA product.  Do you know how to setup RSA to return vendor specific attributes?  It may involve setting up a RADIUS dictionary and adding Aruba attributes you want to return.  In this case, you can use the following VSAs to return either a named VLAN or VLAN #:


Named VLAN: Aruba-Named-Vlan

VLAN #: Aruba-User-Vlan

If a reply adequately addresses your issue, please click on the "Accept as Solution" and "Give Kudos" button so this information can benefit other users.

Re: Dynamic Vlan - RSA radius server

Like thecompnerd mentioned you can returned Aruba VSA .

Here's some instructions:
Thank you

Victor Fabian
Lead Mobility Architect @WEI
Occasional Contributor I

Re: Dynamic Vlan - RSA radius server

Appologies for the late reply.

But we have decided to go with AD authentication and use clearpass as its easy to grab the attributes from AD. And not everyone in our company has rsa tokens. 


I cannot say if above comments are solutions. But kudos for responding!

Search Airheads
Showing results for 
Search instead for 
Did you mean: