Hello! The guides and whitepaper kinda skips on the part of AAA profile. Why is default used? And can you say something on how you select a different/custom AAA profile to use for PUTN and DUR? In PPTN I'm adding the AAA on the VLAN itself..
Hi John-Egil, The scope of the video is to show how the dynamic secondary user roles work so it focuses somewhat less on the full blown Mobility Controller configuration. Assigning a different AAA profile for a wired role is very easy. On the "Managed Network" or cluster section, navigate to the Interface configuration, select VLANs, select the VLAN in the top table and then the VLAN ID in the lower table. Click on "More" in the new table that pops up at the bottom. You will find a "Wired LAN" section there. In that section you can assign the profile. Hope this helps.
@@AirheadsBroadcasting Thanks for the quick answer! Yep, thats how I do it for PPTN. So this would basically be the same thing then. I have a dialogue going with Ben about this too ;) So if nothing is selected for the VLAN, it will default to "default" AAA. Also - if I have an AAA assigned to a VLAN then I would need to activate "download role from Clearpass" on the AAA profile..
@@JohnEgilSolberg Hi, I know this is from 3 years ago, but if doing PBT we know that we are using VLAN X for the tunnel and we assign the aaa profile to this VLAN X, but with UBT where do we assign the aaa that has the "download role from Clearpass" ? to which VLAN or to any VLAN regardless if it's used or not ?
@@Sallouma7806 Several guides on this channel has been posted for how to do that. With UBT you send the second-role parameter for which role to be assigned on the gateway
Hello!
The guides and whitepaper kinda skips on the part of AAA profile. Why is default used? And can you say something on how you select a different/custom AAA profile to use for PUTN and DUR? In PPTN I'm adding the AAA on the VLAN itself..
Hi John-Egil,
The scope of the video is to show how the dynamic secondary user roles work so it focuses somewhat less on the full blown Mobility Controller configuration. Assigning a different AAA profile for a wired role is very easy. On the "Managed Network" or cluster section, navigate to the Interface configuration, select VLANs, select the VLAN in the top table and then the VLAN ID in the lower table. Click on "More" in the new table that pops up at the bottom. You will find a "Wired LAN" section there. In that section you can assign the profile.
Hope this helps.
@@AirheadsBroadcasting Thanks for the quick answer! Yep, thats how I do it for PPTN. So this would basically be the same thing then. I have a dialogue going with Ben about this too ;) So if nothing is selected for the VLAN, it will default to "default" AAA. Also - if I have an AAA assigned to a VLAN then I would need to activate "download role from Clearpass" on the AAA profile..
@@JohnEgilSolberg That's totally correct.
@@JohnEgilSolberg Hi, I know this is from 3 years ago, but if doing PBT we know that we are using VLAN X for the tunnel and we assign the aaa profile to this VLAN X, but with UBT where do we assign the aaa that has the "download role from Clearpass" ? to which VLAN or to any VLAN regardless if it's used or not ?
@@Sallouma7806 Several guides on this channel has been posted for how to do that. With UBT you send the second-role parameter for which role to be assigned on the gateway