Chapter 7 Controlling Lightweight Access Points
Configuring Authentication for Access Points
f.Click Apply to commit your changes.
g.Click Save Configuration to save your changes.
Note If you ever want to force this access point to use the controller’s global authentication settings, simply uncheck the
Using the CLI to Configure Authentication for Access Points
Using the controller CLI, follow these steps to configure authentication for access points that join the controller.
Step 1 To configure the global authentication username and password for all access points currently joined to the controller as well as any access points that join the controller in the future, enter this command:
config ap dot1xuser add username user password password all
Note You must enter a strong password for the password parameter. Strong passwords have the following characteristics:
-They are at least eight characters long.
-They contain a combination of upper- and lowercase letters, numbers, and symbols.
-They are not a word in any language.
Step 2 If desired, you can choose to override the global authentication settings and assign a unique username and password to a specific access point. To do so, enter this command:
config ap dot1xuser add username user password password Cisco_AP
Note You must enter a strong password for the password parameter. See the note in Step 1 for the characteristics of strong passwords.
The authentication settings that you enter in this command are retained across controller and access point reboots and whenever the access point joins a new controller.
Note If you ever want to force this access point to use the controller’s global authentication settings, enter this command: config ap dot1xuser delete Cisco_AP. The following message appears after you execute this command: “AP reverted to global username configuration.”
Step 3 To save your changes, enter this command:
save config
| Cisco Wireless LAN Controller Configuration Guide |