Aruba Mobility. Setup Guide

Similar documents
Cisco Meraki. Setup Guide. Published April Version 1.0

Ruckus SmartCell Gateway. Setup Guide. Published April Version 1.0

Cisco WLC. (For Version ) CoA Setup Guide

Ruckus SmartZone 100 and Virtual SmartZone (Essentials)

HP MSM Series. Setup Guide

Authentication Provider - Facebook. Setup Guide

How to social login with Aruba controller. Bo Nielsen, CCIE #53075 (Sec) December 2016, V1.00

Supported 3rd Party Authentication Providers for Odyssys

Network Policy Controller UAM/RADIUS Guide

Cloudpath and Aruba Instant Integration

Junivo WiFi360 Integration with Aruba Networks WiFi Infrastructure. Feb, 2017 Junivo

INTEROPERABILITY DOCUMENT BETWEEN OMNIACCESS STELLAR SOLUTION AND OCTOPUS WIFI

CMX Dashboard Visitor Connect

Identity Services Engine Guest Portal Local Web Authentication Configuration Example

D-Link Central WiFiManager Configuration Guide

IT Department. Basic WIFI Troubleshooting on ACC SSID. October 2017

Tunneling Configuration Guide for Enterprise

GFence Integration. with Aruba ALE Configuration guide

Case Study Captive Portal with QR Code authenticator assisted

Language Customization ArubaOS Captive Portal

Creating Wireless Networks

SecureW2 and Wi-Fi Cloud. Integration Guide

Wireless LAN Controller Web Authentication Configuration Example

DualFence. Implementation Guide. Copyright 2013 Deepnet Security Limited. Copyright 2013, Deepnet Security. All Rights Reserved.

What Is Wireless Setup

TECHNICAL NOTE MSM & CLEARPASS HOW TO CONFIGURE HPE MSM CONTROLLERS WITH ARUBA CLEARPASS VERSION 3, JUNE 2016

Configure Guest Flow with ISE 2.0 and Aruba WLC

LevelOne. Quick Installation Guide. WHG series Secure WLAN Controller. Introduction. Getting Started. Hardware Installation

GoldSim License Portal A User s Guide for Managing Your GoldSim Licenses

Cisco Aironet 1815T (Teleworker) Access Point Deployment Guide

Stonesoft Firewall/VPN Express. Release Notes for Version 5.5.4

Managing NCS User Accounts

Aruba Central Guest Access Application

SafeNet Authentication Service

WEB ANALYTICS HOW-TO GUIDE

Pulse Policy Secure. Guest Access Solution Guide. Product Release 5.4R1

Cisco TrustSec How-To Guide: Universal Configuration for the Cisco Wireless LAN Controller

Grandstream Networks, Inc. Captive Portal Authentication via Facebook

Pulse Policy Secure. Guest Access Solution Configuration Guide. Product Release 5.2. Document Revision 1.0 Published:

SonicWall Global VPN Client Getting Started Guide

Grandstream Networks, Inc. Captive Portal Authentication via Facebook

Grandstream Networks, Inc. Captive Portal Authentication via Twitter

!! Configuration of RFS4000 version R!! version 2.3!! ip access-list BROADCAST-MULTICAST-CONTROL permit tcp any any rule-precedence 10

SafeNet Authentication Service

Application Example (Standalone EAP)

DIGIPASS Authentication for NETASQ

WAP9112/9114 Quick Start Guide

SafeNet Authentication Service

SafeNet Authentication Service

GETTING STARTED GUIDE. Mobile Admin. Version 8.2

cnpilot Enterprise AP Release Notes

Grandstream Networks, Inc. Captive Portal Authentication via Facebook

SonicWall SonicOS 5.9

Verify Radius Server Connectivity with Test AAA Radius Command

Silver Peak EC-V and Microsoft Azure Deployment Guide

HP Cloud-Managed Networking Solution Release Notes

Mobile Admin GETTING STARTED GUIDE. Version 8.2. Last Updated: Thursday, May 25, 2017

