Legal Disclaimer: The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.arubanetworks.com for current and complete HPE Aruba Networking product lines and names.
Aruba Central Online Help
To configure security settings, complete the following steps:
- In the WebUI, set the filter to a group that contains at least one AP.
The dashboard context for the group is displayed. - Under , click > .
A list of APs is displayed in the view. - Click the icon.
The tabs to configure the APs are displayed. - Click , and click the tab.
The Interfaces details page is displayed. - Click the accordion.
- To create a new wired port profile, click .
The Create a New Network pane is displayed. - Select one of the following security options from the Security Level based on your requirement:
- —Select to enable 802.1X 802.1X is an IEEE standard for port-based network access control designed to enhance 802.11 WLAN security. 802.1X provides an authentication framework that allows a user to be authenticated by a central authority. authentication.
- Primary Server—Select a primary server from the Primary Server drop-down list.
- Secondary Server—Select a secondary server from the Primary Server drop-down list.
- MAC Media Access Control. A MAC address is a unique identifier assigned to network interfaces for communications on a network. Authentication—Enable the toggle button for MAC authentication.
- —Enable the toggle button to attempt 802.1X authentication is attempted when the MAC authentication fails.
- MAC Authentication—Select this option to enable MAC authentication.
- Primary Server—Select a primary server from the Primary Server drop-down list.
- Secondary Server—Select a secondary server from the Primary Server drop-down list.
The MAC Authentication option is set to Gateways if the Traffic forwarding mode is Tunnel or Mixed.
- —Set the toggle button to enable captive portal A captive portal is a web page that allows the users to authenticate and sign in before connecting to a public-access network. Captive portals are typically used by business centers, airports, hotel lobbies, coffee shops, and other venues that offer free Wi-Fi hotspots for the guest users. authentication.
- Type—Select a type of captive portal from the drop-down list. For example, External Captive Portal or Cloud Guest.
- Captive Portal Profile—Select a captive portal profile from the Captive Portal Profile drop-down list.
- Primary Server—Select a primary server from the Primary Server drop-down list.
- Secondary Server—Select a secondary server from the Primary Server drop-down list.
- —Set the toggle button to enable, to set security for open network.
- —Select to enable 802.1X 802.1X is an IEEE standard for port-based network access control designed to enhance 802.11 WLAN security. 802.1X provides an authentication framework that allows a user to be authenticated by a central authority. authentication.
- Under the section, configure the following parameters:
- —Enable the toggle button to configure client IP address as calling station ID.
- —Select one of the following options:
- —Uses the VC ID as the called station ID.
- —Uses the host name of the AP as the called station ID.
- —Uses the VLAN Virtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN. ID of as the called station ID.
- —Uses the IP address of the AP as the called station ID.
- —Uses the MAC address of the AP as the called station ID.
The detail can be configured even if the is set to disabled.
- Reauth Interval—Specify the interval at which all associated and authenticated clients must be re-authenticated.
- Accounting—Expand the Accounting accordion and select one of the accounting servers from the Accordion drop-down list.
- Click .
The Access details page is displayed.
