ArubaOS 8.6.0.0 Help Center
Configuring Set-value Server-derivation Rule
The following procedure describes how to configure the set-value for a server-derivation rule
- In the node hierarchy, navigate to the page.
- Select a RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources. Server from the table.
- To add a new RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources. server, click in the table and enter the name for the server (for example, rad1) and click .
- Select the name to configure server parameters, such as IP address. The check box is enabled by default to activate the server.
- Click .
- Click .
- In the window, select the check box and click .
- Select a server group from the
- To add a new server group, click and enter the name of the new server group (for example, corp_rad) and click .
- Select the name to configure the server group.
- Under Servers, click to add a server to the group.
- Select a server from and click .
- Under Server Rules, click to add a server rule.
- For Condition, select an attribute from the scrolling list. Select from the drop-down list. Enter . Select from the drop-down list. For , select from the drop-down list.
- Click .
- Click .
- In the window, select the check box and click .
table to display the Server Group list. - Navigate to the
- Expand the accordion, select a management role (for example, read-only) for the
- For , select the server group that you just configured.
- Click .
- Click .
- In the window, select the check box and click .
tab.
In the CLI
The following CLI Command-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions. commands configure the set-value.
aaa authentication-server radius rad1
host <ipaddr>
enable
aaa server-group corp_rad
auth-server rad1
set role condition Class equals it set-value root
aaa authentication mgmt
default-role read-only
enable
server-group corp_rad
For more information about configuring server-derivation rules, see Configuring Server-Derivation Rules.