SafeNet Authentication Service

Stonesoft Firewall/VPN Express. Release Notes for Version 5.5.7

Integrating Meraki Networks with

CMX Connected Experiences- Social, SMS and Custom Portal Registration Configuration Example

Barracuda Firewall Release Notes 6.5.x

Stonesoft Firewall/VPN Express. Release Notes for Version 5.5.2

Grandstream Networks, Inc. GWN76xx Wi-Fi Access Points Master/Slave Architecture Guide

TECHNICAL NOTE UWW & CLEARPASS HOW-TO: CONFIGURE UNIFIED WIRELESS WITH CLEARPASS. Version 2

NetApp Cloud Volumes Service for AWS

LAB: Configuring LEAP. Learning Objectives

OmniAccess Stellar Enterprise SE Remote Demo Script

LEGAL INFORMATION. Copyright 2014 ZTE CORPORATION. All rights reserved.

HPE IMC UAM BYOD Quick Deployment on Mobile Device Configuration Examples

For a full description of Wi-Fi Cloud features and functionality, see WatchGuard Wi-Fi Cloud Help.

Deployment Guide for Cisco Guest Access Using the Cisco Wireless LAN Controller, Release 4.1

SafeNet Authentication Service

Universal Wireless Controller Configuration for Cisco Identity Services Engine. Secure Access How-To Guide Series

July SonicWall SonicOS 6.2 Upgrade Guide

StoneGate Management Center. Release Notes for Version 5.3.4

SonicWall Secure Mobile Access SMA 500v Virtual Appliance 8.6. Getting Started Guide

ForeScout CounterACT. Controller Plugin. Configuration Guide. Version 1.0

ClearPass QuickConnect 2.0

Deploying Devices. Cisco Prime Infrastructure 3.1. Job Aid

Stonesoft Management Center. Release Notes for Version 5.6.1

SafeNet Authentication Manager

PePWave Mesh Connector User Manual

ArubaOS 6.2. Quick Start Guide. Install the Controller. Initial Setup Using the WebUI Setup Wizard

DG-HR1160M Portable Power Bank 3G Router User Manual

Troubleshooting Web Authentication on a Wireless LAN Controller (WLC)

VR1600v (NBN FTTN & NBN FTTB) Windows 10

SafeNet Authentication Manager

WiFi Command Reference

HG658d Home Gateway. User Guide HUAWEI TECHNOLOGIES CO., LTD.

SafeNet Authentication Service

A Quick start Guide. Version General Information: Online Support:

StoneGate Management Center. Release Notes for Version 5.3.2

Quick Install & Troubleshooting Guide. WAP223NC Cloud Managed Wireless N Access Point

UC Assessor A cloud-based UC network assessment solution. Getting Started Guide

Edimax Pro NMS Quick Installation Guide

Dell SonicWALL SonicOS 5.9 Upgrade Guide

SafeNet Authentication Manager

BEST PRACTICE - NAC AUF ARUBA SWITCHES. Rollenbasierte Konzepte mit Aruba OS Switches in Verbindung mit ClearPass Vorstellung Mobile First Features

Manual ServiceGate. Remote Engineer B.V. De Parse 11, 8491 PJ, Akkrum The Netherlands

Transcription:

