Cisco Systems OL-6217-01 manual Wds-apconfig#hostname hostname

Page 22

Cisco Structured Wireless-Aware Network (SWAN) Implementation Guide

Implementing the Cisco SWAN Framework

These are the basic configuration tasks:

Entering a host name for the access point

Defining SNMP communities

Defining Telnet or SSH parameters

Defining AAA parameters for infrastructure authentication

Defining AAA parameters for WLAN client authentication

Defining WLCCP credentials

Enabling WDS services

Defining the CiscoWorks WLSE

Follow these steps to complete the tasks:

Step 1 Log into the access point command-line interface and enter the configuration mode.

Step 2 Enter a host name for the access point:

wds-ap(config)#hostname <hostname>

Step 3 Enter the following commands to define the SNMP communities:

wds-ap(config)#snmp-server view iso iso included wds-ap(config)#snmp-server community <read-only community> view iso RO wds-ap(config)#snmp-server community <read-write community> view iso RW

Step 4 Enter the following to define Telnet or SSH users:

wds-ap(config)#username <username> password <password>

Step 5 Enter the following to enable SSH (optional step):

wds-ap(config)#ip domain-name <ip domain-name>

wds-ap(config)#crypto key generate rsa general-keys modulus <key size>

Step 6 Enter the following to turn off Telnet (optional step), define an access control list, and apply it to the Telnet lines. Obviously, several access control list definitions can accomplish this task, but the following is an example:

wds-ap(config)#access-list <access-list number> permit tcp any any neq telnet wds-ap(config)#line 0 16

wds-ap(config-line)#access-class <access-list number>

Step 7 Enter the following to define AAA parameters for infrastructure authentication:

wds-ap(config)# aaa new-model

wds-ap(config)#radius-server host <ip address> auth-port <auth-port> acct-port <acct-port> key <shared secret>

wds-ap(config)#aaa group server radius wlccp_infra

wds-ap(config-sg-radius)#server <ip address> auth-port <1812> acct-port <1813> wds-ap(config)#aaa authentication login infrastructure-authentication group radius wds-ap(config)# aaa authentication login client-authentication group radius

If using a local RADIUS server on an access point, the authentication port is always 1812, and the accounting port is always 1813.

Cisco Structured Wireless-Aware Network (SWAN) Implementation Guide

22

OL-6217-01

 

 

Page 21 Page 23
Image 22
Page 21 Page 23
Contents Corporate Headquarters Cisco Aironet 1400 Series Wireless Bridge Deployment Guide N T E N T S Contents Book Title Xxxxx-xx Audience Acroymns and Terms Cisco Swan Framework Overview Cisco Swan Layers Cisco Swan Logical View Shows the access point-based WDS solution Cisco Swan Framework Components WDS WlccpSoftware Components Hardware ComponentsImplementing the Cisco Swan Framework Common Tasks CiscoSecure ACS NAS Setup Adding Username and Password Credentials CiscoSecure ACS User Setup AAA-apconfig#radius-server local AAA-apconfig-radsrvuser username password passwordCiscoWorks Wlse Snmp Community Entry Screen CiscoWorks Wlse Telnet/SSH Credentials Entry Access Point-Based WDS Solution Configuration Configuring the WDS Access PointWds-apconfig#hostname hostname Wds-apconfig#username username password passwordWds-apconfig#wlccp wds priority priority number Configuring the Infrastructure Access PointWds-apconfig#wlccp wnm ip address wlse ip address Infra-apconfig#username username password password Managing the Access Points with the CiscoWorks WlseInfra-apconfig#hostname hostname Infra-apconfig-line#access-class access-list numberConfiguring the Catalyst 6500 Supervisor Switch-Based WDS Solution ConfigurationValidating the Configuration Wds-ap#show wlccp wds apConfiguring the WDS on the Wlsm Create the Vlan between the supervisor and WlsmWlsmconfig#snmp-server view iso iso included Wlsmconfig#hostname hostnameWlsmconfig# wlccp wnm ip address wlse ip address Configuring the Infrastructure Access PointsInfra-apconfig#wlccp ap wds ip address wlsm ip address Wlsm# show wlccp wds ap Validating the SetupWlsm# show wlccp wnm status Sup720# show mobility status Mobility apFast Secure Roaming with Cckm Infra-apconfig-if#encryption mode ciphers cipher-type When Using Multiple Encryption Types or VLANsInfra-apconfig#interface dot11Radio Infra-apconfig-if-ssid#authentication network-eap eap-groupConfiguring ACU to use Cckm Click Profile ManagementCisco Swan Radio Management Features Cisco Swan Framework Radio ManagementPreparing to Use Cisco Swan Radio Management Building Tool Pop-Up WindowCisco Swan Radio Management Features Page OL-6217-01
Top Page Image Contents