Link Search Menu Expand Document

Roles

Configuration > Overlays and Security > Security > Roles

This dialog box allows you to define and map roles that are used throughout the EdgeConnect SD-WAN Fabric. For example, you can map a role to a Group Policy Identifier (GPID) from an Aruba CX Switch to facilitate identity (role) awareness between Aruba Orchestrator and Aruba CX Switches. After you map a role to a GPID, you can specify the role in match criteria when creating Access Lists and policies in Aruba Orchestrator.

You can also use this tab to import roles and GPIDs from a CSV file.

Prerequisites

  • This feature is only available for Orchestrator version 9.4.1 and ECOS version 9.4.1.0 and later.

  • GPID values and roles must match the GPID values configured on the Aruba CX Switch.

For more information on configuring VXLAN and a VTEP source loopback interface on the EdgeConnect appliance, see VXLAN Tab or VXLAN Template.

Add Roles

Add all the roles that are required for each VXLAN segment. If the VXLAN segment encounters a role that is not defined in Orchestrator, that role is labelled “unknown”.

To add roles:

  1. Click Add Role. A new row is added to the table.

  2. Click in the new cell in the Role column, and then enter a name for the role. Role names are case sensitive. You can create up to 254 roles. “0” is reserved for the default role and “65535” is reserved for the unknown default role.

  1. Press Tab or click in the new cell in the GPID column, and then enter the GPID of the Aruba switch you want to associate this role with.

  2. Click Save.

You can filter flows and policies by role.

Import CSV

To import roles and GPIDs from a CSV file:

  1. Click Import CSV.

  2. Locate and select the CSV file to import, and then click Open.

    The Roles - Bulk Upload dialog box opens.

    Color Description
    Green Indicates a new GPID and role mapping. This role and GPID will be added to the table.
    Yellow Indicates a duplicate GPID. The existing role for the GPID will be replaced with the role in the file you are importing.
    Red Indicates a duplicate role. The duplicate role will not be added to the table even if the GPID does not match.
  3. Review the roles and GPIDs to be imported.

  4. Click Save to import the file or click Cancel to close the dialog box without making any changes.


Back to top

© Copyright 2024 Hewlett Packard Enterprise Development LP. The information contained herein is subject to change without notice. The only warranties for Hewlett Packard Enterprise products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein. Aruba Networks and the Aruba logo are registered trademarks of Aruba Networks, Inc. Third-party trademarks mentioned are the property of their respective owners. To view the end-user software agreement, go to Aruba EULA.

Open Source Code:

Hewlett Packard Enterprise Company
Attn: General Counsel
WW Corporate Headquarters
1701 E Mossy Oaks Rd Spring, TX 77389
United States of America