HM6 vs. HM NG CWP UPA

  • 1
  • Question
  • Updated 2 years ago
I'm hoping someone can help me understand some differences I'm running into when it comes to the vanilla CWP when I have an AP running over HM NG vs. HM6.  The CWP page itself is different looking, but when it's on the NG platform, I have to open up a RADSEC TLS port in my firewall to get past the page.  Do I have something misconfigured?  Is this working as intended?  Is so, is there a reason that the CWP page now would rely on an outside source to be available?

Some of the commands I dug up that are on the AP when in NG are below:

aaa radius-server name idmAuthServer server cloud-va-ag.aerohive.com tls aaa radius-server proxy radsec realm DEFAULT primary idmAuthServer
aaa radius-server proxy radsec enable
designated-server idm-proxy announce

These commands do not show up in the running config when I move this AP over to the legacy HM platform with a "plain Jane" CWP page setup.
Photo of Brian Powers

Brian Powers, Champ

  • 396 Posts
  • 92 Reply Likes

Posted 2 years ago

  • 1
Photo of Nick Lowe

Nick Lowe, Official Rep

  • 2491 Posts
  • 451 Reply Likes
Hi Brian,

This is because IDM is being used for the CWP here when configured via HM-NG and is not when configured via HM6.

Regards,

Nick
Photo of Brian Powers

Brian Powers, Champ

  • 396 Posts
  • 92 Reply Likes
IDM = ID Manager?  Why though?  What if I did not want any external dependancies?