Legal Disclaimer: The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.arubanetworks.com for current and complete HPE Aruba Networking product lines and names.
Server-based Policy Independent of ClearPass
This is feature is intended to the customers who are using AirGroup The application that allows the end users to register their personal mobile devices on a local network and define a group of friends or associates who are allowed to share them. AirGroup is primarily designed for colleges and other institutions. AirGroup uses zero configuration networking to allow Apple mobile devices, such as the AirPrint wireless printer service and the AirPlay mirroring service, to communicate over a complex access network topology. with no CPPM and less than 512 wired servers. This policy allows the configuration of specific devices to add location details for visibility. In order to deploy this feature successfully, the following conditions must be met:
- CLI Command-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions. policy profile will be ONLY at the /md level.
- Applicable only to centralized mode.
- Not applicable for MD running in distributed mode in 8.10.
CLI configuration
Use the following commands to configure this policy on the CLI Command-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions.:
(MM.145) *[md] (config) #airgroupprofile server-based-policy default
(MM.145) *[md] (Server based policy profile "default") #
clone Copy data from another Server based policy profile
device Enter MAC-Address of the device
no Delete Command
(MM.145) *[md] (Server based policy profile "default") #device d0:81:7a:d8:27:54
ap-group Shared AP-group
ap-name Shared AP-name
groups Enter Shared Groups name
roles Enter Shared Roles name
users Enter Shared Users name
(MM.145) *[md] (Server based policy profile "default") #device d0:81:7a:d8:27:54 ap-group test
ap-name Shared AP-name
groups Enter Shared Groups name
roles Enter Shared Roles name
users Enter Shared Users name
(MM.145) *[md] (Server based policy profile "default") #device d0:81:7a:d8:27:54 ap-group test ap-name testAPname
ap-name Enter Shared AP-name
(MM.145) *[md] (Server based policy profile "default") #device d0:81:7a:d8:27:54 ap-group test ap-name testAPname, test
(MM.145) *[md] (Server based policy profile "default") #write m
Saving Configuration...
Configuration Saved.
Attach the server-based-profile to the network profile:
(MM.145) *[md] (Network profile "default") #airgroupprofile network default
(MM.145) *[md] (Network profile "default") #s
server-based-policy-p.. AirGroup Server Based Policy profile
(MM.145) *[md] (Network profile "default") #server-based-policy-profile default
UI Configuration
In the UI User Interface. navigate to Configuration->Services->AirGroup The application that allows the end users to register their personal mobile devices on a local network and define a group of friends or associates who are allowed to share them. AirGroup is primarily designed for colleges and other institutions. AirGroup uses zero configuration networking to allow Apple mobile devices, such as the AirPrint wireless printer service and the AirPlay mirroring service, to communicate over a complex access network topology. tab. This will display all the profiles used in the active AirGroup The application that allows the end users to register their personal mobile devices on a local network and define a group of friends or associates who are allowed to share them. AirGroup is primarily designed for colleges and other institutions. AirGroup uses zero configuration networking to allow Apple mobile devices, such as the AirPrint wireless printer service and the AirPlay mirroring service, to communicate over a complex access network topology. profile.
The Server Based Policy section contains a table view for:
-
Services
-
Disallowed services by role
The Network Profile section contains the configured values for:
-
Denylisted MAC Media Access Control. A MAC address is a unique identifier assigned to network interfaces for communications on a network. -Address or MAC Media Access Control. A MAC address is a unique identifier assigned to network interfaces for communications on a network. -OUI Organizationally Unique Identifier. Synonymous with company ID or vendor ID, an OUI is a 24-bit, globally unique assigned number, referenced by various standards. The first half of a MAC address is OUI.
-
Configure max no. of servers per query
-
Configure max no. of servers in location
-
Configure limit to throttle transmitted packets
-
Configure expiry time for wired server
-
Configure expiry time for wireless server
-
Domain name based username policy
-
Enable or disable auto-denylist detection to quarantine the servers
-
Set auto-denylist threshold value