provision-ap

Determines the horizontal coverage distance of the 802.11a (5 GHz) antenna from True North.

From a planning perspective, the horizontal coverage pattern does not consider the elevation or vertical antenna pattern.

NOTE: This parameter is supported on outdoor APs only.
If you use this parameter to configure an indoor AP, an error message is displayed.

Range: 0-360 Decimal Degrees

Antenna gain for 802.11a (5GHz) antenna.

Antenna polarization value for 5GHz radio. Use one of the following parameters:

0: CO-Polarized

1: Cross-Polarized

Directs the angle of the 802.11a (5GHz) antenna for optimum coverage.

Use a - (negative) value for downtilt and a + (positive) value for uptilt.

NOTE: This parameter is supported on outdoor APs only.
If you use this parameter to configure an indoor AP, an error message is displayed.

Range: -90 to +90 Decimal Degrees

Antenna use for 5 GHz (802.11a) frequency band. Use one of the following parameters:

1: Use antenna 1

2: Use antenna 2

both: Use both antennas (default)

Range: 1, 2, both

Default: both

Altitude, in meters, of the AP.

NOTE: This parameter is supported on outdoor APs only.
If you use this parameter to configure an indoor AP, an error message is displayed.

Name of the AP group to which the AP belongs.

Enabling causes the AP to detect the POE type via LLDP POE TLV. Use one of the following parameters:

enabled: The AP uses PSE TYPE in the POE TLV to detect the PSE type.

disabled: The AP detects the POE using the HW classification.

Name of the AP to be provisioned.

Enables optimization to minimize the POE draw of the AP. Enabling optimization may disable some parts of the AP. Disabling optimization ensures all features are enabled.

Configures the pre-standard PoE detection on 200 Series APs.

The POE+ pre-standard detection is only available on 200 Series APs.

It consists of a basic voltage comparator. If the line voltage is equal to or greater than 51 V, the PSE is assumed to be 802.3at compatible.

Enables AP to use factory certificates when doing 802.1x EAP-TLS.

Password of the AP to authenticate to 802.1X using PEAP.

Enables AP to be provisioned when 802.1X authentication times out.

Sets the apdot1x timeout threshold. If the auth timeouts over this threshold, the AP will bypass apdot1x auth.

Enables AP to 802.1x using EAP-TLS.

Enables AP to use EAP-TLS username suffix.

Set the suffix domain for AP dot1x EAP-TLS username. If defined, use EAP-TLS username as suffix, else use aruba.ap.

Range: 1- 63 string length

Username of the AP to authenticate to 802.1X using PEAP.

Configures the APN of HPE Aruba Networking 4G LTE modem.

Configures the PLMN of HPE Aruba Networking 4G LTE modem.

Specifies the username of subscriber of the selected ISP.

Specifies the password for the account associated with the subscriber of the selected ISP.

Specifies the authentication type for USB.

Range: none,pap, chap, mschapv2

Default: pap

This setting allows you to select how the modem should operate.

auto (default): In this mode, the modem firmware will control the cellular network service selection; so the cellular network service failover and fallback is not interrupted by the Remote AP.

3g_only: Locks the modem to operate only in 3G.

4g_only: Locks the modem to operate only in 4G.

advanced: The Remote AP controls the cellular network service selection based on the Received Signal Strength Indication (RSSI) threshold-based approach. Initially the modem is set to the default auto mode. This allows the modem firmware to select the available network. The Remote AP determines the RSSI value for the available network type (for example 4G), checks whether the RSSI is within required range, and if so, connects to that network. If the RSSI for the modem’s selected network is not within the required range, the Remote AP will then check the RSSI limit of an alternate network (for example, 3G), and reconnect to that alternate network. The Remote AP will repeat the above steps each time it tries to connect using a 4G multimode modem in this mode.

The Server Certificate CN for Identity

IP address of the DNS server for the AP.

IPv6 address of the DNS server for the AP.

Domain name for the AP.

Specifies the antenna mode on 5 GHz and 6 GHz, in AP-679 and AP-679EX access points.

Use one of the following parameters:

• 0: Sets the 30° x 30° narrow antenna mode, with gains of 8.1dBi for 5 GHz, and 10.1dBi for 6 GHz.
• 1: Sets the 90° x 30° wide antenna mode, with gains of 7.7dBi for 5 GHz, and 10.5dBi for 6 GHz.

NOTE: The wide antenna mode is set as default.

Use an external antenna with the AP.

FQLN for the AP, in the format <APname.floor.building.campus>.

Determines the horizontal coverage distance of the 802.11g (2.4GHz) antenna from True North.

From a planning perspective, the horizontal coverage pattern does not consider the elevation or vertical antenna pattern.

NOTE: This parameter is supported on outdoor APs only. If you use this parameter to configure an indoor AP, an error message is displayed.

Range: 0-360 decimal degrees

Antenna gain for 802.11g (2.4GHz) antenna.

