What's New in 2.5.5

Use the following tabs to see the New Features and Enhancements available in this release.

The following sections provide an overview of the new features that are added to Aruba Central in this release.

HPE GreenLake Portal

Some of the features like adding devices and assigning licenses are now available on HPE GreenLake. The following section lists the features, which were earlier available on the Account Home page of Aruba Central and are now moved to HPE GreenLake.

Standard Enterprise Account Features:

  • Users and Roles
  • Key Management
  • Device Inventory
  • License Assignment
  • Audit Trail
  • Single Sign-On

For more information about using these features on HPE GreenLake, see the HPE GreenLake User Guide.

Accessing Aruba Central for Standard and MSP Accounts

The Aruba Central app must now be accessed from HPE GreenLake. To access the Aruba Central app, you must create an account on HPE GreenLake, add the Aruba Central app, and assign users and roles on HPE GreenLake. This change also applies to MSP accounts, and has changes to creating an MSP account and adding tenants. The UI to sign-up for an Aruba Central account is now removed, as the access to Aruba Central is now managed through HPE GreenLake.

Features Moved Within Aruba Central

The following features are now moved to a different path within Aruba Central.

Aruba Central UI Access and Permissions

User and role management is now available on HPE GreenLake. The HPE GreenLake administrator must assign appropriate permissions to users and roles, to access the UI pages on Aruba Central. For example, the users can view labels and sites if they have the View or Edit permission assigned for label and site management on HPE GreenLake.

Users can configure the features on Aruba Central only if they have the Edit permission assigned for the feature on HPE GreenLake. For example, the users can configure labels and sites on Aruba Central only if they have the Edit permission assigned for label and site management on HPE GreenLake.

The HPE GreenLake administrator must assign groups to users after assigning the Aruba Central role. The users can see the list of allowed groups from HPE GreenLake.

If a new group is created on Aruba Central and the all groups option is not selected for the user on HPE GreenLake, then the HPE GreenLake administrator must assign that group to the user, and only after that, the group name appears on Aruba Central.

For more information about using these features on HPE GreenLake, see the HPE GreenLake User Guide.

For more information about the Aruba Central user roles, see Aruba Central User Roles in the HPE GreenLake Portal.

Device Pre-provisioning

The Device Pre-provisioning feature was earlier available on the Account Home page of Aruba Central and it is now moved to the Organization page (Organization > Network Structure > Device Preprovisioning) within Aruba Central.

For more information, see Device Pre-provisioning.

Changes in the MSP Account for HPE GreenLakePortal

The following MSP features are now moved from Aruba Central to HPE GreenLake portal:

  • Provisioning Tenant Accounts
  • Onboarding Devices
  • Adding Subscription Keys
  • Assigning Devices to Tenant Accounts
  • Assigning Licenses
  • Configuring Users and Roles
  • Switching Customer Accounts

For more information, see the HPE GreenLake User Guide.

For more information about using the MSP accounts on HPE GreenLake, see Getting Started with MSP Solution.

MSP Account Device Pre-provisioning

The MSP Device Pre-provisioning feature was earlier available on the Account Home page of Aruba Central and it is now moved to the Organization page (Organization > Network Structure > Device Preprovisionings) within Aruba Central.

For more information, see Device Preprovisioning in an MSP Account.

ClearPass Device Insight Integrated with Aruba Central

ClearPass Device Insight is a cloud application that enables network and security administrators to discover, monitor, and automatically classify new and existing devices that connect to a network. ClearPass Device Insight is available as an application under Aruba Central.

For more information, see ClearPass Device Insight.

Aruba Central APIs

This release introduces the following changes to Aruba Central APIs:

Following are the APIs introduced:

AOS-S APIs

Following APIs are introduced in the Configuration > AOS-S category:

Pre Provisioned Group APIs

The following API is introduced in the Configuration > Pre Provisioned Group category:

  • [POST]:
    • /configuration/v1/preassign

For more information, see New APIs.

Context-Sensitive Help

From the Aruba Central 2.5.5 release, you can access the help pages corresponding to the Aruba Central UI pages, instead of opening the home page of the Online Help and searching for the relevant content. The context-sensitive help provides quicker access to the help content.

To open the help page relevant to the UI page, after opening the UI page, click the Help and Support icon, and select Documentation Center.

NetInsight Integrated with Aruba Central

NetInsight is a cloud-based monitoring and analytics tool that compares similar Wi-Fi Wi-Fi is a technology that allows electronic devices to connect to a WLAN network, mainly using the 2.4 GHz and 5 GHz radio bands. Wi-Fi can apply to products that use any 802.11 standard. networks and provides configuration recommendations for improving network performance and the quality of users’ mobile experience. NetInsight is available as an application under Aruba Central.

