Aruba Instant 6.5.0.0-4.3.0.0 | User Guide
Authentication and User Management |
143
Chapter 13
Authentication and User Management
This chapter provides the following information:
l
Managing IAP Users on page 143
l
Supported Authentication Methods on page 148
l
Supported EAP Authentication Frameworks on page 150
l
Configuring Authentication Servers on page 151
l
Understanding Encryption Types on page 164
l
Configuring Authentication Survivability on page 166
l
Configuring 802.1X Authentication for a Network Profile on page 167
l
Enabling 802.1X Supplicant Support on page 169
l
Configuring MAC Authentication for a Network Profile on page 170
l
Configuring MAC Authentication with 802.1X Authentication on page 172
l
Configuring MAC Authentication with Captive Portal Authentication on page 174
l
Configuring WISPr Authentication on page 175
l
Blacklisting Clients on page 176
l
Uploading Certificates on page 179
Managing IAP Users
The IAP users can be classified as follows:
l
Administrator—An admin user who creates SSIDs, wired profiles, and DHCP server configuration
parameters; and manages the local user database. The admin users can access the VC Management UI.
l
Guest administrator—A guest interface management user who manages guest users added in the local user
database.
l
Administrator with read-only access—The read-only admin user does not have access to the Instant CLI. The
Instant UI will be displayed in the read-only mode for these users.
l
Employee users—Employees who use the enterprise network for official tasks.
l
Guest users—Visiting users who temporarily use the enterprise network to access the Internet.
The user access privileges are determined by IAP management settings in the AirWave Management client and
Aruba Central, and the type of the user. The following table outlines the access privileges defined for the admin
user, guest management interface admin, and read-only users.
User Category
Aruba Central or AMP in
Management Mode
IAP in Monitor Mode or without AMP
or Aruba Central
administrator
Access to local user database only
Complete access to the IAP
read-only
administrator
No write privileges
No write privileges
guest administrator
Access to local user database only
Access to local user database only
Table 31:
User Privileges