building an aruba proof of concept lab javier urtubia
TRANSCRIPT
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 1 #airheadsconf #airheadsconf
Presented by Aruba Networks
March 2013
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 2 #airheadsconf #airheadsconf
Building an Aruba Proof of Concept Lab For Partner Engineers
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 3 #airheadsconf
Javier Urtubia!SE Enablement Lab [email protected]!
Registration for Partner Lab Access!
http://register.arubademo.net!
Introductions
Please connect to “ ” for Internet access.
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 4 #airheadsconf
What is the SE Enablement Lab?
• What is the history of the SE Enablement Lab? • What is the purpose of the SE Enablement Lab? • Who can access the lab?
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 5 #airheadsconf
History
• SE Home Labs – Equipment supplied by Corporate – SE self maintained – AOS centric
– Issues addressed by email distribution list – SE used personal labs for demos – Connectivity not always reliable
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 6 #airheadsconf
• SE Labs – Direct corporate networks access – Maintained as best effort – AOS centric
History
– Worked directly with Q&A for latest AOS builds – Issue handled using email dl – Internet access through IT
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 7 #airheadsconf
• Partner Demo Labs – No corporate networks access – Part time dedicated support team – Part of Business Development
History
– AOS centric with partner technology integration – Support handled through email dl – Dedicated DS3 shared with the EBC.
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 8 #airheadsconf
• SE Enablement Lab – Partial access to corporate networks – Dedicated support team – Aruba technologies centric
History
– Works directly with PLM, TME and PoC for access to the most current Aruba Technologies
– Dedicated DS3 shared with the EBC – Own domain name
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 9 #airheadsconf
SE Enablement Lab Infrastructure
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 10 #airheadsconf
Capabilities
1. Microsoft Active Directory • DHCP • DNS (internal & External) • NTP • Radius
• Certificate Services • TFTP • FTP • Syslog
2. Clearpass • OnGuard • QuickConnect • AirGroup • Guest Provisioning • Self Provisioning • Captive portal • Advertising Services • BYOD • Radius • Certificate Services
3. iAP • iAP VPN • iAP to Rap • Activate
4. PBX • VOIP • Video Conference
5. MS Lync • Unified Communications • Video Conference • Chat
6. Airwave • Infrastructure Monitoring • Reporting Services • Heat Maps • Inventory Tracking • Historical usage data
7. AOS • Dashboard • Spectrum Analysis • Policy Enforcement Firewall • Application Awareness
8. S3500 • L2 & L3 switching • POE • Port usage monitoring
All services are extendable outside of the Labs via firewall port forwarding, RAP, VIA or VPN.
The Latest list of Demos can always be found on https://afp.arubanetworks.com
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 11 #airheadsconf #airheadsconf
Online Resources
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 12 #airheadsconf
Controller
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 13 #airheadsconf
Dashboards
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 14 #airheadsconf
Application Awareness
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 15 #airheadsconf
Spectrum
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 16 #airheadsconf
Clearpass
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 17 #airheadsconf
Dashboards
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 18 #airheadsconf
Mobility Access Switch
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 19 #airheadsconf
AirWave
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 20 #airheadsconf #airheadsconf
Rap Only Resouces
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 21 #airheadsconf
Captive Portal
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 22 #airheadsconf
Onboard
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 23 #airheadsconf
PBX
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 24 #airheadsconf
Microsoft Lync
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 25 #airheadsconf #airheadsconf
Deploying Your Own Lab
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 26 #airheadsconf
Who Has Deployed a Lab
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 27 #airheadsconf
Deploying Your Own Lab
What kind of lab should you build?
What will you need? Hardware Software
What help is available?
How long will it take?
Are there any gotchas?
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 28 #airheadsconf
Hardware Requirements
What Aruba hardware is recommended • 7210 Controller • S3500 MAS • AP135 • iAP135 • Rap 3
Are there Alternatives? • 3400 Controller • S2400 MAS • AP105 • iAP105 • No Alt for Rap3
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 29 #airheadsconf
Hardware Requirements
Other Hardware?
• Rackmount server * • 2 Xeon Processors • 32GB Ram * • 15K RPM HD *
• Terminal server * • PDU • UPS • Internet Router / Modem
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 30 #airheadsconf
Suggested Software
Aruba Software • AOS 6.2 or higher • CPPM 6.0.2 or higher • Airwave 7.6 or higher
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 31 #airheadsconf
Radius-Based Whitelist
ClearPass Policy Mgr
Activate http://activate.arubanetworks.com
Controller sends auth’n requests and CPPM provides auth’z info.
Controller
AP (with Instant)
Legacy RAP
AP (with Instant)
Controller
Airwave AP (with Instant) provisioning will check Activate at boot.
Mr. IT
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 32 #airheadsconf
Suggested Software
Other Software • Windows Server 2008 or higher
• Kiwi Syslog • SolarWinds SCP Server • SolarWinds TFTP Server • VMware vSphere • VMware vCenter Converter • WinRaR • TextPad • Putty
• Microsoft Lync 2013 or higher * • FreePBX • VMWare ESXi 5.1
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 33 #airheadsconf
Financial Resources
• Authorized Partners Get a 65% Discount • $25K Annual limit
• Clearpass gives a 1 yr full license with training • Partners get 2 free training vouchers per yr.
Just an Arm, you can keep the leg!
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 34 #airheadsconf
• Request access @ https://activate.arubanetworks.com
Using Activate
• View your internal inventory • Great demo with Airwave • View your customers inventory *
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 35 #airheadsconf
Caveats
• Certificates
• iAP with Activate • NAT/Proxy ARP • What if you can’t deploy a PBX or
a Lync Server? • Can’t install Airwave? • Can’t Install CPPM?
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 36 #airheadsconf
Assistance
• Documentation and Answers are available on: https://afp.arubanetworks.com
• Join a discussion forum: https://community.arubanetworks.com
• Lab issue you can contact us at: [email protected]
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 37 #airheadsconf #airheadsconf
Getting Connected
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 38 #airheadsconf
Lab Access
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 39 #airheadsconf
Lab Access
• The Remote Access Point (RAP) you provide, enables you to access the SE Enablement Lab hosted at Aruba’s headquarters in Sunnyvale, California.
• Your RAP connects to the SE Enablement Lab via an Aruba controller. Once your request is received and your RAP has been whitelisted on a controller to allow for a secure connection.
• Details on what demos are currently available are maintained at https:/afp.arubanetworks.com
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 40 #airheadsconf
iAP
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 41 #airheadsconf
Q&A
CONFIDENTIAL © Copyright 2013. Aruba Networks, Inc. All rights reserved 42 #airheadsconf #airheadsconf 42