manualshive.com logo in svg

Hewlett Packard Enterprise aruba, Troubleshooting Manual, Page: 33 / 41

Share
Download
Hewlett Packard Enterprise aruba Troubleshooting Manual Download Page 33

Wireless Client Connections |

33

Name

Server

Port

Url

Auth Text

Redirect Url

Server Fail

Through

Disable Auto Whitelist

Use HTTPs

In Use

Redirect Mode

----

------

----

---

---------

------------

------------

-------

----------------------

---------

------

-------------

default

10.64.18.200

80

/guest/bmrpl.php

Disable

Enable

No

No

Yes

bwang1

10.64.18.200

80

/guest/bmrpl.php

Disable

Enable

No

Yes

Yes

"a a a a a"

10.64.18.200

80

/guest/bmrpl.php

Disable

Disable

No

Yes

No

amigoport

10.64.17.246

80

/aruba.php

Disable

Enable

No

No

Yes

bwang2

10.64.18.200

80

/

Disable

Enable

No

No

Yes

bwang3

10.64.18.200

80

/

Disable

Enable

No

No

Yes

Networks using ECP redirect mode are marked

Yes

in the

Redirect Mode

column and networks using

ECP tinyproxy mode are marked

No

.

Debug ECP Mode Behavior on Client PC

Check if the client is redirected to the expected URL as defined by the captive portal ECP mode using
developer tools provided by the browser.

The following procedure describes how to debug captive portal communication between the client and the
webserver on the client browser:

1. Open

Developer Tools

in your browser and navigate to

Network Monitor

.

2. Input a URL in the address bar and press

Enter

.

3. Click on the URL entry in the

Network Monitor

and check the header messages exchanged between

the web server and the client. Depending on the ECP mode of the captive portal, you should get the
following responses:

Captive Portal ECP Mode

Expected Header Response

ECP tinyproxy mode

Status Code: 200 OK

Location in Header Response — Aruba AP captive portal URL
(securelogin.arubanetworks.com)

ECP redirect mode

Status Code: 302 OK

Location in Header Response — Captive portal server URL

If the client browser fails to resolve DNS, open command prompt on the client PC and run

nslookup

to

check the status of DNS server.

Wireless Client Fails Captive Portal Authentication

Captive portal authentication on ECP tinyproxy mode is mediated by the AP and can be troubleshooted on
the AP. Whereas captive portal authentication on ECP redirect mode has no AP mediation and can be
troubleshooted only using a packet capture software.

The following procedure describes how to troubleshoot issues, if the client fails captive portal
authentication on ECP tinyproxy mode:

Check Authentication Process Logs on the AP

Summary of Contents for aruba

Page 1: ...Aruba Instant AP Troubleshooting Guide Troubleshooting Guide...

Page 2: ...machine readable copy of the source code corresponding to such code is available upon request This offer is valid to anyone in receipt of this information and shall expire three years following the d...

Page 3: ...a Central 22 Instant APs Managed by AirWave 23 AP Fails to Connect to AirWave 23 AP Fails to Receive Configurations From AirWave 24 AP Fails to Download Software Image From AirWave 25 AP Fails to Down...

Page 4: ...Revision History 4 Revision History The following table lists the revisions of this document Revision Change Description Revision 01 Initial release Table 1 Revision History...

Page 5: ...Documents In addition to this document the Instant AP product documentation includes the following n Aruba AP Software Quick Start Guide n Aruba Instant Access Point Installation Guides n Aruba Instan...

Page 6: ...hout this guide Indicates helpful suggestions pertinent information and important things to remember Indicates a risk of damage to your hardware or loss of data Indicates a risk of personal injury or...

Page 7: ...orth American Telephone 1 800 943 4526 Toll Free 1 408 754 1200 International Telephone arubanetworks com support services contact support Software Licensing Site lms arubanetworks com End of life Inf...

Page 8: ...ctivate 1 Check the Uplink of the AP 2 Check the Status of Activate Connection 3 Check if Access to Activate Server is Allowed in the Network Firewall Check the Uplink of the AP Ensure that the AP has...

Page 9: ...ate connection information of the AP generated by the show activate status command Instant AP show activate status IAP MAC Address 90 4c 81 c3 28 1e IAP Serial Number USGHK514D1 Cloud Activation Key A...

Page 10: ...Check if the AP has AirWave IP Configured APs will not use DHCP options for provisioning if AirWave IP is configured as AirWave configuration takes precedence over DHCP options Run the show summary c...

Page 11: ...Received a Provisioning Rule The Set Me Up SSID is disabled automatically when the AP receives a provisioning rule from Activate AirWave or DHCP server Run show summary command to view the configurati...

Page 12: ...180 Internet check timeout secs 10 ICMP pkt sent 0 ICMP pkt lost 0 Continuous pkt lost 0 VPN down time 0 AP1X type NONE Certification type NONE Validate server NONE Connect to the SSID Using a Differ...

Page 13: ...the auto join setting of the cluster generated by the show allowed aps command Conductor AP show allowed aps Allow New APs disable AP Whitelist MAC Address 90 4c 81 c3 28 1e 90 4c 81 cf 77 34 Check if...

Page 14: ...rk Configuration Action Networks with a DHCP server Ensure that the DHCP server has enough IP addresses for new APs Check the lease period of the IP addresses Conductor AP defined with a static IP Ass...

