Configuring AOS-CX Switches in UI Groups

You can configure AOS-CX switches that are added to a UI group, using the UI options and MultiEdit MultiEdit mode allows configuring single or multiple AOS-CX switches using the CLI syntax. You can also view the difference between the Central running configuration and the switch running configuration. mode. You can pre-configure groups in the absence of switches. You can configure 4100i, 6000, 6100, 6200, 6300, 6400, 8320, 8325, 8360, 8400, 9300, and 10000 Switch Series using UI options, MultiEdit mode, and templates. You can configure 8360 V2 Module (JL718C, JL720C, JL721C, JL722C) Switch Series using only templates.

To configure AOS-CX switches using templates, see AOS-CX Configuration Using Templates.

To configure or view the properties of AOS-CX switches that are added to UI groups, complete the following steps:

1. In the WebUI, select one of the following options:
   • To select a UI group in the filter:
     1. Set the filter to a UI group.
        

        The dashboard context for the UI group is displayed.

     2. Under Manage, click Devices > Switches.

     A list of switches is displayed in the List view.

     3. Click the AOS-CX or Config icon to view the AOS-CX switch configuration dashboard.
   • To select a switch:
     1. Set the filter to Global or a UI group containing at least one switch.
     2. Under Manage, click Devices > Switches.
        

        A list of switches is displayed in the List view.

     3. Click an AOS-CX switch under Device Name.
        

        The dashboard context for the switch is displayed.

     4. Under Manage, click Device.
        

        The AOS-CX UI configuration page is displayed.

   The following table describes the different configuration pages and their functions.

   Table 1: Configuring AOS-CX Switches Provisioned in UI Groups

   Feature	Description
   System
   Properties	Edit system property settings such as contact, location, time zone, and administrator password. You can also select the VRF Virtual Routing and Forwarding. VRF is a technology that allows multiple instances of a routing table to co-exist within the same router. to be used and add the DNS Domain Name System. A DNS server functions as a phone book for the intranet and Internet users. It converts human-readable computer host names into IP addresses and IP addresses into host names. It stores several records for a domain name such as an address 'A' record, name server (NS), and mail exchanger (MX) records. The Address 'A' record is the most important record that is stored in a DNS server, because it provides the required IP address for a network peripheral or element. and NTP Network Time Protocol. NTP is a protocol for synchronizing the clocks of computers over a network. servers. See Configuring System Properties on AOS-CX.
   HTTP Hypertext Transfer Protocol. The HTTP is an application protocol to transfer data over the web. The HTTP protocol defines how messages are formatted and transmitted, and the actions that the w servers and browsers should take in response to various commands. Proxy	Configure to enhance security for device management. An IP address can be made a proxy for all HTTP connections. See Configuring HTTP Proxy on AOS-CX.
   SNMP	Add, edit, or delete the following: SNMP Simple Network Management Protocol. SNMP is a TCP/IP standard protocol for managing devices on IP networks. Devices that typically support SNMP include routers, switches, servers, workstations, printers, modem racks, and more. It is used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention.  v2c communities SNMP v3 users Trap notifications for SNMP v2c and v3 See SNMP Configuration on AOS-CX.
   Logging	Add, edit, or delete logging servers to view event logs from the AOS-CX switches. Configure FQDN Fully Qualified Domain Name. FQDN is a complete domain name that identifies a computer or host on the Internet. or IP address, log severity level, and the VRF to be used for each of the logging servers. Also configure the global level debug log severity. See Configuring Logging Servers for AOS-CX.
   Administrator	Add, edit, or delete server groups to be used for authentication, authorization, and accounting. You must also configure the protocol required to enable connection to these server groups. See Configuring AAA for AOS-CX.
   Source Interface	Add, modify, or delete source interface configuration for Central and User-based tunneling interfaces for AOS-CX switches. See Configuring Source Interface for AOS-CX.
   Stacking	Create stack, add stack members, modify VSF link, change the secondary conductor, delete stack and delete stack members. See AOS-CX VSF Stack Configuration Using UI Groups.
   Routing	Create the overlay fabric for AOS-CX Switches that are part of the BGP Border Gateway Protocol. BGP is a routing protocol for exchanging data and information between different host gateways or autonomous systems on the Internet. -EVPN VXLAN Virtual Extensible LAN creates virtual networks overlaid on a physical network. overlay. The overlay fabric is created by configuring VXLAN tunnels between Stub Stub is a device persona that supports both static VXLAN tunnels and EVPN VXLAN tunnels. and Edge Edge is a device persona that connects endpoints to the fabric. Switches. See Overlay Fabric Overview .
   Static Routing	Add, edit, or delete static routes manually and configure destination IP addresses and next hop values, VRF, and the administrative distance. You can add different static routes for different VRFs on the switch. See Configuring Static Routing on AOS-CX.
   Ports & Link Aggregations	View and edit port settings such as description, VLAN Virtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN. mode, speed duplex, routing, and the operational status of the port. Add, edit, or delete LAGs by combining different ports and configuring the speed duplex, VLAN mode, aggregation mode, and the operational status of the LAG Link Aggregation Group . A LAG combines a number of physical ports together to make a single high-bandwidth data path. LAGs can connect two switches to provide a higher-bandwidth connection to a public network. . See Configuring Ports and LAGs on AOS-CX.
   Port Profiles	Create a profile, apply a profile to devices, clone a profile, modify profile configurations, and delete profiles at the group level. See Configuring Port Profiles on AOS-CX.
   Security
   Authentication Servers	Add, edit, or view the RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  and TACACS Terminal Access Controller Access Control System. TACACS is a family of protocols that handles remote authentication and related services for network access control through a centralized server. servers for authentication. Add settings such as FQDN or IP address of the servers, authentication port number, response timeout, retry count, and the VRF to be used when communicating with the servers. See Configuring Authentication Servers on AOS-CX.
   Authentication	View or edit details about 802.1X 802.1X is an IEEE standard for port-based network access control designed to enhance 802.11 WLAN security. 802.1X provides an authentication framework that allows a user to be authenticated by a central authority. and MAC Media Access Control. A MAC address is a unique identifier assigned to network interfaces for communications on a network. authentication methods. Configure the precedence order and other parameters such as reauthentication timeout, cached reauthentication timeout, and quiet period. See Configuring Authentication on AOS-CX.
   Access Control	View or add access policies and rules to permit or deny passage of traffic. See Configuring Access Control on AOS-CX.
   Dynamic Segmentation The Dynamic Segmentation feature is Aruba’s security architecture that provides the ability to dynamically assign roles to a wired port based on the access method of a client and enforce application-aware policies to all devices connecting to the infrastructure.	Enable to use GRE Generic Routing Encapsulation. GRE is an IP encapsulation protocol that is used to transport packets over a network. to tunnel ingress traffic on a switch interface to a gateway. For further processing, provide a centralized security policy using per-user authentication and access control to ensure consistent access and permissions. See Configuring User-Based Tunneling for AOS-CX.
   Client Roles	Configure to allow administrators to assign network access to clients. The network admin can create configuration profiles (roles) and associate them to clients. See Configuring Client Roles for AOS-CX.
   VLANs	Add, edit, delete, or view VLANs, and associated parameters such as type of IP assignment, operational status, IP address of the DHCP Dynamic Host Configuration Protocol. A network protocol that enables a server to automatically assign an IP address to an IP-enabled device from a defined range of numbers configured for a given network.  relay. See Configuring VLANs on AOS-CX .
   Loop Prevention	Enable or disable loop protection and spanning tree protocol, and associated parameters such as the mode and priority. Enable or disable various MSTP Multiple Spanning Tree Protocol. MSTP configures a separate Spanning Tree for each VLAN group and blocks all but one of the possible alternate paths within each spanning tree. mode-related settings such as BPDU Bridge Protocol Data Unit. A BPDU is a data message transmitted across a local area network to detect loops in network topologies. filter, BPDU protection, admin edge, and root guard. See Configuring Loop Prevention on AOS-CX.
   Telemetry Telemetry is a next-generation network monitoring technology used to remotely collect data from devices at high speed.
   Client Events	Enable to view authentication and DHCP related client events of clients. See Configuring Authentication and DHCP Related Client Events on AOS-CX.

