What's New
Important Notes
- For new Aruba Central On-Premises deployments, it is a requisite to use 10 Gigabit Ethernet Ethernet is a network protocol for data transmission over LAN. (GbE) interface for optimum performance.
-
The nodes of an Aruba Central On-Premises cluster must be deployed in the same data center and same VLAN Virtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN. subnet Subnet is the logical division of an IP network.. It is a prerequisite to get 10 Gbps Gigabits per second. throughput for intra-cluster communication.
- It is recommended to upgrade all the Aruba Central On-Premises nodes to 512 GB for optimum performance. Starting from this release, 256 GB RAM Random Access Memory. is not supported.
New Features
The following sections provide an overview of the new features that are added to Aruba Central On-Premises in this release.
Aruba Central NetConductor
Aruba Central On-Premises supports Aruba Central NetConductor from this release. Aruba Central NetConductor is a security framework designed to tackle problems for the modern enterprise network. The Aruba Central NetConductor framework aims to enhance the policy and orchestration components to deliver true intent-based network evolution and optimization.
For more information, see Aruba Central NetConductor Overview.
Aruba Central On-Premises APIs
This release introduces the following changes to Aruba Central On-Premises APIs Application Programming Interface. Refers to a set of functions, procedures, protocols, and tools that enable users to build application software..
In Aruba Central On-Premises, the API Gateway Gateway is a network node that allows traffic to flow in and out of the network. > Usage page provides more statistical data on API usage.
Listed below are the APIs introduced in this release, under the following pages:
- /bandsteer-6ghz-enable/v1/{tenant_id}
:- /bandsteer-6ghz-enable/v1/{tenant_id}
:
-
- /configuration/v1/group/ssh_credential/{group_name}
- /configuration/v1/device/ssh_credential/{serial_number_or_guid}
:- /configuration/v1/group/ssh_credential/{group_name}
- /configuration/v1/device/ssh_credential/{serial_number_or_guid}
:
-
- /configuration/v1/aos_switch/system/groups/{group_name}
- /configuration/v1/aos_switch/system/devices/{device_serial}
- /configuration/v1/aos_switch/system_time/groups/{group_name}
- /configuration/v1/aos_switch/system_time/devices/{device_serial}
:- /configuration/v1/aos_switch/system/groups/{group_name}
- /configuration/v1/aos_switch/system/devices/{device_serial}
- /configuration/v1/aos_switch/system_time/groups/{group_name}
- /configuration/v1/aos_switch/system_time/devices/{device_serial}
:
-
- /configuration/v1/switch/cx/portaccess-auth
:- /configuration/v1/switch/cx/portaccess-auth
:
- /airgroup-config/v2/custom_services/{name}/service_ids/{service_id}/
- /airgroup-config/v2/custom_services/{name}/service_ids/
- /airgroup-config/v2/custom_services/{name}/
- /airgroup-config/v2/custom_services/
:- /airgroup-config/v2/custom_services/{name}/service_ids/{service_id}/
- /airgroup-config/v2/custom_services/{name}/
:- /airgroup-config/v2/custom_services/{name}/service_ids/{service_id}/
- /airgroup-config/v2/custom_services/{name}/
:- /airgroupconfig/v2/custom_services/{name}/service_ids/{service_id}/
- /airgroupconfig/v2/custom_services/{name}/
:
-
- /visualrf_api/v1/restore_sites/status
:- /visualrf_api/v1/restore_sites
:
-
- /visualrf_api/v1/anonymization
:- /visualrf_api/v1/anonymization
:- /visualrf_api/v1/anonymization
:
For more information, see Changes to Aruba Central APIs.
Alerts and Events
The following alert and event enhancement is introduced in this release.
Controller Alerts
Controller Reboot—Generates an alert when controller gets rebooted.
For more information, see Controller Alerts.
AP Alerts
—Generates an alert when an AP crash is detected.
—Generates an alert when an AP reboot is detected.
For more information, see Access Point Alerts and Supported IAP Events .
Device Replacement
Device Replacement allows replacing a faulty device with a new device using the Device Replacement tile. The existing attributes and configurations of the faulty device are inherited by the new device. In the Global dashboard, navigate to
to access the tile.For more information, see Device Replacement.
Guided Steps for Replacing a Controller
Aruba Central On-Premises allows replacement of managed devices and mobility conductors through guided steps.
For more information, see Guided Steps for Replacing a Controller.
Monitoring-Only Mode
Aruba Central allows you to add AOS-CX switches to UI User Interface. groups in the monitoring-only mode, for monitoring, reporting, and troubleshooting. For switches that are added in this mode, you cannot make configuration changes using the UI group in which they are added.
For more information, see Monitoring-Only Mode for AOS-CX Switches.
Offline Upgrade- Airgap
Customers can now upgrade Aruba Central On-Premises offline through the Airgap feature. Airgap can be enabled through CLI Command-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions., option 4-7. An Airgap deployment allows customers to deny all internet access and continue to manage Aruba Central On-Premises setup.
For more information on offline upgrade and Airgap CLI, see the following:
Restricting Access to Group-Level Configuration
Using the HPE GreenLake portal, you can now restrict users to device-level configuration access by configuring appropriate options in the Central Permissions page. This feature allows the users to only view the device configuration pages and the Configuration Audit page at the group-level, but users will have edit access at the device-level.
For more information, see Restricting Access to Group-Level Configuration.
Rogues
The
tab provides a summary of the rogue APs, suspected rogue APs, interfering APs, and neighboring APs.Each rogue can now be detected by multiple APs which, can be part of multiple groups at the same time. You can see the set of APs that detected a specific rogue in different groups in the rogue details section. Even if one of the APs stop detecting a rogue, other APs can still detect the rogue in the network.
For more information, see Rogues.
Support for AP-615 Access Points
Aruba Central On-Premises introduces configuring and monitoring support for AP-615 access points.
For more information, see Supported APs.
Enhancements
The following sections provide an overview of the enhancements introduced in Aruba Central On-Premises in this release.
AOS-CX Switches
You can now deploy a maximum of 5000 AOS-CX switches on a 7-node cluster.
For more information, see Scaling Devices for Aruba Central On-Premises.
Controller Details
The Last Contacted and Uptime parameters are added to the Controller Details section under the Overview > Summary page.
Reports
The following enhancements are provided to reports:
- Security Compliance Report—The Radio column is added to the Security Compliance report.
- Client Inventory Report—The SSID Service Set Identifier. SSID is a name given to a WLAN and is used by the client to access a WLAN network. or Role filtering functionality is extended to Campus APs and Remote APs at the group context.
- Client Session Report—The SSID or Role filtering functionality is extended to Campus APs and Remote APs at the group context.
For more information, see Report Categories and Report Configuration Options.
Aruba Central On-Premises APIs
Listed below are the APIs enhanced in this release, under the following pages:
-
- /visualrf_api/v1/floor/{floor_id}/client_location
:
-
- /visualrf_api/v1/floor/{floor_id}/rogue_location
:
- /platform/rbac/v1/roles
- /platform/rbac/v1/apps Short form for application. It generally refers to the application that is downloaded and used on mobile devices./{app_name}/roles/{rolename}
:- [POST Power On Self Test. An HTTP request method that requests data from a specified resource.]:
- /platform/rbac/v1/apps/{app_name}/roles
- [PATCH]:
- /platform/rbac/v1/apps/{app_name}/roles/{rolename}
- [DELETE]:
- /platform/rbac/v1/apps/{app_name}/roles/{rolename}
- /airmatchconfig/v1/node_list/{node_type}/{node_d}/config/system/
- /airmatchconfig/v1/node_list/{node_type}/{node_id}/config/
- airmatchconfig/v1/node_list/{node_type}/{node_id}/
:- /airmatchconfig/v1/node_list/{node_type}/{node_id}/config/system/
- /airmatchconfig/v1/node_list/{node_type}/{node_id}/config/
:- /airmatchconfig/v1/node_list/{node_type}/{node_id}/config/system/
- /airmatchconfig/v1/node_list/{node_type}/{node_id}/config/
:
-
:
- /central/v2/sites
:- /central/v2/sites/{site_id}
:- /central/v2/sites/{site_id}
:
-
- /central/v1/labels/{label_id}
:
These APIs were listed as deprecated in Aruba Central On-Premises 2.5.4, however they are re-introduced back in Aruba Central On-Premises 2.5.6.
- /visualrf_api/v1/campus
- /visualrf_api/v1/campus/{campus_id}
:
- The following APIs are removed:
- [GET GET refers HTTP request method or an SNMP operation method. The GET HTTP request method submits data to be processed to a specified resource. The GET SNMP operation method obtains information from the Management Information Base (MIB).]
- /cloud-securityconfig/v1/node_list/
- /cloud-securityconfig/v1/node_list/{node_type}/{node_id}/config/
- /cloud-securityconfig/v1/node_list/{node_type}/{node_id}/config/zscaler/
- [GET GET refers HTTP request method or an SNMP operation method. The GET HTTP request method submits data to be processed to a specified resource. The GET SNMP operation method obtains information from the Management Information Base (MIB).]
For more information, see Changes to Aruba Central APIs.
Sites and Labels
You can now create a site using latitude and longitude values. This helps to accurately display the building on a map with the same address.
Aruba Central On-Premises restricts the use of words like Default, Default Site, Default_Site, and Default-Site as the site name.
The site deletion icon is available only when all devices are disassociated from the site. The label deletion icon is available only when the label is not assigned to any device.
For more information, see Managing Sites and Labels
Ekahau Floor Plan Import
Floor plans designed using the Ekahau software can be imported into Aruba Central On-Premises. For more information, see Importing a Floor Plan.
Encrypting credentials on AOS-S Switches using Templates
Aruba Central On-Premises now allows encrypting credentials on AOS-S switches using templates. The encrypt credentials support allows storing, displaying, and transferring of credentials in the encrypted form.
For more information, see Encrypting Credentials on AOS-S Switches using Templates.
Campus APs and Remote APs Details Support
The Campus APs and Remote APs on the Overview > Summary page.
, , , , , , and details are supported forFor more information, see Access Point > Overview > Summary.
160 MHz ARM Support
The 160 MHz Megahertz Support toggle switch is added to the > > Access Point Control page in Aruba Central On-Premises.
For more information, see Configuring ARM Features.
UTB Filter Block
The UTB Filter Block on the System > General WebUI page allows you to control the band Band refers to a specified range of frequencies of electromagnetic radiation. on which the Ultra Tri-Band (UTB) limitation is applied in the regulatory-domain-profile.
For more information, see Configuring System Parameters for an IAP .
Flexible Dual Band
The Flexible Dual Band parameter in the Access Points > Radio tab in Aruba Central On-Premises supports configuring a flexible dual radio band mode on AP-615 access points.
For more information, see Configuring Device Parameters .
RRM IE profiles
Aruba Central On-Premises supports the Radio Resource Management Information Element (RRM IE) profiles advertised by the AP. You can configure the RRM IE profiles on the > WebUI page.
For more information, see Configuring RRM IE Profile.
You can assign the RRM IE profiles to the radio profiles on the Radios > RF Radio Frequency. RF refers to the electromagnetic wave frequencies within a range of 3 kHz to 300 GHz, including the frequencies used for communications or Radar signals. > Radio WebUI page.
For more information, see Configuring Radio Parameters.
AOS-CX Troubleshooting
In this version of Aruba Central, new show
commands have been introduced to troubleshoot AOS-CX switches.
For information on the show
commands, see AOS-CX Commands.
External Services
Syslog Type is introduced with Audit trail and System Log options in the Add Syslog Server window under System Management > External Services tab. This will allow you to select the logging server type for sending the events or messages. The Syslog Type column is added to the Syslog table to indicate which logging type is selected.
For more information, see External Services
Alerts
The following alerts are added in this release:
Stack Link Status Change
A new AOS-CX switch alert is added to the alerts configuration page. This alert is generated when there is a change in the VSF link between AOS-CX switch stack members.
For more information, see AOS-CX Switch Alerts.
Critical hardware fault, thermal failure
These AOS-CX alerts are part of the Switch Hardware Failure alert. These alerts are generated when there is a critical hardware fault or when the temperature of the switch crosses the lower or higher threshold.
For more information, see AOS-CX Switch Alerts.
Switch Reboot (AOS-CX)
A new AOS-CX switch alert is added to the alerts configuration page. This alert is generated when the switch reboots, crashes, or when the Redundancy Switchover action is executed on the active module in the switch.
For more information, see AOS-CX Switch Alerts.
Switch Uplink Port Status Change
A new AOS-S switch alert is added to the alerts configuration page. This alert is generated when there is a change in the status of the uplink port.
For more information, see AOS-CX Switch Alerts.