Owners manual

ManualsBrandsARUBA NETWORKS ManualsComputers & LaptopsAruba Instant IAP-325 IEEE 802.11ac 1.69 Gbit/s Wireless Access Point - 2.40 GHz, 5 GHz - 8 x Antenna(s) - 8 x Internal Antenna(

161

162

163

164

165

166

167

168

169

170

Parameter Description

Admin-DN Enter a distinguished name for the admin user with read/search privileges across

all the entries in the LDAP database (the user need not have write privileges, but

the user must be able to search the database, and read attributes of other users in

the database).

Admin password

Enter a password for administrator.

Base-DN

Enter a distinguished name for the node that contains the entire user database.

Filter

Specify the filter to apply when searching for a user in the LDAP database. The

default filter string is (objectclass=*).

Key Attribute Specify the attribute to use as a key while searching for the LDAP server. For Active

Directory, the value is sAMAccountName

Timeout Enter a value between 1 and 30 seconds. The default value is 5.

Retry count Enter a value between 1 and 5. The default value is 3.

Dead Time Specify a dead time for authentication server in minutes within the range of 1-1440

minutes. The default dead time interval is 5 minutes.

When two or more authentication servers are configured on the IAP and a server is

unavailable, the dead time configuration determines the duration for which the

authentication server would be available if the server is marked as unavailable.

l CPPMServer for AirGroup CoA — To configure a CPPM server used for AirGroup CoA (Change of

Authorization), select the CoA only checkbox. The RADIUSserver is automatically selected.

Parameter Description

Name

Enter the name of the server.

IP address

Enter the IP address of the server.

Air Group CoA port

Enter a port number for sending AirGroup CoA on a different port than on the

standard CoA port. The default value is 5999.

Shared key

Enter a shared key for communicating with the external RADIUS server.

Retype key Re-enter the shared key.

Table 34:

CPPM Server Configuration Parameters for AirGroup CoA

4. Click OK.

The CPPM server acts as a RADIUS server and asynchronously provides the AirGroup parameters for

the client device including shared user, role, and location.

To assign the RADIUSauthentication server to a network profile, select the newly added server when configuring

security settings for a wireless or wired network profile.

You can also add an external RADIUSserver by selecting the New option when configuring a WLAN or

wired profile. For more information, see Configuring Security Settings for a WLAN SSID Profile on page

99 and Configuring Security Settings for a Wired Profile on page 115.

Aruba Instant 6.4.0.2-4.1 | User Guide Authentication and User Management | 161