Antenna polarization value for 2.4GHz radio. Use one of the following parameters:

0: CO-Polarized

1: Cross-Polarized

Directs the angle of the 802.11g (2.4GHz) antenna for optimum coverage.

Use a - (negative) value for downtilt and a + (positive) value for uptilt.

NOTE: This parameter is supported on outdoor APs only. If you use this parameter to configure an indoor AP, an error message is displayed.

Range: -90 to +90 Decimal Degrees

Antenna use for 2.4 GHz (802.11g) frequency band. Use one of the following parameters:

1: Use antenna 1

2: Use antenna 2

both: Use both antennas

Range: 1, 2, both

Default: both

IP address of the default gateway for the AP.

IPv6 address of the default gateway for the AP.

IKE preshared key for the AP.

Specify if the ikepsk is hex-based or text-based. (set -> Hex, unset -> Text).

Configures an antenna gain value for APs with external antennas.

Specifies the type of installation (indoor or outdoor). The default parameter automatically selects an installation mode based upon the AP model type.

Range: indoor, outdoor

Static IPv6 address of the AP.

This parameter specifies the method to generate IPv6 addresses. There are two supported methods for this process.

• eui64 (default): Sets the method for the AP to generate IPv6 addresses to EUI-64. EUI-64 stands for Extended Unique Identifier. It is a method used to create IPv6 interface identifiers for network devices. In this case, the access point uses the MAC address of its interface to generate a unique 64-bit EUI-64 interface ID.
• stable-privacy: Sets the method for the AP to generate IPv6 addresses to Stable Privacy. Stable privacy algorithm refers to the method used to generate the interface identifier for temporary addresses used in Privacy Extensions for Stateless Address Auto-configuration (SLAAC). The purpose of temporary addresses is to enhance privacy by frequently changing the interface identifier, making it difficult to track a device's activity over time based on its IPv6 address.
• no: Sets the method to the default value, EUI-64.

The prefix of static IPv6 address of the AP.

Static IP address for the AP.

Latitude coordinates of the AP. Use the format: Degrees, Minutes, Seconds (DMS). For example: 37 22 00 N

Sets the priority of the cellular uplink. By default, the cellular uplink is a lower priority than the wired uplink; making the wired link the primary link and the cellular link the secondary or backup link.

Configuring the cellular link with a higher priority than your wired link priority will set your cellular link as the primary link.

Sets the priority of the wired uplink. Each uplink type has an associated priority; wired ports having the highest priority by default.

Sets the priority of the Wi-Fi uplink. Both Wi-Fi and wired uplink types have equal priority, depending on their availablility. If one of the uplink types is not available, the other uplink type is set as the primary link by default. However if both the uplink types are available, one of them is chosen randomly as the primary link.

Longitude coordinates of the AP. Use the DMS format.

For example: 122 02 00 W

Name or IP address of the Mobility Conductor.

Configures the preferred IP protocol (IPv4 or IPv6) for AP master/ conductor discovery.

Configures the AP to operate as a mesh node. You assign one of four roles: mesh auto, mesh portal, mesh point or remote mesh point. If you select none, the AP operates as a thin AP.

Enables or disables Simultaneous Authentication of Equals (SAE) on a mesh network. This option offers enhanced security over the default wpa2-psk-aes mesh security setting, and provides secure, attack-resistant authentication using a PSK. SAE supports simultaneous initiation of a key exchange, allowing either party to initiate an exchange or both parties to initiate a key exchange simultaneously

To use the SAE feature, you must enable this parameter on all mesh nodes (points and portals) in the network, to prevent mesh link connectivity issues.

NOTE: This is a Beta feature only. This parameter should be kept “disabled” for this release.

Netmask for the IP address.

If this parameter is set to 0 (default accept) and the certificate status is unknown, the server certificate is considered valid and the Remote AP comes up. If this parameter is set to 1 (default deny) and the certificate status is unknown, the server certificate is considered revoked and the Remote AP does not come up.

By default, OCSP default is set to 0 (default accept).

Negates any configured parameter.

PAP password for the AP.

You can use special characters in the PAP password. Following are the restrictions:

You cannot use double-byte characters

You cannot use a tilde (~)

You cannot use a tick (‘)

If you use quotes (single or double), you must use the backslash (\) before and after the password

PAP username for the AP.

Passphrase in PKCS12 format.

PPPoE CHAP secret key for the AP.

PPPoE password for the AP.

PPPoE service name for the AP.

PPPoE username for the AP.

Choose AP preferred uplink interface (eth0-eth1). This is only applicable to AP-318, AP-374, AP-375, and AP-377 access points.

Antenna gain for Radio 0 (5 GHz) antenna.

NOTE: This parameter is only needed for APs that support dual 5 GHz mode.

Antenna polarization value for Radio 0 (5 GHz) antenna. Use one of the following parameters:

0: CO-Polarized

1: Cross-Polarized

NOTE: This parameter is only needed for APs that support dual 5 GHz mode.

