Legal Disclaimer: The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.arubanetworks.com for current and complete HPE Aruba Networking product lines and names.
Managing Password in Configuration Templates
All IAP and switch templates must include a password command to set a password for the device. The template cannot be saved without adding a password command. If the configuration that is pushed from HPE Aruba Networking Central to the switch does not contain a password command, the configuration push is aborted for the device and a log is added to the audit trail. For example, if you add the password command in a condition block and the condition evaluates to false, the configuration that is pushed will not contain the password command.
When configuring a password, you must add the include-credentials
command in the template. This command stores the password in the file associated with the switch. HPE Aruba Networking Central automatically executes this command while reading the switch configuration.
For AOS-CX switches, you must configure the password only in plaintext.
Password for Switches
The following format of the passwords can be set on AOS-S series:
The following format of the passwords can be set on AOS-CX switches:
Password for APs
The following format of the passwords can be set on the APs:
Setting Password using Variables
User cannot enter the entire password line in a variable. The following examples show the valid and invalid format for entering password using a variable.
Valid format where the variable contains only the password (for example, %pass_var% = Aruba@123) for the device:
Invalid format where the variable contains the password command (for example, %pass_var% = password manager plaintext Aruba@123) for the device: