Legal Disclaimer: The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.arubanetworks.com for current and complete HPE Aruba Networking product lines and names.
Configuring RADIUS Server Settings on AOS-S Switches
Aruba Central On-Premises allows you to configure RADIUS Remote Authentication Dial-In User Service is a networking protocol that provides centralized authentication, authorization, and accounting management for users who connect and use a network service (Remote Authentication Dial-In User Service) server settings on switches.
To configure a RADIUS server, complete the following steps:
- In the app Short form for application. It generally refers to the application that is downloaded and used on mobile devices. , select one of the following options:
- To select a switch group in the filter, complete the following steps:
- Set the filter to a group containing at least one switch.
The dashboard context for the group is displayed.
- Under , click > .
- Click the AOS-S or icon to view the switch configuration dashboard.
- Set the filter to a group containing at least one switch.
- To select a switch in the filter, complete the following steps:
- Set the filter to or a group containing at least one switch.
- Under
A list of switches is displayed in the
view. , click > . - Click a switch under
The dashboard context for the switch is displayed.
. - Under
The tabs to configure the switch is displayed.
, click .
- To select a switch group in the filter, complete the following steps:
- Click > > . The RADIUS server settings accordion is displayed.
- Click + to add a RADIUS server.
The Add RADIUS Server pop-up window is displayed.
- Configure the following parameters.
Table 1: RADIUS Parameters
Name
Description
Value Indicates whether the dynamic authorization is enabled.
When enabled, the RADIUS server can dynamically terminate or change the authorization parameters used in an active client session on the switch.
Toggle switch to the on or off position
Indicates whether the ClearPass server is enabled on the RADIUS server.
Toggle switch to the on or off position
The IP address of the RADIUS server.
The destination port for authentication requests to the specified RADIUS server.
Default: 1812
The encryption key for use during authentication sessions with the specified RADIUS server.
You can enter up to a maximum of 32 characters including alphabets, numbers, and special characters.
Retype the shared key.
Select
or from the drop-down menu.Default value is Positive.
Enter the time in seconds.
Default value is 300 seconds.
- Click .
Editing a RADIUS Server Settings
To edit a RADIUS server, point to the row and click the edit icon.
If you have only one RADIUS server with ClearPass enabled and
is enabled, then you cannot disable ClearPass server for the RADIUS server.Deleting a RADIUS Server Settings
To delete a RADIUS server, point to the row and click the delete icon.
If the
option is enabled, then at least one RADIUS server must be configured with ClearPass server. Hence, you cannot delete the last RADIUS server on which ClearPass server is enabled.