The configuration of the working profile is below
wlan virtual-ap "test"
aaa-profile "deneme_internal"
ssid-profile "arubatest"
vlan 60,70,80
no broadcast-filter arp
no blacklist
wlan ssid-profile "arubatest"
essid "arubatest"
opmode wpa-tkip wpa2-aes
aaa profile "deneme_internal"
mac-default-role "authenticated"
authentication-dot1x "test"
dot1x-default-role "authenticated"
dot1x-server-group "deneme_Server_group"
enforce-dhcp
aaa authentication dot1x "test"
reauth-server-termination-action
termination inner-eap-type eap-mschapv2
The second part is the one that gives the error. I only created the aaa profile that concerns vlan 60. I will add the vlan 70 and 80's aaa profile with the same ssid profile. And will use the server-derivation rule to assing users to appropriate user role and vlan.
aaa profile "uzak_lokasyon_vlan60_aaa"
authentication-dot1x "uzak_lokasyon_dot1x"
dot1x-default-role "vlan60_dot1x_default"
dot1x-server-group "deneme_Server_group"
aaa authentication dot1x "uzak_lokasyon_dot1x"
machine-authentication user-default-role "authenticated"
user-role vlan60_dot1x_default
vlan 60
access-list session ra-guard
access-list session allowall
access-list session v6-allowall
wlan ssid-profile "uzaklokasyon" %The SSID will be used.
essid "uzaklokasyon"
opmode wpa-tkip wpa2-aes