Category Archives: Aruba

Airwave Upgrade for New Centos

Basic Crib

the OVA file contains the new version if used to build a new instance.  A hardware AW upgrade would be similar in process, but we would have to build it from scratch (install the OS first, then use the .iso file for the AW install) on the same box after copying off the backup file.

To upgrade CentOS for Airwave the process in the Release Notes is correct:

  1. First, upgrade your live AW to 8.2.10.0.  This upgrades the databases so they can be restored later in the steps.
  2. Backup this live AW and copy off this backup file somewhere
    1. (CLI) Backup > Backup Now. 
      1. (GUI) To grab the “nightly” or “weekly” backups – if you’ve waited long enough since the upgrade to 8.2.10.0 so they can run since your upgrade – go to System > Backups
    2. Command line for SCP from AW (don’t use Solarwinds SFTP/SCP Server as it doesn’t like the encryption ciphers… OpenSSH in Linux works well) (This step is the most difficult in terms of getting the SCP server running, reachable, and the syntax correct):
      1. If I had a “awbackupfolder” folder on my Linux box on the Desktop for a user named “username”, I would reference the existing folder as relatively from my login directory: Desktop/awbackupfolder/  (the trailing “/” is optional here)
      2. The CLI SCP syntax cannot take the “~” tilde character so reference the folder in another way
      3. username@192.168.21.21:Desktop/awbackupfolder/
    3. Power off the AW server (we’ll need the new box to have the same IP because AW licenses are tied to it)
  3. Build a new AW server with the right storage, cpu, and memory requirements.  This is a good opportunity to increase hard disk size if you’ve been holding off.
    1. Building from OVA file will install the CentOS 7 version.
    2. To login to the newly deployed box, use the default: user = root and password = admin
    3. Use the same basic startup-script info as before, keeping the same IPs
    4. You will need a complex password.  Store it somewhere safe: this is your CLI and your WebUI password for “admin” login
  4. Once the box is up, from the CLI copy over the backup file via SCP.
    1. Files > Upload
      1. username@192.168.21.21:Desktop/awbackupfolder/ampbackup_date_time.tar.gz
  5. Now restore from the backup.
    1. Backup > Restore > AMP Restore, select the file.  Sometimes the numbers don’t match what you type – I think due to hidden files (.digest files).  Make sure it is the right one (it should be the only one here)
    2. VisualRF backup file is already contained in the AW Backup file, so there isn’t a need to do that restore separately.
  6. Log in to the system after it is up with the new password.  Perform basic checks that information is still flowing correctly.
  7. Delete the old virtual machine once everything is running fine.
  8. Have a cup of coffee.

Aruba ClearPass SQL Filters

Custom SQL filter to get NAS-Port-ID

SELECT tips_dashboard_summary.id as session_id, source as req_source ,user_name,service_name,alerts_present,nas_ip,nas_port,conn_status,login_status,error_code,host_mac as mac_address,tips_dashboard_summary.timestamp,tips_dashboard_summary.write_timestamp,attr_value,attr_name FROM tips_dashboard_summary INNER JOIN tips_session_log_details ON tips_dashboard_summary.id = session_id where attr_name = ‘Radius:IETF:NAS-Port-Id’ AND ((tips_dashboard_summary.timestamp >= –START-TIME–) AND (tips_dashboard_summary.timestamp <= –END-TIME–));

Aruba Instant Mesh Wifi

When setting up Aruba Mesh with instants do not forget to turn off extended SSID.

Steps

  1. Create cluster with IAP let them sync with image and configuration (update them to lateist code)
  2. Disable the extended SSID ( in the latest version 4.x, it is enabled) in options
  3. you will find both the IAPs as mesh portals.
  4. Remove the IAP from the Switch which you want to make mesh point and provide external power.
  5. After booting, there will be a mesh link between two IAPs.