Technical Tip: L2 Roles Only Configuration Fails to Switch Roles in Aruba
Description
This article describes that L2 Roles Only Configuration Fails to Switch Roles in Aruba.
Scope
FortiNAC.
Solution
If Aruba is configured for L2 Roles Only
VLAN Switching Enabled must be checked on the model configuration in topology under the properties of the controller.
If this is unchecked, Network Sentry will return the Native Policy and not the role configured in the model for registration when a rogue host connects.
If VLAN Switching is not enabled, a message similar to the one below will be seen with Radius Manager Debug enabled in the master loader.
If this is unchecked, Network Sentry will return the Native Policy and not the role configured in the model for registration when a rogue host connects.
If VLAN Switching is not enabled, a message similar to the one below will be seen with Radius Manager Debug enabled in the master loader.
2016/01/27 16:08:34.180 RadiusPollThread2 RadiusServer validClient VLAN switching disabled for 172.16.200.20 <- Controller that has VLAN switching disabled.