This weeks class - Aruba Campus Access Fundamentals v22.411 (ACAF)

Welcome to Aruba Campus Access Fundamentals


Please be sure you have downloaded the learner guide and lab guide as per instructions you received from an email you would have received from HPE last week.  Check your email history, spam folder etc... for keyword "OnSecure" if you cannot find the email.


  • when you see an X it is your assigned table number (in hostnames, ipaddr, etc)

  • the Podx Spreadsheet (ask me in class for your password)

Today's Notes:

SSID: to-be-determined      password: see whiteboard in class

Day 1 - Lecture Modules & Labs

    • M00: Course Introduction

    Tips on how to google our site for documentation

      • googling for AOS-Switch-related topics
        • site:hpe.com 16.09 -inurl:pdf -inurl:cx "dhcp-snooping"
      • googling for AOS-CX-related topics
        • site:arubanetworks.com -inurl:pdf inurl:AOS-CX inurl:10\.11 "dhcp-snooping"
      • search option notes:
        • site:x only searched that domain
        • -inurl:x don't report links with this text in the URL
        • inurl:x only report on links with text
          • (ideal for finding specific version documentation)

      • where to find more information

      • AOS-CX specific links

        • Lab 1.01 - Testing Remote Lab Connectivity
          • 1: Aruba Training Lab Access
          • 2: Testing Connectivity
            • on page 10 (1.01.2.35)
              • it says
                • after you click launch it will take you to Aruba Central Global > Overview page
              • however
                • you may get prompted to select your region in a popup window
                • if that happens to you, select "US West", then click launch

        • Lab 1.02 - Base Configuration- Initial Lab Setup
          • 1: Discover Headers and Encapsulation
          • 2: UDP header – DHCP Example
      • M02: Switch Fundamentals
        • Lab 2.01 - Packet Exploration
          • 1: Initial Access to Edge switch
          • 2: Configure Edge switch uplink to Aggregation switch
          • 3: Configure PC port as VLAN Access port
          • 4: Configure Uplink port as VLAN Trunk Port
          • 5: Practice VLAN port configuration
        • Lab 2.02 - Link Aggregation
          • 1: Configure Edge1 with Link-Aggregation to Edge2
          • 2: Practice and verify the LAG configuration on Edge2
          • 3: Configuring the LAG as a VLAN trunk
          • 4: (Optional) Link-Aggregation Troubleshooting
          • 5: (Optional) Static LAG Configuration
          • 6: (Optional) Verify Link-Aggregation Failover

          • Lab 3.01 - Initial Setup
            • 1: Prepare the Edge Switch Uplink to the Aggregation Switch
            • 2: Configure a new Layer2 VLAN in the Edge Infrastructure
            • 3: Configure the Aggregation Switch with a new VLAN and SVI
          • Lab 3.02 - Edge Switch Management IP
            • 1: Configure In-band Management IP VLAN 3
            • 2: Practice on Edge Switch 2
          • Lab 3.03 - Static Routes
            • 1: Configure a Static Route between Aggregation and Core
            • 2: Route Aggregation with Static Routes
          • Lab 3.04 - Basic OSPF Configuration
            • 1: Configure Loopback Interfaces on Aggregation Switches
            • 2: Configure OSPF on Aggregation Switches
            • 3: Configure and Tune OSPF Links to Core Router
            • 4: Configure Passive Interface for Campus Access Subnets
            • 5: (Optional) Practice OSPF Configuration on sw-agg2
            • 6: (Optional) Verify Routing Failover with OSPF
            • 7: (Optional) Verify Equal Cost Multiple Paths Routing with OSPF
        Day 2 - Lecture Modules & Labs