Page 15: ...d no Factory default status no Source of system time Image file Config load cnt 1 VC Channel index 1 IDS Client Gateway Detect yes Config Init success cnt for heartbeat 0 Config Init success cnt for r...

Page 16: ...Aruba Instant AP Troubleshooting Guide 16 Type of Mismatch Cause Log Event NOTE In the event of a regulatory domain mismatch or OEM mismatch the member AP cannot be provisioned in a cluster...

Page 17: ...details of Aruba Central server Check the Aruba Central Status to identify the state of Central connection The status is displayed as Login_done for successful connections All other status imply that...

Page 18: ...AP provisioning logs indicate issues faced by the AP when connecting to Activate or Central The following are possible errors that could occur in Activate or Central connections Error Cause Resolutio...

Page 19: ...Central server at internal central arubanetworks com Thu Apr 23 10 42 03 2020 Activate In progress Attempting provisioning via Activate server device arubanetworks com Thu Apr 23 10 42 03 2020 Centra...

Page 20: ...has received configurations and a FALSE state implies that the AP has not received configurations The sample below displays the Central connection status generated by the show ap debug cloud server c...

Page 21: ...s defined for the AP group Verify the Configurations Received from Central Run the show ap debug cloud config received command in the CLI of the AP to view configurations received from Central Verify...

Page 22: ...initiated the download process Run the show upgrade command in the CLI of the AP to view the status of software upgrade If the AP fails to initiate the download there is an error between the AP and t...

Page 23: ...tials Organization String Shared Key and the IP address of the AirWave server are entered correctly on the AP Check if the AP is Connected to AirWave Run the show ap debug airwave command in the CLI o...

Page 24: ...mple below displays details of the AirWave server generated by the show ap debug airwave command Airwave Server List Domain IP Address Type Mode Config only Rapids mode Status 1 1 1 1 Primary Manage N...

Page 25: ...ded to AirWave in the Device Setup Upload Firmware Files page of the AirWave webUI The AirWave operation mode for the AP must be Manage mode or Allow firmware upgrades in monitor only mode must be ena...

Page 26: ...The sample below displays details of the AirWave server generated by the show ap debug airwave command Airwave Server List Domain IP Address Type Mode Config only Rapids mode Status 1 1 1 1 Primary M...

Page 27: ...rsion 2 Serial Number 3D Issuer CN Aruba345 CNFDK5143Q ST California O Aruba Networks OU Instant C US Subject CN securelogin arubanetworks com L Sunnyvale ST California O Aruba Networks OU Instant C U...

Page 28: ...heck the Authentication Message Exchange Between the AP and Client Check the SSID Configuration of the Wireless Network The SSID settings must be defined to support the desired clients The following a...

Page 29: ...28 1e show ap bss table Aruba AP BSS Table bss ess port ip phy type ch EIRP max EIRP cur cl ap name in t s tot t flags 90 4c 81 b2 81 e1 test 10 16 21 2 g HT ap 11 10 2 26 2 0 90 4c 81 c3 28 1e 0 20m...

Page 30: ...the Client Before troubleshooting ensure that the client is connected to the AP Check the VLAN Settings of the Network Incorrect VLAN settings can stop the client from getting an IP address Perform t...

Page 31: ...ber assigned to the client from the ACLs column of the Datapath User Table Entries table 3 Check the access control entries in the ACL using the show datapath acl acl number command 4 Verify if the AC...

Page 32: ...thentication Check Authentication Process Logs on the AP Check the authentication logs to view and identify errors in the authentication process between the client and the AP Run the show ap debug aut...

Page 33: ...browser and navigate to Network Monitor 2 Input a URL in the address bar and press Enter 3 Click on the URL entry in the Network Monitor and check the header messages exchanged between the web server...

Page 34: ...debug auth trace buff MAC address command to view the authentication process logs between the client and the AP Use the MAC address of the client to filter packets specific to a client Any error in t...

Page 35: ...ible for clients to join the network Ensure that Hide and Disable options are disabled in the SSID settings n Operating radio bands The SSID must be broadcasted on the RF bands supported by the client...

Page 36: ...nk connection of the AP is DOWN resolve the issue with the AP uplink before continuing the troubleshooting process The sample below displays information of the uplink connection of the AP generated by...

Page 37: ...ofile AP Changes Radio Channel Frequently The following procedure describes how to troubleshoot issues if the AP changes radio channel frequently 1 Check if Client Aware is Enabled 2 Check the ARM Cha...

Page 38: ...2 4G NO40INT 40MHz intol cleared on 2 4G OFF R Turn off Radio due to Radar OFF MA Turn off Radio due to Mode Aware ON Turn on Radio D Dynamic Bandwidth Switch AIRMATCH AirMatch Event I CCA Interferen...

Page 39: ...11a 80MHz indoor 36 48 52 64 100 112 116 128 132 144 149 161 802 11a 80MHz outdoor 36 48 52 64 100 112 116 128 132 144 149 161 802 11a 160MHz indoor 36 64 100 128 802 11a 160MHz outdoor 36 64 100 128...

Page 40: ...mesh cluster configuration command Instant AP show mesh cluster configuration Mesh cluster name mesh_clusterl Mesh cluster key Manual Check the Extended SSID Settings of the APs Ensure that Extended...

Page 41: ...al AP has an Ethernet uplink connection Check the RF Environment of the Mesh APs APs in a mesh cluster must have overlapping RF environments to establish mesh links Run the show ap mesh neighbor comma...

Reviews:

No comments