Aruba Mobility Setup Guide

Disclaimer THIS DOCUMENTATION AND ALL INFORMATION CONTAINED HEREIN ( MATERIAL ) IS PROVIDED FOR GENERAL INFORMATION PURPOSES ONLY. GLOBAL REACH AND ITS LICENSORS MAKE NO WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, WITH REGARD TO THE MATERIAL, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY, NON-INFRINGEMENT AND FITNESS FOR A PARTICULAR PURPOSE, OR THAT THE MATERIAL IS ERROR- FREE, ACCURATE OR RELIABLE. GLOBAL REACH RESERVES THE RIGHT TO MAKE CHANGES OR UPDATES TO THE MATERIAL AT ANY TIME. Limitation of Liability IN NO EVENT SHALL GLOBAL REACH BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL OR CONSEQUENTIAL DAMAGES, OR DAMAGES FOR LOSS OF PROFITS, REVENUE, DATA OR USE, INCURRED BY YOU OR ANY THIRD PARTY, WHETHER IN AN ACTION IN CONTRACT OR TORT, ARISING FROM YOUR ACCESS TO, OR USE OF, THE MATERIAL. VERSION 1.1 PUBLISHED APRIL 2015 Page 2 of 16

IMPORTANT - BEFORE YOU START Before attempting to integrate your hardware controller in to Odyssys, please ensure that ALL of the following requirements are in place; You have a controller installed in an environment where compatible Access Points are configured to work with the controller, i.e - DNS, DHCP options configured correctly Access points must be able to successfully obtain the configuration from controller Your client environment is configured to allow network clients to; Associate to an Access Point Obtain an IP address Access to the internet The following components are required to be configured and working in your environment before attempting integration with Odyssys; DHCP Server DNS Server Firewall NAT PLEASE NOTE - Odyssys does not use standard RADIUS ports, therefore please make sure you allow the ports in your firewall, defined in your manager.odyssys.net Captive Portal settings. This is a technical document and as such, integration of your hardware with Odyssys should only be handled by trained individuals. Page 3 of 16

GETTING STARTED WITH ODYSSYS Before configuring the Aruba Mobility Controller for use with Odyssys, you will first need to create a Captive Portal to obtain key settings for your Aruba Mobility Controller. 1. Within your Internet browser, navigate to http://manager.odyssys.net 2. Login to Odyssys, using your Customer ID, Username and Password 3. Using the navigation panel on the left hand side of the Odyssys Dashboard, select "Captive Portals" then "Captive Portals" and finally "Create Captive Portal" 4. Enter the following details to create a new Captive Portal Name: <Name of your Captive Portal> Description: <Description of your Captive Portal> RADIUS Shared Secret: <Either keep the current shared secret or create your own> Hardware Vendor: Aruba Page 4 of 16

Click "Create" to save the settings and complete initial setup of the Captive Portal 5. Select the newly created Captive Portal and it will display the information required to configure the Aruba Instant Controller - Please note you may need to scroll down to see the information. TECH NOTE The information will differ for each Captive Portal created and is unique to each Captive Portal. Page 5 of 16

CONFIGURING ODYSSYS WITHIN ARUBA MOBILITY 1. Login to the Aruba Mobility Controller. 2. Click Configuration and then Campus WLAN. 3. Create a new AP Group for your WLAN if required by clicking New and entering a name for your AP Group and clicking OK. Page 6 of 16

4. Under WLANs click on New and enter in a name for your WLAN and click OK. 5. Click Next in the bottom right corner to continue to the next page of the Wizard. 6. Select Tunnel and click Next. 7. Select the following options and click Next. Radio Type: All Broadcast SSID: Yes VLAN: 1 (Or VLAN of your Network) 8. Select the Guest Radio button and click Next Page 7 of 16

9. Select "Captive portal with authentication via credentials provider by user" and click Next. 10. Ignore the next page and click Next to continue. 11. Click Add to specify an authentication server with the following settings and click OK. Name: Primary RADIUS IP Address: 54.246.95.205 Auth Port: <This can be found in your Odyssys Captive Portal page> Acct Port: <This can be found in your Odyssys Captive Portal page> Shared Key: <This can be found in your Odyssys Captive Portal page> Retype Key: <This can be found in your Odyssys Captive Portal page> 12. Click Add again to specify the secondary authentication server with the following settings and click OK. Name: Secondary RADIUS IP Address: 54.247.108.6 Auth Port: <This can be found in your Odyssys Captive Portal page> Acct Port: <This can be found in your Odyssys Captive Portal page> Shared Key: <This can be found in your Odyssys Captive Portal page> Retype Key: <This can be found in your Odyssys Captive Portal page> 13. Click Next and Finish to complete the Wizard Page 8 of 16

