- Community Home
- >
- Networking
- >
- Switching and Routing
- >
- Aruba & ProVision-based
- >
- Re: NPS with procurve 2920 switches - operator and...
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-18-2016 09:01 AM
02-18-2016 09:01 AM
We have had admin and operator access configured using NPS with Active Directory groups on the Procurve 2920 switches working.
The NPS policies were set for NAS Prompt for operator access and Administrator for admin access to the switches.
Since the most recent software upgrade to WB.16.01.0004 both NPS policies allow admin access to the switches. It no longer restricts the operator policy to operator access only. This now allows manager access to the switches.
I have been unable to locate any additional documentation or information in the techincal information on HP website. I have also opened a tech case with HP for this.
Are there any additional specific changes that now need to be made for the new software version that need to be made?
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-18-2016 01:39 PM
02-18-2016 01:39 PM
SolutionThe resolution was to enable login privilege-mode.
This allowed for operator access and manager access using sepearate NPS policies.
While this works for basic access for both It allows for manager logon enable access without the addtiional required enable authorization.
I would prefer that the manager access still require and additional en logon for the manager accounts.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-19-2016 03:47 PM
02-19-2016 03:47 PM
Re: NPS with procurve 2920 switches - operator and admin access issues
Hello. What attributes were you passing to the switch when authenticating for operator and manager?
Login privilege-mode should just allow "managers" to log directly into enable context, as you mentioned.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-14-2016 11:02 AM - edited 03-14-2016 11:06 AM
03-14-2016 11:02 AM - edited 03-14-2016 11:06 AM
Re: NPS with procurve 2920 switches - operator and admin access issues
Attributes are set as follows:
Operators is NAS Prompt
Managers is Administrative.
aaa authentication login privilege-mode - does only allow managers enable prompt access. I was looking to have this set up to require the username and password a second time to get to the enable prompt.
It will suffice as is. Thank you for the follow up.
On to the Next task - to get the Comware 5 switch set up for NPS access management.