For more information, see NetInsight.

Non-Passpoint Device Support for Android Onboarding App

Devices on Android platforms that do not support passpoint networks connect to the default SSID Service Set Identifier. SSID is a name given to a WLAN and is used by the client to access a WLAN network. name instead of a passpoint friendly name or the organization name.

For more information, see Connecting Device to the Network using Aruba Onboard App.

For information on the behaviors and recommendations for non-passpoint devices, see Behaviors and Recommendations for Non-Passpoint devices.

The following sections provide an overview of the enhancements introduced in Aruba Central in this release.

ESSID Configuration in WLAN SSID Profile

In Aruba Central, ESSID Extended Service Set Identifier. ESSID refers to the ID used for identifying an extended service set. field on the WLAN Wireless Local Area Network. WLAN is a 802.11 standards-based LAN that the users access through a wireless connection. SSID configuration page allows you to specify the identifier that serves as an identification and address for the device to connect to a wireless router, which can then access the Internet.

For more information, see Configuring Wireless Network Profiles on IAPs.

Integrated Management of Template Variables for AOS-S Stacks

Aruba Central introduces integrated management of template variables for an AOS-S stack to keep the variables of all members in sync. All the stack members are automatically synced with the same set of variables when you upload or edit variables using the UI or Aruba Central API.

For more information, see Integrated Management of Template Variables for AOS-S Stacks.

AirGroup Configuration

AirGroup can be configured at global and group level. Groups inherit the AirGroup configuration from the global level but any configuration at a specific group level will override the configuration inherited from the global level.

For more information, see Configuring AirGroup.

Re-Sync Configuration Button

The Re-Sync Configuration button on the Configuration Audit > Configuration Status page allows Aruba Central to synchronize the configuration with the access points again and to resolve the configuration sync errors. For more information, see Viewing Configuration Status.

Trunk Group Configuration

If your AOS-S switches are running 16.10.0013 or later firmware versions:

  • You can remove the untagged VLAN from the trunk group at the group and device levels. At the group level, if you remove untagged VLAN from the devices running the firmware prior to the 16.10.0013 version, an event will be logged in the Audit Trail page stating that the untagged VLAN deletion is not supported.
  • You must either configure tagged VLAN or untagged VLAN as a mandatory parameter for the trunk group.

For more information, see Configuring Trunk Groups on AOS-S Switches in UI Groups.

Aruba Central APIs

Following are the API changes and enhancements:

Group APIs

The following API is enhanced in the Configuration > Group category:

  • [GET]:
    • /configuration/v2/groups

MSP APIs

Following APIs are enhanced in the MSP > Customers category:

  • [GET]:
    • /msp_api/v1/customers
    • /msp_api /v1/customers/{customer_id}

  • [DELETE]:

    • /msp_api /v1/customers/{customer_id}

Pre Provisioned Group APIs

The following API is deprecated in the Configuration > Pre Provisioned Group category:

The location for this API now moved within Configuration > Pre Provisioned Group. In previous release, It was placed under Device Management.

  • [POST]:
    • /device_management/v1/group/assign

User Management APIs

The following APIs are enhanced in the User Management > Roles category:

For more information, see Modified API and Deprecated APIs.

Blocking Alert and Events Visibility

The Alerts & Events pane is not visible to users who do not have edit or view permission to the Alerts and Events module.

For more information, see Alerts & Events Dashboard.

Floor Plan

The Floor Plan tabs are moved under the Add Floor option. For more information, see Importing a Floor Plan.

Discontinued Support for Mobility Access Switches (MAS) in Aruba Central

Aruba Central no longer supports configuring and monitoring of Mobility Access Switches (MAS).

For End-of-Life (EOL) information of Mobility Access Switches, see https://www.arubanetworks.com/en-in/support-services/end-of-life/.

Copy Redirect URI in Aruba Central

The Copy Redirect URI option is now available in the Cloud Authentication and Policy. This provides the redirect URI that is used to configure the identity store. For more information, see Copy Redirect URI.

Dynamic Authorization for Client Policies

Dynamic Authorization is supported for client policies where a session disconnect is triggered based on CPDI profile tags, and the correct policy is enforced when the client reconnects. For more information, see Dynamic Authorization.

For information on the caveats to be noted when using Cloud Authentication and Policy in Aruba Central, see Caveats for Dynamic Authorization.

Cellular Provider Selection

Aruba Air Pass accepts authentication requests only from AT&T subscribers. For more information, see Configuring Aruba Air Pass in a WLAN Network for Guest Users.