Skip to main content

Using Interface Persona (Template)

Description

Starting in Aruba OS CX 10.10 a new feature called interface persona was introduced. This feature allows you to build interface templates and attach or copy a interfaces to those personas (templates). This is great for configuring multiple interfaces with the same configuration.

There are a couple of things to note, copying a interface persona will copy the config from the persona into the interface and nothing more. Attaching a interface to a persona will link the configuration to the persona, if you make a change to the persona it will also change all of the interfaces that are attached to the persona. You will see how to attach a interface to a persona in the config example below.

Defining a interface persona

In this example I am setting up a dot1x persona (template) that I want to apply to several interfaces.

interface persona dot1x-auth
    no shutdown
    mtu 9198
    no routing
    vlan access 1
    qos trust dscp
    loop-protect action tx-rx-disable
    aaa authentication port-access client-limit 10
    aaa authentication port-access dot1x authenticator
        eapol-timeout 10
        max-eapol-requests 1
        max-retries 1
        enable
    aaa authentication port-access mac-auth
        enable

Attaching a interface to a persona

This is an example of a default interface before I attach it to a persona

show running-config interface 1/1/10
interface 1/1/10
    no shutdown
    no routing
    vlan access 1
    exit

Now I will attach the interface to a persona

(config)# interface 1/1/10
CX6300-Core(config-if)# persona custom dot1x-auth attach

After the interface has been attached to the persona you can see that the interface is linked to the configuration in the persona

# show running-config interface 1/1/10
interface 1/1/10
    no shutdown
    persona custom dot1x-auth attach
    mtu 9198
    no routing
    vlan access 1
    qos trust dscp
    aaa authentication port-access client-limit 10
    aaa authentication port-access dot1x authenticator
        eapol-timeout 10
        max-eapol-requests 1
        max-retries 1
        enable
    aaa authentication port-access mac-auth
        enable
    loop-protect action tx-rx-disable
    exit

Back to top