14. Select Stateful Firewall under Advanced Services on the left-hand side menu, then select the Destination tab and click Add. 15. Enter in the below settings and click Add. IP Version: IPv4 Destination Name: <Name of your choice> 16. Enter in the below settings and click Apply to save. Rule Type: Either host (for IP Address entries) or name (for Domain Name entries) IP Address/Domain Name: These can be found on page 13 under Access Control List Addresses Page 9 of 16

17. Click Authentication under the Security heading and then click L3 Authentication. 18. Click on Captive Portal Authentication and then the name of your Group you setup previously in the wizard. 19. Enter in the following settings and click Apply to save. Redirect Pause: 0 sec Logout popup window: Unticked Use HTTP for authentication: Ticked Login page: <Enter in the Splash Page URL from Odyssys> Welcome page: <Enter in the Success Page URL from Odyssys> Page 10 of 16

20. Click the AAA Profiles tab and then the name of your AAA profile that the Wizard setup. 21. Click RADIUS Interim Accounting tick box and click Apply. 22. Click RADIUS accounting server group from the left side menu and from the drop down menu, select the name of your WiFi group you created in the wizard. Page 11 of 16

23. Click New and select the Primary RADIUS from the drop down list, then click Add Server and repeat again for the Secondary RADIUS, click Apply once both have been added. 24. Associate the AP group to the Access Point and click Save configuration at the top to complete setup. The controller may require a reboot for the settings to come in to effect. Page 12 of 16

ACCESS CONTROL LIST ADDRESSES Odyssys 54.246.95.205 54.243.42.241 Twitter api.twitter.com *.twimg.com Google 74.125.29.84 74.125.226.243 74.125.228.10 74.125.228.74 74.125.228.111 130.111.19.240 173.194.74.95 Facebook *.facebook.com *.akamaihd.net *.fbcdn.net connect.facebook.com LinkedIn 8.247.88.225 23.202.203.120 64.94.107.57 138.108.7.20 216.52.242.80 216.52.242.86 PayPal Express Checkout 173.0.82.77/32 92.122.246.85/32 66.117.29.34/32 216.113.188.89/32 66.235.147.113/32 If you wish to disable Apple's Captive Assistant please add the following to your walled garden www.apple.com www.airport.us www.ibook.info www.thinkdifferent.us www.itools.info www.appleiphonecell.com captive.apple.com Page 13 of 16

FREQUENTLY ASKED QUESTIONS Q. I want to add different authentication provider types, how do I do this? A. Please see our Odyssys Authentication guide for further information. Q. I need more information on how to setup Odyssys A. Please see our Odyssys setup guide. Page 14 of 16

GLOSSARY ACL - Access Control List AAA - Authentication, Authorization, and Accounting DHCP - Dynamic Host Configuration Protocol DNS - Domain Name Service NAT - Network Address Translation PORT - A process-specific or an application-specific software construct serving as a communication endpoint, which is used by the Transport Layer protocols of Internet Protocol suite, such as User Diagram Protocol (UDP) and Transmission Control Protocol (TCP) RADIUS - Remote Authentication Dial In User Service (RADIUS) SHARED SECRET - A single password shared between two devices SSID - Service Set Identifier - A unique identifier for your Wi-Fi service WLAN - Wireless Local Area Network WLC - Wireless Local Area Network Controller Page 15 of 16

Craven House, 121 Kingsway London WC2B 6PA T +44 (0) 20 7831 5630 info@globalreachtech.com Copyright Global Reach Technology Limited All rights reserved. Global Reach and the Global Reach logo are registered trademarks.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback