Legal Disclaimer: The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.arubanetworks.com for current and complete HPE Aruba Networking product lines and names.
Integrating a RADIUS Accounting Server
AirWave checks the local user name and password before checking with the RADIUS server. If the user is found locally, the local password and role apply. When using RADIUS, it’s not necessary or recommended to define users on the AirWave server. The only recommended user is the backup admin, in case the RADIUS server goes down.
Optionally, you can configure RADIUS server accounting on AMP Setup > RADIUS Accounting. This capability is not required for basic AirWave operation, but can increase the user-friendliness of AirWave administration in large networks. Figure 1 illustrates the settings of this optional configuration interface.
Perform the following steps and configurations to enable AirWave to receive accounting records from a separate RADIUS server. Figure 1 illustrates the display of RADIUS accounting clients already configured.
Figure 1 AMP Setup > RADIUS Accounting Page Illustration
- To define a the RADIUS authentication server or network, browse to the AMP Setup > RADIUS Accounting page, select Add, and provide the information in .
|
Setting |
Default |
Description |
|
IP/Network |
None |
Specify the IP address for the authentication server if you only want to accept packets from one device. To accept packets from an entire network enter the IP/Netmask of the network (for example, 10.51.0.0/24). |
|
Nickname |
None |
Sets a user-defined name for the authentication server. |
|
Shared Secret (Confirm) |
None |
Sets the Shared Secret that is used to establish communication between AirWave and the RADIUS authentication server. |
- Click Add to save your settings.
AirWave does not support RADIUS accounting service when FIPS mode is enabled. For more information on FIPS, see Using FIPS.
