Legal Disclaimer: The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.arubanetworks.com for current and complete HPE Aruba Networking product lines and names.
RADIUS Enforcement (Generic) Service
Configure the RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources. request. There are no default rules associated with this service type. You can add rules to handle any type of standard or vendor-specific RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources. attributes (that is, any attribute that is loaded through the prepackaged vendor-specific or standard RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources. dictionaries, or through other dictionaries imported into Policy Manager). For related information, see Configuring Enforcement Policies.
service for any kind ofTo create a RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources. Enforcement (Generic) service:
1. Navigate to > , then click the link.The dialog opens.
2. From the drop-down, select .The service configuration dialog opens:
Figure 1 Add RADIUS Enforcement (Generic) Service Configuration Dialog
3. Specify the tab parameters as described in the following table.
Parameter |
Action/Description |
Type |
Select a service from the drop-down list that defines what type of service can be configured. |
Name |
Enter the name of the service. |
Description |
Provide additional information that helps to identify the service. |
Monitor Mode |
Select this check box to monitor network access activity without enforcement. |
More Options |
Check these boxes to access the additional configuration tabs: Authorization Posture Compliance Audit End-hosts Profile Endpoints Accounting Proxy |
|
|
Matches |
Select the match condition for this service: Matches ANY Matches ALL of the following conditions |
Type |
Select to select the service rule type. |
Name |
Select the name of the service rule from the drop-down list. |
Operator |
Select an appropriate operator from the list of operators for the data type of the attribute. |
Value |
Enter the value or select the value from the drop-down list. The value list depends on the and selected. |
Name |
Select the name of the service rule from the drop-down list. |
Operator |
Select an appropriate operator from the list of operators for the data type of the attribute. |
Value |
Enter the value or select the value from the drop-down list. The value list depends on the and selected. |
4. Click .
The Authentication tab contains options for configuring authentication methods and authentication sources. The following figure displays the
dialog:Figure 2 Add Aruba RADIUS Enforcement (Generic) Service > Authentication Dialog
5. Click .
Use the
tab to associate a role-mapping policy with this service.The following figure displays the
> dialog:Figure 3 Add Aruba RADIUS Enforcement (Generic) Service > Roles Dialog
1. Specify the parameters as described in the following table:
Parameter |
Action/Description |
Role Mapping Policy |
Select a role mapping policy from the drop-down list. Policy Manager ships a number of preconfigured roles. A service can be configured without a role-mapping policy, but only one role-mapping policy can be configured for each service. For information on configuring role-mapping policies, see Configuring a Role and Role-Mapping Policy. |
|
|
Description |
Provide additional information about the selected role-mapping policy. |
Default Role |
Specify the role to which Policy Manager defaults when the role-mapping policy does not produce a match. |
Rules Evaluation Algorithm |
Shows the first matched rule. |
2. Click .
Use this tab to select an enforcement policy for a service. The following figure displays the
dialog:Figure 4 Aruba RADIUS Enforcement (Generic) Service > Enforcement Dialog
1. Specify the parameters as described in the following table:
Parameter |
Action/Description |
Use Cached Results |
Select this check box to use cached roles and posture attributes from previous sessions. |
Enforcement Policy |
Select the preconfigured enforcement policy from the drop-down list. This is mandatory. If you do not have any preconfigured enforcement policies, click to create a new enforcement policy. |
|
|
Description |
Displays additional information about the selected enforcement policy. |
Default Profile |
Displays a default profile applied by Policy ManagerPolicy Manager. |
Rules Evaluation Algorithm |
Shows the first matched rule. |
2. Click . You return to the page. The following message is displayed: Service "RADIUS Enforcement service" has been added.