[APSC Training #4] Aruba Central Device Onboarding

The first step to learning Aruba Central is to add your devices to the cloud (Onboarding).
There are four ways to add network devices to the cloud.

1. The simplest and easiest way among them is Zero Touch Provisioningis to install and onboard the device through .
2. All network devices have a cloud activation key (Cloud Activation Key) is provided, and you can connect to Central through this key.
3. Or, install the device in Central How to add manuallyThere is also.
4. Finally, on your smartphone Download the Aruba Mobile AppYou can also use the zero touch option.
   Simply take a photo with this app and Central will automatically register and activate the device using its serial number and MAC address.

Aruba Central and Activate communicate over HTTPS (TCP 443) by default.
The URLs and ports required for network equipment and administrators (operators) to communicate with Central are as follows:.

▶ Domain names and ports to allow (Click to view content)

• For accessing the Aruba Central portal: Domain Names for Aruba Central Portal Access
• Communication between Aruba Central and network devices: Domain Names for Device Communication with Aruba Central
• For communication between Aruba Activate and network devices: Domain Names for Device Communication with Aruba Activate
• For Cloud Guest Services: Cloud Guest Server Domains for Guest Access Service
• For OpenFlow: Domain Names for OpenFlow
• For SSH console access: Domain Names for RCS
• Other: Other Domain Names

Aruba Activate

Before beginning the Zero Touch Provisioning (ZTP) process, it's important to understand Aruba Activate, a core component of Aruba device provisioning. Aruba Activate is a cloud-based service designed to help customers efficiently manage their device inventory and facilitate Aruba device provisioning.

Aruba Activate provides four main services:

• Inventory management for all Aruba networking devices
• Zero Touch Provisioning (ZTP) system for all Aruba networking devices
• Firmware Repository for Aruba Networking Devices
• Device ownership management for all Aruba networking devices: shipping records, point-of-sale records, and manufacturing records for each device.

New Customer Onboarding Example

Let's look at the following diagram to see how a real-world new customer is onboarded to Aruba Central.

1. First, new customers MyCorp.incRequest to purchase 100 devices (wireless APs) from HPE Aruba.
2. HPE Aruba provides 100 wireless APs and a key for Aruba Central. MyCorp.incand update PO information including customer name, Key X, AP 100, etc. to Activate.
3. HPE Aruba uses Activate to automatically provision RAPs, IAPs, or gateways and point them to Central.
4. MyCorp.incIT staff registers with Aruba Central using their company email.
   Then, add the Central Subscription Key that HPE Aruba sent you with your purchase confirmation.
5. Central transmits customer information through Activate.
6. Activate verifies the customer's information and informs Central of the 100 APs belonging to that account.
   Then the 100 IAPs will now appear in your device list in the Central inventory.

Zero Touch Provisioning (ZTP)

The example in the following figure focuses on a scenario connecting to Aruba Central via ZTP.

ZTP allows for quick and clean network deployments, eliminating the need for device pre-configuration or staging.
New devices such as UAPs, switches, and gateways that have Internet access communicate with Aruba Activate by default, which can push provisioning settings to the devices.

By default, HPE Aruba access points (APs) are offered as Unified Access Points (UAPs). This means that the same AP can be deployed in a variety of ways, including as an IAP, a Campus AP (AOS 8), a RAP (AOS 8), and an AOS 10 AP, depending on the firmware and configuration loaded on the AP.

AOS 10 AP

UAPs assigned to an AOS 10 group with a firmware policy will automatically download the AOS 10 firmware and reboot after communicating with Aruba Central. After the upgrade is complete, the APs will communicate with Aruba Central again to download the AP configuration.

IAP

When a UAP is configured to become an IAP, it automatically converts to an IAP and has a full configuration. All UAPs in the cluster are converted to IAPs, and a virtual controller (VC)* is elected. Setting up an IAP cluster requires no local expertise.

VC is the primary communication point with Central and receives configuration from Aruba Central.
All IAPs in a cluster will only communicate with the VC (or virtual controller) IAP that has been elected as the leader of the cluster.