          • Designated Bridge: The switch containing the Designated Port is referred to as the Designated Bridge for that segment.
            • useful troubleshooting commands:
              • show span mst 0
              • show span mst 1
              • show span mst 2
          • Lab 4.01 - Spanning-Tree
            • 1: Explore STP costs and path failover
            • 2: Test STP Path failover
            • 3: Configure Spanning-Tree Access Security
            • 4: Configure Loop Protection
          • Lab 4.02 - VRRP
            • 1: Reconfigure sw-agg1 with VRRP on SVI11
            • 2: Configure sw-agg2 with VRRP on SVI11
            • 3: Test the VRRP Failover
            • 4: (Optional) MAC address tracing of the aggregation switches
            • 5: (Optional) VRRP Preempt Delay
          • Lab 4.03 - Introduction to VSX
            • 1: Prepare the topology
            • 2: Review Global VSX configuration and status
            • 3: Configure access switch with LAG to VSX
            • 4: Review VSX Active Gateway configuration and status
            • 5: (Optional) Verify the VSX failover

          • Lab 5.01 - Stacking with VSX
            • 1: Prepare the topology
            • 2: Create a VSF Stack using Automatic Join of New Member
            • 3: Connect VSF Access Stack to VSX Aggregation with MCLAG
            • 4: Split-brain detection test
            • 5: Conductor failover Test
            • 6: Automatic Conductor VSF stack formation
            • 7:Cleanup configuration

        Day 3 - Lecture Modules & Labs

          • Lab 7.01 - Managing Aggregation Switches with Aruba Central
            • 7.1.1: Prepare the topology
            • 7.1.2: Essential Aruba Central configuration
            • 7.1.3: Provide Aggregation Switches with Static Cloud Connection
            • 7.1.4: Aggregation switches Template Configuration Group
          • Lab 7.02 - Deploying LACP based Link Aggregation
            • 7.2.1: Review Edge Switch Cloud Connection with ZTP
            • 7.2.2: Configure Access Switches with Central UI Group
            • 7.2.3: Configure Access Switches with Central UI Group MultiEdit
            • 7.2.4: Configure Access Switches with Central Template Group
        • M08: AP Onboarding, Device Profiles

          • Lab 8.01 - Onboarding APs
            • 8.1: Verify AP wired onboarding
            • 8.2: Prepare Aruba Central AP Group
            • 8.3: Move APs to campus-wifi-ui Group
            • 8.4: Configure the Site Floorplan with APs 

        Day 4 - Lecture Modules & Labs

          • Lab 9 - WLAN Fundamentals
            • 9.1: Review Radio Default Channel and Power
            • 9.2: Configuring Radio Profiles
            • 9.3: Configuring AirMatch
            • 9.4: Client Association, Live Events, and Location information 
            • 9.5: Configuring WLAN Zones
        • M10: Implementing Secure WLANs

          • Lab 10.01 - Implementing a Corporate WLAN
            • 10.1.1: Create a Corporate WPA2/3 Enterprise WLAN
            • 10.1.2: Verify Corporate Access with Wireless Client
            • 10.1.3: Connect to Corporate Network with Contractor User
          • Lab 10.02 - Implementing Access Control
            • 10.1.1: Explore the default SSID user role access
            • 10.1.2: Authentication based user roles
            • 10.1.3: User Role based VLAN assignment
            • 10.1.4: AppRF and Application Statistics

          • M11: Guest Access
            • Lab 11.1 - Implementing Guest Access
              • 11.1.1: Configure a Cloud Guest Splash Page
              • 11.1.2: Configure WLAN profile with Cloud Guest Splash page
              • 11.1.3: Test Cloud Guest access
            • Lab 11.2 - Guest Access with ClearPass Guest
              • 11.2.1: Verify a ClearPass Guest page
              • 11.2.2: Configure WLAN profile with ClearPass Guest Splash page
              • 11.2.3: Test ClearPass Guest access

            Day 5 - Lecture Modules & Labs

            • M12: WLAN Security
              • Lab 12 - WLAN Security Features
                • 12.1: Create PSK WLAN
                • 12.2: Test PSK Access with IoT air sensor
                • 12.3: MPSK with Differentiated Access Control
                • 12.4: Test MPSK Access
                • 12.5: Troubleshoot clients connecting to PSK

            • M13: Monitoring and Maintenance

              • Lab 13 - Secure Management Access
                • 13.1: Configuring Alerts
                • 13.2: Generating Reports in Aruba Central
                • 13.3: Firmware Compliance

              • Lab 14 - Troubleshooting Overview
                • 14.1: Collection Log Information for Senior Support or TAC
                • 14.2: Troubleshoot Switch to Aruba Central connection
                • 14.3: Site Level Troubleshooting

            Appendix

            • Acronyms or Key terms
              • ASIC: application specific integrated circuit
              • Designated Bridge: bridge with in ISC in the designated port role
                • a root bridge is a designated bridge as it has ports in DP role
                • however a designated bridge is not always a route bridge
                  • any non root bridge with port in DP role participates in forwarding, ergo it is a designated bridge
                • google: pccare.vn 's blog on spanning-tree-facts
              • TCAM: ternary content addressable memory
                • (logic system: true, false, other)
              • VRF: Virtual Routing and Forwarding Lite
            • Lab Access Errata
              • if you get this error message in the lab, click "home", "+" beside your pod/table, find the actual device you were using in the list, double click it.





















                    Neal Vadekar, SME, ACEX, ACSX, ACMX, ACDX, ACCP, ACNSP, ADCNS

                    Comments

                    Post a Comment

                    Popular posts from this blog

                    Designing HPE Aruba Data Center Solutions v.23.311

                      Welcome to this week's class (DDCS) navigate to   https://rubbernecks-arubanetworks.blogspot.com Be sure you have downloaded the course learner guide as per the instructions you received in an email from HPE last week.  Check your email history, spam folder, etc... for the keyword "OnSecure" if you cannot find the email.  You only have 10 days to print this learner guide (PDF or paper). Click   here for this week's lab access spreadsheet   ask me for the link password in this spreadsheet you will find the links for: Lab Scenario Guide Lab Activity Guide Lab Activity Worksheets (for lab 2, 5A, 8)      Class Preparation Notes Although there is a remote lab, you may not need to use it for this class, you can set up the required software on your own computer. You will need: IRIS : as a partner or employee you should already have this, if not: your company domain name should be whitelisted for IRIS this means you can go to www.intangi.com/register.php, register and login
                    Read more

                    Arubanetworks Webgate - Copy and Paste instructions

                    Copy/Paste Text from local to remote  Copy/Paste from local to remote  You need to copy the text between local and remote devices as follows: Copy the text from your local machine as usual Press Ctrl+Alt+Shift to get the menu (don't do this on the network diagram, only on telnet / RDP sessions) Paste the text in the box that shows on the menu (this copies the text to the remote server) Press Ctrl+Alt+Shift to close the menu (or do this after the next step) Right click on the device to paste in telnet or paste normally in the remote RDP session Copy/Paste from remote to local To copy to your local machine from the remote switch reverse this: Select the text like you would with Putty Press Ctrl+Alt+Shift to get the menu (don't do this on the network diagram, only on telnet / RDP sessions) Copy text from box on menu Press Ctrl+Alt+Shift to close the menu (or do this after the next step) Paste as usual on your local PC Copy/Paste an Archive of Files from remote to local Make a zip
                    Read more

                    Unofficial ACDX 6.4 Study Recommendations

                    This is not an official list, it is just a list of sources of information that I used to study in preparation for the ACDX 6.4 exam.  I did well on the exam, but there was more sources of information I used than just this, this is just want I happen to remember reviewing prior to the exam.  I hope this helps your study effort, feel free to let me know your take on the best study approach for this exam in the comment section below. The first place to start is to review the official exam datacard from HPE https://certification-learning.hpe.com/TR/datacard/Exam/HPE0-A118P There seems to be 2 datacards for this exam, so take a close look at this one as well https://certification-learning.hpe.com/TR/datacard/Certification/Aruba-ACDXV64R It is quite important you sign up for and do the online WBT course listed in this datacard, the Mobile First Network Design, it seems to be specifically designed to help you prepare for the ACDX 6.4 exam.  There are a few gems taught in this co
                    Read more