Aruba Networks, ClearPass, Configuration Example, Security
ClearPass – custom MPSK
Multiple PreShared Key (MPSK) is the ideal replace for the old-fashioned static PSK environments. MPSK provides the flexibility and scalability which traditional PSK networks are lacking. MPSK provides a per device pre shared key. Aruba ClearPass is the authentication server to verify the pre shared key entered on a device. To create a pre shared key, you have to register a device in the Guest Device Repository in ClearPass.
During the registration and afterwards when editing the device, you don’t have the option to manually generate a MPSK. However there is an option to manually set the MPSK by importing a device and setting the MPSK in the Excel / CSV file. You can achieve this by adding to extra columns to the CSV file, called mpsk and mpsk_enable.
mpsk_enable should have a fixed value of 1 and mpsk is the actual key you like to use for the device.
This way you still have the flexibility to add / import multiple devices at once and generate the MPSK manually per device of use the same MPSK for multiple devices, like Sonos or Ring endpoints.
René Jorissen
Latest posts by René Jorissen (see all)
- MacOS Big Sur and SSLKEYFILELOG - November 23, 2021
- ClearPass, Azure AD, SSO and Object ID - August 12, 2021
- ClearPass – custom MPSK - July 20, 2021