Managed Devices Configuration Workflow
The tasks in deploying a basic user-centric network fall into two main areas:
- Configuring and connecting the managed device to the wired network (described in this section)
- Deploying APs (described later in this section)
The following workflow lists the tasks to configure a managed device. Click any of the links below for details on the configuration procedures for that task.
- Connect the Managed Device to the Network.
- Setting System Clock.
- View current licenses and install new licenses.
- For topologies similar to Deployment Scenario #3: APs on Multiple Different Subnets from Managed Devices), see Configuring VLANs to connect the managed device to your network. You do not need to perform this step if you are using VLAN Virtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN. 1 to connect the managed device to the wired network.
- Configuring the Mobility Master IP Address. The managed device IP address is used by the managed device to communicate with external devices such as APs.
- (Optional) Configuring the Loopback IP Address. You do not need to perform this step if you are using the VLAN Virtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN. 1 IP address as the managed device’s IP address. Disable spanning tree on the managed device if necessary.
- Configuring the Default Gateway for this managed device if you need to configure a trunk port between the managed device and another layer-2 switch (shown in Deployment Scenario #3: APs on Multiple Different Subnets from Managed Devices).
- Trusted and Untrusted Ports and VLANs for this managed device.
Connect the Managed Device to the Network
To connect the managed device to the wired network, run the initial setup to configure administrative information for the managed device.
Initial setup can be done using the browser-based Setup Wizard or by accessing the initial setup dialog via a serial port connection. Both methods are described in the ArubaOS 8.6.0.0 Quick Start Guide and are referred to throughout this section as “initial setup.”
This section describes the steps in detail.
Running the Initial Setup
When you connect to the managed device for the first time using either a serial console or a Web browser, the initial setup requires you to set the role (master, managed device, or stand-alone) for the managed device and passwords for administrator and configuration access.
Do not connect the managed device to your network when running the initial setup. The factory-default managed device boots up with a default IP address and both DHCP Dynamic Host Configuration Protocol. A network protocol that enables a server to automatically assign an IP address to an IP-enabled device from a defined range of numbers configured for a given network. server and spanning tree functions are disabled. You have completed the initial setup, you can use either the CLI Command-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions. or WebUI for further configuration before connecting the managed device to your network.
The initial setup might require that you specify the country code for the country in which the managed device will operate; this sets the regulatory domain for the radio frequencies that the APs use.
You cannot change the country code for managed device designated for certain countries, such as the U.S. Improper country code assignment can disrupt wireless transmissions. Many countries impose penalties and sanctions for operators of wireless networks with devices set to improper country codes. If none of the channels supported by the AP you are provisioning have received regulatory approval by the country whose country code you selected, the AP will revert to Air Monitor mode.
The initial setup requires that you configure an IP address for the VLAN Virtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN. 1 interface, which you can use to access and configure the managed device remotely via an SSH Secure Shell. SSH is a network protocol that provides secure access to a remote device. or WebUI session. Configuring an IP address for the VLAN Virtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN. 1 interface ensures that there is an IP address and default gateway Gateway is a network node that allows traffic to flow in and out of the network. assigned to the managed device upon completion of the initial setup.
The full setup dialog now provides flexibility to configure only IPv4 or IPv6 address, or a combination of both. If IPv6 address is used to terminate IPsec Internet Protocol security. IPsec is a protocol suite for secure IP communications that authenticates and encrypts each IP packet in a communication session. tunnel, then it is no longer mandatory to configure IPv4 address in master IP configuration in the setup dialog.
Connecting to the Managed Device after Initial Setup
After you complete the initial setup, the managed device reboots using the new configuration. (Refer to the ArubaOS 8.6.0.0 Quick Start Guide for information about using the initial setup.) You can then connect to and configure the managed device in several ways using the administrator password you entered during the initial setup:
- You can continue to use the connection to the serial port on the managed device to enter the CLI Command-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions.. (See Management Access for information on how to access the CLI Command-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions. and enter configuration commands.)
- You can connect an Ethernet Ethernet is a network protocol for data transmission over LAN. cable from a PC to an Ethernet Ethernet is a network protocol for data transmission over LAN. port on the managed device. You can then use one of the following access methods:
- Use the VLAN Virtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN. 1 IP address to start an SSH Secure Shell. SSH is a network protocol that provides secure access to a remote device. session where you can enter CLI Command-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions. commands.
- Enter the VLAN Virtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN. 1 IP address in a browser window to start the WebUI.
- WebUI Wizards.
This chapter and the user guide in general focus on CLI Command-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions. and standard WebUI configuration examples. However, basic managed device configuration and WLAN Wireless Local Area Network. WLAN is a 802.11 standards-based LAN that the users access through a wireless connection. or LAN Local Area Network. A LAN is a network of connected devices within a distinct geographic area such as an office or a commercial establishment and share a common communications line or wireless link to a server. creation can be completed using the alternative tasks (wizards) from within the WebUI. If you wish to use a configuration task, in the node hierarchy, navigate to Configuration > Tasks, click the desired task, and follow the imbedded help instructions within the task.