Cisco Systems OL-17037-01 manual

Page 3

Chapter 7 Controlling Lightweight Access Points

Access Point Communication Protocols

Note

Note

Note

Note

with one discovery type (CAPWAP or LWAPP) exceeds the maximum discovery count and the access point does not receive a discovery response, the discovery type changes to the other type. For example, if the access point does not discover the controller in LWAPP, it starts the discovery process in CAPWAP.

If an access point is in the UP state and its IP address changes, the access point tears down the existing CAPWAP tunnel and rejoins the controller. In previous software releases, the access point notifies the controller, and the session continues with the changed IP address without tearing down the session.

You must install software release 4.0.155.0 or later on the controller before connecting 1100 and 1300 series access points to the controller. The 1120 and 1310 access points were not supported prior to software release 4.0.155.0.

The Cisco controllers cannot edit or query any access point information using the CLI if the name of the access point contains a space.

Make sure that the controller is set to the current time. If the controller is set to a time that has already occurred, the access point might not join the controller because its certificate may not be valid for that time.

Access points must be discovered by a controller before they can become an active part of the network. The lightweight access points support these controller discovery processes:

Layer 3 CAPWAP or LWAPP discovery—Can occur on different subnets from the access point and uses IP addresses and UDP packets rather the MAC addresses used by Layer 2 discovery.

Over-the-air provisioning (OTAP)—This feature is supported by Cisco 4400 series controllers. If this feature is enabled on the controller (on the controller General page), all associated access points transmit wireless CAPWAP or LWAPP neighbor messages, and new access points receive the controller IP address from these messages. This feature is disabled by default and should remain disabled when all access points are installed.

Note You can find additional information about OTAP at this link: http://www.ciscosystems.com/en/US/products/ps6366/products_tech_note09186a008093d 74a.shtml

Locally stored controller IP address discovery—If the access point was previously associated to a controller, the IP addresses of the primary, secondary, and tertiary controllers are stored in the access point’s non-volatile memory. This process of storing controller IP addresses on an access point for later deployment is called priming the access point.

DHCP server discovery—This feature uses DHCP option 43 to provide controller IP addresses to the access points. Cisco switches support a DHCP server option that is typically used for this capability. For more information about DHCP option 43, see the “Using DHCP Option 43 and DHCP Option 60” section on page 7-24.

DNS discovery—The access point can discover controllers through your domain name server (DNS). For the access point to do so, you must configure your DNS to return controller IP addresses in response to CISCO-LWAPP-CONTROLLER.localdomain, where localdomain is the access point

Cisco Wireless LAN Controller Configuration Guide

 

OL-17037-01

7-3

 

 

 

