• All Files
ArubaOS 8.6.0.0Help Center
You are here: Home > Access Points > Before you Deploy an AP > Auto-Provisioning of APs

Auto-Provisioning of APs

AP Auto-Provisioning settings allow you to automate and simplify AP provisioning by assigning pre-provisioning rules to new APs. When new APs are connected to the network, the pre-provisioning rules are applied and the APs are automatically provisioned based on the conditions and actions defined in the rules. This enables themanaged deviceto do bulk provisioning of APs with different attributes.

Each rule is assigned a priority level to determine the precedence of the rules. When an unprovisioned AP connects to a network, the AP checks the rules that have the highest priority. If the AP matches the conditions of the rule, the AP sets each action to the corresponding provision parameter and provisions itself. If the AP does not match the pre-defined criteria of the rule, the AP checks for the next priority rule that matches the condition.

You can apply auto-provisioning of APs only onMobility Masterand stand-alonecontrollers. You cannot apply provisioning rules to APs that have already been configured by whitelist, manual provisioning, or provisioning profile methods.

Configuring Provisioning Rules to APs

The following procedure describes how to configure the provisioning rules to an AP:

1.In theManaged Networknode hierarchy, navigate to theConfiguration > Access Points >Provisioning Rulestab.

2.UnderAP Provisioning Rules, click+to create a new provisioning rule.

3.To edit an existing rule, click the provisioning rule entry from theProvisioning Rulestable. To delete a existing rule, click the trash icon on the right.). TheNew Provisioning Rulewindow appears.

4.Configure theNew Provisioning Rulesettings, then clickSubmit.

Table 1describes the new provisioning rule parameters.

Table 1:New Provisioning Rule Parameters

Parameter

Description

Name

Enter a provisioning rule name.

Conditions

Specify conditions to narrow the scale of AP based on each criteria in the conditions.

Attribute

Select one of the following options from the drop-down list:

IP Range: Specify the IPv4 or IPv6 address range to check if the IP address of the AP is within this range.

Network Address: Enter an IPv4 or IPv6 network address along withnetmaskNetmask is a 32-bit mask used for segregating IP address into subnets. Netmask defines the class and range of IP addresses.to check if the IP address of the AP is within this network address. The network address includes the prefix (length of thenetmaskNetmask is a 32-bit mask used for segregating IP address into subnets. Netmask defines the class and range of IP addresses.) in the following format: x.x.x.x/prefix or x:x::x/prefix.

NOTE:The allowed values of thenetmaskNetmask is a 32-bit mask used for segregating IP address into subnets. Netmask defines the class and range of IP addresses.prefix are as follows:

0—32 for IPv4 network address; 0—128 for IPv6 network address.

AP Model: Select an AP model from the drop-down list to apply the rule to this particular AP.

Any AP: Select this option if you want to apply the provisioning rule's condition to any AP.

NOTE:You must drag the rules up or down to reorder or reassign the priority of the rules in the WebUI.

NOTE:The rule withAny APcondition has the lowest priority and is applied only when the previous conditions are not met. You cannot move the position of theAny APrule in the WebUI. TheAny APcondition is unique and is exclusive of other conditions.

Actions

Specify actions that corresponds to the conditions. When an AP satisfies all the criteria in conditions, the AP executes the actions applied by the rule.

Attribute

Select one of the following options from the drop-down list:

Assign to AP Group:从the drop-down list, select the AP group that you want to assign to the AP.

Set Antenna Gain for Dual 5GHz mode: Set values for Radio 0 and Radio 1 for APs that support Dual 5GHzGigahertz.mode.

Set Antenna Gain for Dual Band mode: Set values for 2.4GHz and 5GHz antenna for APs that support both thebandsBand refers to a specified range of frequencies of electromagnetic radiation..

NOTE:The Antenna gain attributes are applicable only to the APs with external antenna.

NOTE:You cannot configure the AP group that is set todefault.

In the CLI

The followingCLICommand-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions.commands add the condition and associated parameter for auto-provisioning rule:

(host) [mm] (config) #ap provisioning-rule test

(host) [mm] (ap provisioning rule "test") #condition ap-type AP-103

To add the action and associated parameter for auto-provisioning rule:

(host) [mm] (ap provisioning rule "test") #action ap-group corp1

To display the provisioning rule for an AP:

(host) [mm] (config) #show ap provisioning-rule test ap provisioning rule "test" ---------------------------- Parameter Value --------- ----- ip range N/A network 3.3.3.3/1 any AP false AP Type AP-UNKNOWN ap group N/A Antenna gain for 802.11g N/A Antenna gain for 802.11a N/A Radio 0 5GHz Antenna gain for APs support Dual 5GHz mode N/A Radio 1 5GHz Antenna gain for APs support Dual 5GHz mode N/A

To select the required rules from provisioning rule for auto-provisioning and define their priority:

(host) [mm] (config) #ap provisioning-rules (host) [mm] (ap provisioning rules) #provision-rule test priority 20 (host) ^[mm] (ap provisioning rules) #write memory

To display the rules based on the priority level:

(host) [mm] (ap provisioning rules) #show provisioning-rule-info summary Auto provision Rule Info ------------------------ Rule Name Priority Hit times Success count --------- -------- --------- ------------- ap324 1 0 0 ip36 3 0 0 network 5 0 0 ip46 7 0 0

To delete the provisioning rule:

(host) [mm] (config) #no ap provisioning-rule test

Important Points to Remember

TheMobility Masteror standalonecontroller检查unprovisioned APs的列表LMSLocal Management Switch. In multi-controller networks, each controller acts as an LMS and terminates user traffic from the APs, processes, and forwards the traffic to the wired network.总共六次,每10秒provisions the AP that matches the rule. If the provisioning still fails after six attempts, the AP is ignored and is set to unprovisioned state. If the AP is provisioned by other provisioning methods within the 10 seconds interval, the AP is removed from the list and is not provisioned automatically.

When you manually enable theCPsecControl Plane Security. CPsec is a secure form of communication between a controller and APs to protect the control plane communications. This is performed by means of using public-key self-signed certificates created by each master controller.and add the whitelist of the AP with ap-name or ap-group configured, the AP is not provisioned automatically.

You can create a maximum of 32 rules for an AP group.

There is no action in the rule to provision AP toremote APRemote APs extend corporate network to the users working from home or at temporary work sites. Remote APs are deplyed at branch office sites and are connected to the central network on a WAN link.or mesh AP. Hence, you must provision it manually or set theremote APRemote APs extend corporate network to the users working from home or at temporary work sites. Remote APs are deplyed at branch office sites and are connected to the central network on a WAN link.by using provisioning profile.

You can manually provision APs before or after their auto-provisioning, to set the extra provisioning parameter to the APs.

/*]]>*/
Baidu