Antenna gain for Radio 1 (5 GHz) antenna.

NOTE: This parameter is only needed for APs that support dual 5 GHz mode.

Antenna polarization value for Radio 1 (5 GHz) antenna. Use one of the following parameters:

0: CO-Polarized

1: Cross-Polarized

NOTE: This parameter is only needed for APs that support dual 5 GHz mode.

Retrieves current provisioning parameters of the specified AP.

NOTE: This parameter can only be used on the Mobility Conductor.

This is a remote AP.

Provisions one or more APs with the values in the provisioning-params workspace. To use reprovision, you must use read-bootinfo to retrieve the current values of the APs into the provisioning-ap-list.

NOTE: This parameter can only be used on the Mobility Conductor.

NOTE: After you complete configuration in the CLI, reprovision the AP for the configuration to take effect.

Restores factory default provisioning parameters to the specified AP.

NOTE: This parameter can only be used on the Mobility Conductor.

If you are provisioning an 802.11n-capable AP, you can issue the sch-mode-radio-0 command to enable single-chain mode for the selected radio. AP radios in single-chain mode will transmit and receive data using only legacy rates and single-stream HT rates up to MCS 7. This setting is disabled by default.

If you are provisioning an 802.11n-capable AP, you can issue the sch-mode-radio-1 command to enable single-chain mode for the selected radio. AP radios in single-chain mode will transmit and receive data using only legacy rates and single-stream HT rates up to MCS 7. This setting is disabled by default.

If you are provisioning an 802.11n-capable AP, you can issue the sch-mode-radio-6Ghz command to enable single-chain mode for the selected radio. AP radios in single-chain mode will transmit and receive data using only legacy rates and single-stream HT rates up to MCS 7. This setting is disabled by default.

IPv4 or IPv6 address of the managed device from which the AP boots.

DNS name of the managed device from which the AP boots.

Sets a IKE preshared key to correspond to a specific IP address.

Set trust anchor for the AP.

User-defined description of the location of the AP.

Name of the trust anchor.

If you configure an uplink VLAN on an AP connected to a port in trunk mode, the AP sends and receives frames tagged with this VLAN on its Ethernet uplink.

By default, an AP has an uplink vlan of 0, which disables this feature.

NOTE: If an AP is provisioned with an uplink VLAN, it must be connected to a trunk mode port or the AP’s frames will be dropped.

The USB storage for CSR and private key file.

The USB device identifier, if the device is not already supported.

The dial string for the USB modem. This parameter only needs to be specified if the default string is not correct.

USB cellular devices on Remote APs typically register as modems, but may occasionally register as a mass-storage device. If a Remote AP cannot recognize its USB cellular modem, use the usb-modeswitch command to specify the parameters for the hardware model of the USB cellular data-card.

NOTE: You must enclose the entire modeswitch parameter string in quotation marks.

The initialization string for the USB modem. This string configures the AP Name setting of the USB modem. For the USB modem to understand this string, the value entered should adhere to one of the following formats:

Use double-quotes and prefix them with a backslash character. See example below:

"AT+CGDCONT=1,\"IP\",\"APN\""

Use single-quote instead of double-quotes. AP translates single-quote into double-quotes. See example below:

"AT+CGDCONT=1,’IP’,’APN’"

Use the string begin-end pair without double quotes. See example below:

AT+CGDCONT=1,’IP’,’APN’

In some cases, the 4G/LTE modem requires the configuration of two AP Names during USB initialization. The first AP Name initiates the connection to obtain an IP address, and the second AP Name sends and receives data. Use the ; delimiter character to create two separate strings for the AP Names in the command. See example below:

"AT+CGDCONT=1,\"IP\",\"APN1\";1,1,\"APN2\""

NOTE: You must obtain the AP Name from your ISP and ensure that each AP Name entry follows the manufacturer's AT command reference.

A PPP password, if provided by the cellular service provider

Sets the USB power mode to control the power to the USB port.

The TTY device path for the USB modem. This parameter only needs to be specified if the default path is not correct.

The TTY device control path for the USB modem. This parameter only needs to be specified if the default path is not correct.

Specify the USB driver type.

acm: Use ACM driver

airprime: Use Airprime driver

beceem-wimax: Use Beceem driver for 4G-WiMAX

ether: Use CDC Ether driver for direct IP 4G device

hso: Use HSO driver for newer Option

none: Disable 3G or 2G network on USB

option: Use Option driver

pantech-3g: Same as "pantech-uml290" - to support upgrade

pantech-uml290: Use Pantech USB driver for UML290 device

ptumlusbnet: Use Pantech USB driver for 4G device

rndis: Use a RNDIS driver for a 4G device

sierra-evdo: Use EVDO Sierra Wireless driver

sierra-gsm: Use GSM Sierra Wireless driver

sierrausbnet:Use SIERRA Direct IP driver for 4G device

storage: Use USB flash as storage device for storing Remote AP certificates

The PPP username provided by the cellular service provider.