Image 3
Contents Controlling Lightweight Access Points Access Point Communication Protocols Guidelines for Using CapwapController Discovery Process Page Verifying that Access Points Join the Controller Config network master-base enableConfig network master-base disable Configuring Global Credentials for Access Points Viewing Capwap MTU InformationDebugging Capwap Global Configuration All APs Details for Credentials Save config Show ap config general CiscoAPShow ap summary Lwapp ap dot1x username username password password Configuring Authentication for Access PointsController Using the GUI to Configure Authentication for Access PointsCisco Wireless LAN Controller Configuration Guide Config ap dot1xuser add username user password password all Using the CLI to Configure Authentication for Access PointsAP Dot1x User Mode field shows Customized Config ap dot1xuser disable all CiscoAPConfiguring the Switch for Authentication Embedded Access PointsIp dhcp pool poolname Dns-server ipaddress Default-router ipaddressAutonomous Access Points Converted to Lightweight Mode Using a Controller to Return to a Previous Release Reverting from Lightweight Mode to Autonomous ModeAuthorizing Access Points Authorizing Access Points Using SSCsAuthorizing Access Points Using MICs Using the GUI to Configure LSC Authorizing Access Points Using LSCsConfig certificate lsc other-params keysize Config certificate lsc enable disableConfig certificate lsc ca-server http//urlport/path Config certificate lsc ca-cert add deleteConfig certificate lsc ap-provision auth-list add APmacaddr Config certificate lsc ap-provision revert-cert retriesShow certificate lsc summary Show certificate lsc ap-provision Using the GUI to Authorize Access PointsShow auth-list Using the CLI to Authorize Access PointsConfig auth-list ap-policy mic ssc lsc enable disable Config auth-list add mic ssc lsc apmac apkeyTroubleshooting the Access Point Join Process Using Dhcp Option 43 and Dhcp OptionControlling Lightweight Access Points Show ap join stats summary all Configuring the Syslog Server for Access PointsViewing Access Point Join Information Show ap config globalJoined Debug ap enable disable command cmd CiscoAP Converted Access Points Send Radio Core Dumps to ControllerUsing the CLI to Retrieve Radio Core Dumps Using the GUI to Upload Radio Core DumpsShow ap crash-file Transfer upload start Using the CLI to Upload Radio Core DumpsUsing the GUI to Upload Access Point Core Dumps Uploading Memory Core Dumps from Converted Access PointsUsing the CLI to Upload Access Point Core Dumps Display of MAC Addresses for Converted Access PointsConfig ap reset-button enable disable ap-nameall Supporting Oversized Access Point ImagesWGB Example Cisco Workgroup BridgesGuidelines for Using WGBs Configure terminal Sample WGB Configuration Using the GUI to View the Status of Workgroup BridgesShow dot11 association 11 Clients Detail 12 WGB Wired Clients Debug dot11 mobile enable Debug dot11 state enable Using the CLI to View the Status of Workgroup BridgesUsing the CLI to Debug WGB Issues Debug dhcp message enable Debug dhcp packet enableConfiguring Backup Controllers 14 Global Configuration Using the GUI to Configure Backup Controllers15 All APs Details for High Availability Using the CLI to Configure Backup Controllers Config advanced timers auth-timeout interval Config advanced timers ap-discovery-timeout interval1300 Configuring Failover Priority for Access Points16 Global Configuration Enabled Using the CLI to View Failover Priority SettingsGuidelines for Configuring Multiple Country Codes Configuring Country CodesUsing the GUI to Configure Country Codes 19 All APs Details for Advanced Using the CLI to Configure Country Codes Show country supportedShow country Show country channels Config 802.11a enable network config 802.11b enable network Controlling Lightweight Access Points Show ap migrate Migrating Access Points to the -U Regulatory DomainConfig country J3 Guidelines for MigrationConfig ap migrate j52w52 all apname Dynamic Frequency Selection Using the W56 Band in JapanUsing the GUI to Optimize Rfid Tracking on Access Points Optimizing Rfid Tracking on Access Points20 802.11b/g/n Cisco APs Configure Using the CLI to Optimize Rfid Tracking on Access Points Config ap monitor-mode tracking-opt CiscoAPConfig 802.11b enable CiscoAP Show ap monitor-mode summary Configuring Probe Request ForwardingConfig advanced probe filter enable disable Config advanced probe limit numprobes intervalInventory 22 All APs Details for Inventory Performing a Link TestUsing the GUI to Perform a Link Test Link Test Using the CLI to Perform a Link Test Configuring Link Latency25 All APs Details for Advanced Using the GUI to Configure Link LatencyConfig ap link-latency enable disable CiscoAP all Using the CLI to Configure Link LatencyConfig ap link-latency reset CiscoAP Configuring Power over EthernetEPoE Power EPoE Mode 15.4 W Optimized 20 W Using the GUI to Configure Power over EthernetCisco Wireless LAN Controller Configuration Guide Using the CLI to Configure Power over Ethernet Config ap power injector enable CiscoAP all installedConfig ap power injector enable CiscoAP all override Viewing Clients Configuring Flashing LEDsUsing the GUI to View Clients Debug ap command led flash seconds CiscoAPControlling Lightweight Access Points Viewing Clients 28 Search Clients 29 Clients Detail AP MAC Using the CLI to View ClientsS69 OL-17037-01