2. To enable MultiEdit mode, move the MultiEdit toggle switch to the on position.

   The Device-Level Configuration page is displayed with the list of devices displayed in the Devices table.

   At the device level, the Devices table lists only the switch that you have selected. Also, a pop-up is displayed on the bottom-right corner of the page with the options View Config, Edit Config, and Express Config.

   Search for a switch by entering a search query in the Contextual Search Engine field.

   For more information about search queries, see Device Search on AOS-CX.

   The following table describes the options available in the MultiEdit mode of configuring AOS-CX switches.

   Table 2: Configuring AOS-CX Switches Provisioned in UI Groups using the MultiEdit Mode

   Feature	Description
   MultiEdit	View and edit configuration on the AOS-CX switches using the CLI syntax. You can also apply predefined set of configuration settings such as NAE Network Analytics Engine. The NAE feature within AOS-CX switches is a framework for automating the detection of issues and automating root cause analysis. to the switches. See Configuring and Viewing AOS-CX Switches in MultiEdit Mode .
   View Config	View configuration of AOS-CX switches and find differences in the configuration across switches. See Viewing Configuration on AOS-CX.
   Edit Config	Edit configuration for one or more AOS-CX switches in the MultiEdit mode. Edit the entire configuration in a familiar looking CLI with syntax checking, colorization, and command completion. See Editing Configuration on AOS-CX.
   Express Config	Apply predefined set of configuration settings such as NAE scripts and device profile to a single or multiple switches. See Express Configuration on AOS-CX.
   Device Search	Search for AOS-CX switches in the Devices table, in the MultiEdit mode, using search queries such as device attributes, wildcard characters, Boolean operators, and by grouping characters. See Device Search on AOS-CX.

3. To view configuration status, pending changes, and local overrides on the switches, click Configuration Status.

   This page allows you to commit the pending changes in a configuration. At the device level, this page allows you to change the auto-commit state of the switch.

   For more information, see Configuration Status of AOS-CX Switches.

Multiple Browser Tab Support

You can open multiple browser tab sessions of the same HPE Aruba Networking Central instance with different switch group or device pages opened simultaneously. For example, you can open the group configuration of a switch in one browser tab and the device-level configuration of a switch in another browser tab. HPE Aruba Networking Central stores the data from the different browser tabs separately.

However, if you edit the configuration of one AOS-CX switch in the MultiEdit mode in two different browser tab sessions, and try to save the configuration one after the other, the following events occur:

1. The configuration that you save first in the editor in any of the two browser tabs is saved on the switch.
2. When you try to save the configuration in the editor in the other browser tab, HPE Aruba Networking Central displays a warning that the configuration has been changed outside the current editor.
3. If you ignore the warning and continue to save the configuration, HPE Aruba Networking Central overwrites the changes saved earlier with the current changes.

If you save any changes in the MultiEdit mode and the changes do not reflect on the switch, check the Audit Trail details for any errors in the configuration sync.