Switches and Gateways

Factory-reset HPE Aruba switches and gateways also work the same way.

After the device boots and obtains an IP address, the switch attempts to communicate with Aruba Activate.
If successful, Activate will connect the switch to Aruba Central to download its configuration.

HPE GreenLake Cloud Platform – Device Inventory

To manage your device inventory, HPE GreenLake PortalIn the top right menu Manage DevicesSelect .

The Device Management section of HPE GreenLake provides information about all devices in your account, including how to view, manage, and onboard them.
If the device you purchased does not appear on the screen, you can add it manually.

You can see an overview of your device as shown in the red box on the screen.

This shows the number of devices that require an App assignment or subscription, and the number of devices that already have an App assignment or subscription.
You can now see the total number of devices in your HPE GreenLake account, as well as in Aruba Central.

To filter the device list, select one of the tiles (e.g., "Devices requiring assignment"). The device list will automatically filter to display only unassigned devices.

Adding a device manually

You can also manually add a device by selecting Add Device on the Device Management page.

When you click the Add Device button, a pop-up screen will appear.
There, select Network Device as the Device Type and click Next.

CSV file or Serial Number & MAC Address Select one and click Next.

If you select CSV file, you can add multiple devices at once by uploading a CSV file containing the device information you want to add.
Click Download Sample Files to download, then enter the required information.

If you select "Serial Number & MAC Address," enter the serial number and MAC address of the device you want to add. This information can be found on the device's GUI page or on the device's label.

reference: If the device is already managed by another Central account, the registration operation will fail.

Adding a Device with a Cloud Activation Key

Another way to add devices to Aruba Central is to leverage a Cloud Activation Key.

If you click Add Device in the same way as when adding manually, there will be an item called Cloud Activation & MAC Address.
Click on that item, enter the Cloud Activation Key and MAC address of the device you want to add, and click Next.

Note: Currently, AOS-CX switches and AOS 10 APs do not support Cloud Activation.

Added IAP (AOS 8)

Add AOS-S switch

Add a gateway

Adding devices with Install Manager (Aruba Installer App)

Aruba Central Install Manager helps simplify and automate site installation and device deployment.

Site installation and device deployment require a lot of coordination between IT administrators and installers.
Especially when there are multiple sites to deploy to, businesses may need more time and manual effort to coordinate site installations.

Aruba Installation Management Services simplify and automate site deployments, enabling IT administrators to easily manage site installations.

To access the Installer Web Service, log in to the Central UI and select Organization under Maintenance on the right.
The Install Manager Service is divided into two categories:
– Site installation in progress
– Approved installer

The Installer Manager service is a web application for managing IT workers who install physical hardware.
Administrators can use Central to create installer profiles, assign site deployments to installers, and monitor site deployment status from remote locations.

The Aruba Installer Mobile App is for installers who deploy devices on site.
The mobile app allows installers to scan devices and connect them to the network for provisioning.

Installers will need a smart device with internet access and a camera to onboard the device.
The worker uses the app to scan the device's serial number and complete the installation.

The Aruba Installer Mobile App is Apple® App Store 및 Google Play StoreYou can download it from .

IT workers must download the mobile app and register as an installer before they can install the hardware.
Administrators can check the installer registration status from the Installer Dashboard in Aruba Central.

To create an installer, enter the worker's name and phone number. Then, specify the period for which the installer's profile will be valid.
The technician will automatically log out of the Aruba Installer app on the specified date. Select the site you want to assign to the installer from the Site to Manage dropdown.

The installer's dashboard displays the following status indicators:

• Invited: An installer is added to Central and an SMS notification is sent to the installer.
• Registered: Installers register using the mobile app
• Verified: The installer accepts the invitation and successfully completes the Installer app registration.

---

이렇게 클라우드에 네트워크 장치를 추가하기 위한 4가지 방법을 알아보았습니다.
이제 네트워크 장치를 Aruba Central에 추가했으니 그것을 어떻게 할당하고 라이센스 관리는 어떻게 하는지 알아보도록 하겠습니다.