Legal Disclaimer: The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.arubanetworks.com for current and complete HPE Aruba Networking product lines and names.
Configuring Downloadable User Role on AOS-S Switches
HPE Aruba Networking Central allows you to enable Downloadable User Role and configure ClearPass ClearPass is an access management system for creating and enforcing policies across a network to all devices and applications. The ClearPass integrated platform includes applications such as Policy Manager, Guest, Onboard, OnGuard, Insight, Profile, QuickConnect, and so on. settings to download user-roles, policy, and class from the ClearPass Policy Manager ClearPass Policy Manager is a baseline platform for policy management, AAA, profiling, network access control, and reporting. With ClearPass Policy Manager, the network administrators can configure and manage secure network access that accommodates requirements across multiple locations and multivendor networks, regardless of device ownership and connection method. server.
Downloadable User Role configuration is not supported on Aruba 2530 Switch Series.
To enable Downloadable User Role and configure ClearPass server settings, complete the following steps:
- In the WebUI, select one of the following options:
- To select a switch group in the filter:
- Set the filter to a group containing at least one switch.
The dashboard context for the group is displayed.
- Under , click > .
- Click the AOS-S or icon to view the switch configuration dashboard.
- Set the filter to a group containing at least one switch.
- To select a switch in the filter:
- Set the filter to or a group containing at least one switch.
- Under
A list of switches is displayed in the
view. , click > . - Click a switch under
The dashboard context for the switch is displayed.
. - Under
The tabs to configure the switch is displayed.
, click .
- To select a switch group in the filter:
- Click > . The page is displayed.
- Slide the
To enable downloadable user role, ClearPass server must be configured in the RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources. settings. For more information, see Configuring RADIUS Server Settings on AOS-S Switches.
page.The toggle is disabled if ClearPass server is not enabled for any of the
toggle switch to on position to allow switch to download user-roles. - Configure the following ClearPass Settings:
Table 1: ClearPass Settings
Name
Description
Enter the ClearPass Policy Manager administrator username.
Enter the password to access ClearPass server.
Retype the password.
Specify the retry interval to download TA certificate. This certificate is used to authenticate ClearPass server before downloading the user-role.
Range: 0-5.
- Click .