Aruba Remote Mesh using an Aruba RAP

Aruba Remote Mesh - Topology

Reading Time: 8 minutes For an urgent project, I was asked to set up a Remote Mesh, and actually, I was thinking it is an easy task as I had created mesh networks before. But Remote Mesh is a different beast and it took me more than three days to get this working. To help others with this kind … Read more

Aruba Stuff in EVE-NG

EVE-NG - Device ID

Reading Time: 8 minutes I discovered that EVE-NG supports a lot of Aruba Stuff and in this post, I will show how to get it running in EVE-NG. I did a first post on this with the topic on how to install EVE-NG in Azure here: https://www.flomain.de/2020/11/eve-ng-in-azure/(opens in a new tab) This was related to EVE-NG in Azure, the … Read more

EVE-NG in Azure

EVE-NG in Azure - VM Settings

Reading Time: 6 minutes *******UPDATE September 19th 2022*******This guide does not work anymore as the script to install EVE-NG in azure is not available anymore. *******UPDATE END******* During the last months, I was regularly asked to build up a quick demo for partners and/or customers. As I cannot do this at home with limited hardware available I came across … Read more

Secure Client Bridge Connection

Secure Client Bridge Connection - Enable dot1x

Reading Time: 4 minutes How to connect a Client Bridge in a secure manner to the network not only means to secure the WLAN connection, but also the ethernet port of the bridge. This is the topic of the following post. The scenario for this post is to have the client bridge securely connected to the WLAN. But what … Read more

Aruba VIA VPN with IKEv2

Aruba VIA VPN - Successful VPN Connection

Reading Time: 12 minutes This post is to show how Aruba VIA VPN with IKEv2 works. With IKEv2 we switch to a certificate-based authentication which makes it easier for users and more secure for the whole organization. In an older post here I did a basic setup with IKEv1 and username password. This new post will leverage IKEv2 and … Read more

Aruba AP Authentication

Campus AP Authentication - Provision AP for EAP-TLS

Reading Time: 19 minutes Most organizations are moving to a network where all ports are authenticated. This could lead to problems when we try to connect an AP to a network port as AP authentication is more than just an accept. There are two types of AP that might be considered. First, the Campus AP, which needs to connect … Read more

ClearPass Sponsored Guest Login

ClearPass Sponsored Guest Login - Guest Caching Wizard

Reading Time: 10 minutes This post describes how to set up a self-registration guest login page with sponsor approval. I use this ClearPass sponsored guest login at home for all my guests. Actually, my wife had the idea to use this kind of setup. The solution will be very easy but you will get a good overview of how … Read more

ClearPass SSO with Azure AD

ClearPass SSO with Azure AD - Setup SSO

Reading Time: 7 minutes In this post, I show how to configure ClearPass SSO with Azure AD. I use SSO (single sign-on) to authenticate operators, using ClearPass. To use SSO for users to authenticate against the network and onboard new devices, for example, will be a later post. What and Why? So what is SSO or single sign-on? Actually … Read more

ClearPass with Gmail SMTP Server

ClearPass with Gmail - Add Context Server

Reading Time: 3 minutes Most of you will use some kind of mail server to allow ClearPass sending mails. So even if you do not use ClearPass with Gmail, this might be interesting, even if the ClearPass part is the simple part of this post. If you use a Gmail account for sending emails from your ClearPass this might … Read more

Port Forwarding with SD-Branch

Port Forwarding with SD-Branch - Add Policy to the WAN Port

Reading Time: 6 minutes After some time of absence, I’m back now, with a new lab in a new home. So I can build new cool stuff to test different and new setups. One part of the new LAB is SD-Branch and as I use my Synology Diskstation to backup this blog I need to create a rule to … Read more