How To Configure Gavika RADIUS On Aruba Operating System Software

Aruba-NAS version: 6.5.4.10 Aruba-Type: 205

Logon To Aruba

  • username : Enter username

  • password : Enter password

Click on Security

Ensure that you are in Authentication servers tab, click New. Ensure that radius radio button is selected. Enter the following details:

  • Name : Type any name of your choice.

  • IP address : Type IP address of the radius server.

  • RadSec : Ensure it is set to disabled.

  • Auth port : Ensure it is set to 1812.

  • Accounting port : Ensure it is set to 1813.

  • Shared key : Choose a secure key.

  • Retype key : Retype the shared key.

  • Timeout : Ensure it is set to 5 sec.

  • Retry count : Ensure it is set to 3.

  • RFC 3576 : Ensure it is set to disabled.

  • RFC 5997 : Ensure that both Authentication and Accounting checked.

  • NAS IP address : Enter NAS IP address.

  • NAS Identifier : Provide any name of your choice.

  • Dead time : Ensure it is set to 5 mins.

  • DRP IP : Submit a blank value.

  • DRP Mask : Submit a blank value.

  • DRP VLAN : Submit a blank value.

  • DRP Gateway : Submit a blank value.

  • Service type framed user : click on 802.1x check-box. Leave both Captive Portal and MAC unchecked. click OK.

In the Networks, click new. Under WLAN settings

  • Name : Type any name of your choice.

  • Primary Usage : Choose a category and click Next.

Under VLAN settings

  • Client IP assignment : Ensure it is set to Network assigned.

  • Client VLAN assignment : Ensure it is set to default.

Under Security settings

  • Security level : Ensure it is set to Enterprise

  • Key management : Ensure it is set to WPA-2 Enterprise

  • Authentication server 1 : choose the authentication server name that you created which is listed in the drop down.

  • Authentication server 2 : Submit a blank value.

  • EAP offload : Ensure it is set to disabled.

  • Re-auth interval : set re-auth interval to 5min.

  • Authentication survivability : Ensure it is set to disabled.

  • MAC authentication : Leave both the check-boxes unchecked.

  • Accounting : Choose Use separate servers from the drop-down list.

  • Accounting server 1 : choose the accounting server that you created which is listed in the drop-down.

  • Accounting server 2 : Submit a blank value.

  • Accounting interval : set accounting interval to 3 min.

  • Blacklisting : Ensure it is set to disabled.

  • Enforce DHCP : Ensure it is set to disabled.

Under Fast roaming field

  • opt OKC and  802.11r
    Click Next.

Under access settings

  • Access Rules : Ensure it is set to unrestricted. Click Finish.