Cisco Systems OL-11567-02 manual Client Channel Changes, Exclusion List Blacklist Client Feature

Page 11

Important Notes

The 7920 phones and the controllers do not currently use compatible fast roaming mechanisms. The phone uses CCKM while the controllers use proactive key caching (PKC). To minimize roaming latency, static WEP is the recommended security mechanism.

When configuring WEP, there is a difference in nomenclature for the controller and the 7920 phone. Configure the controller for 104 bits when using 128-bit WEP for the 7920.

Client Channel Changes

Cisco access points are known to go off channel for up to 30 seconds while identifying rogue access point threats. This activity can cause occasional dropped client connections.

Exclusion List (Blacklist) Client Feature

If a client is not able to connect to an access point and the security policy for the WLAN and/or client is correct, the client has probably been disabled. In the controller GUI, you can view the client’s status on the Monitor > Summary page under Client Summary. If the client is disabled, click Remove to clear the disabled state for that client. The client automatically comes back and, if necessary, reattempts authentication.

Automatic disabling happens as a result of too many failed authentications. Clients disabled due to failed authorization do not appear on the permanent disable display. This display is only for those MACs that are set as permanently disabled by the administrator.

Maximum MAC Filter Entries

The controller database can contain up to 2048 MAC filter entries for local netusers. The default value is 512. To support up to 2048 entries, you must enter this command in the controller CLI:

config database size MAC_filter_entry

where MAC_filter_entry is a value from 512 to 2048.

Cisco Aironet 1030 Remote Edge Lightweight Access Points and WPA2-PSK

Cisco Aironet 1030 Remote Edge Lightweight Access Points do not support WPA2-PSK in REAP standalone mode.

RADIUS Servers

This product has been tested with the following RADIUS servers:

CiscoSecure ACS v3.2

Funk Odyssey Client v1.1 and 2.0

Funk Steel-Belted RADIUS release 4.71.739 and 5.03 Enterprise Edition

Microsoft Internet Authentication Service (IAS) release 5.2.3790.1830 on Windows 2003 server

Release Notes for Cisco Wireless LAN Controllers and Lightweight Access Points for Release 3.2.171.6

 

OL-11567-02

11

 

 

 

Page 10 Page 12
Image 11
Page 10 Page 12
Contents Contents Finding the Software Release Cisco Unified Wireless Network Solution ComponentsController Requirements Software Release InformationUpgrading to a New Software Release Installation NotesFCC Safety Compliance Statement Safety InformationThey may save your life Installation InstructionsImportant Notes Service Modules Supported in the Catalyst 6500 Series SwitchConfig snmp community ipaddr ipaddress ipmask name Changing the Default Values of Snmp Community StringsConfig snmp community delete name Config snmp community create nameConfig snmp v3user delete username Changing the Default Values for Snmp v3 UsersConfig snmp community accessmode ro rw name Config snmp community mode enable disable nameInter-Subnet Roaming Voice Wlan ConfigurationOperating Mesh Networks Through Switches and Routers FipsRadius Servers and the Management Vlan Cisco 7920 Wireless IP Phone SupportSave config Heavily Loaded Controller CPUMaximum MAC Filter Entries Exclusion List Blacklist Client FeatureConfig database size MACfilterentry Client Channel ChangesRldp Enable/Disable 802.1x and Microsoft Wireless Configuration ManagerUsing the Backup Image Home Page Retains Web Auth Login with IEApple iBook Features Not Supported on 2000 Series ControllersRunning a 3504 Image on a 2000 Series Controller Upgrading External Web AuthenticationConfig custom-web ext-webserver add index IP-address Image Not Supported for 3504 ControllersForvar i=0ipairs.lengthi++ Resolved Caveats in Software Release CaveatsCaveats Caveats Open Caveats Caveats Caveats Caveats Caveats Caveats Caveats If You Need More Information TroubleshootingDocumentation Updates Related DocumentationProduct Documentation DVD Ordering Documentation Obtaining DocumentationDocumentation Feedback Cisco.comCisco Product Security Overview Reporting Security Problems in Cisco ProductsCisco Technical Support & Documentation Website Product Alerts and Field NoticesObtaining Technical Assistance Definitions of Service Request Severity Submitting a Service RequestObtaining Additional Publications and Information Obtaining Additional Publications and Information
Top Page Image Contents