Chapter 2 Installing the Access Point

Controller Discovery Process for Lightweight Access Points

Controller Discovery Process for Lightweight Access Points

The lightweight access point supports these controller discovery processes:

DHCP server discovery—Uses DHCP Option 43 to provide controller IP addresses to the access points. Cisco switches support a DHCP server option. For additional information, refer to the “Configuring DHCP Option 43 for Lightweight Access Points” section on page F-1.

DNS server discovery—The access point uses the name CISCO-LWAPP-CONTROLLER.<local domain> to discover the controller IP addresses from a DNS server. Where <local domain> is the access point domain name.

Locally stored controller IP addresses—If the access point was previously associated to a controller, the IP addresses of the primary, secondary, and tertiary controllers are stored in the access point non-volatile memory. The process of storing controller IP addresses in access points for later deployment is called priming the access point. For additional information, refer to the “Priming Lightweight Access Points Prior to Deployment” section on page E-1.

For lightweight access points, Cisco recommends that you configure a DHCP server with Option 43 to provide the controller IP addresses to your access points. Cisco switches provide a DHCP server option that is typically used for this purpose.

Deploying the Access Points on the Wireless Network

Prior to beginning the actual access point deployment, perform these tasks:

Ensure that a site survey has been preformed.

Ensure that your network infrastructure devices are operational and properly configured.

For lightweight access points, perform these tasks:

Ensure that your controllers are connected to switch trunk ports.

Ensure that your switch is configured with untagged access ports for connecting your access points.

Ensure that a DHCP server with Option 43 configured is reachable by your access points. To deploy your access points, follow these steps:

Step 1 Obtain the access point location map created during your building site survey.

Step 2 Review the access point locations and identify the specific mounting methods required for each access point location.

Step 3 For each access point perform these steps:

a.For lightweight access points, record the access point MAC address on the access point location map. When you have completed the access point deployment, return the access point MAC addresses and the access point locations on the access point location maps or floor plans to your network planner or manager. The network operators can use the MAC address and location information to create maps for precise wireless system management.

Cisco Aironet 1100 Series Access Point Hardware Installation Guide

 

OL-4309-07

2-5

 

 

 

Page 30 Page 32
Page 31
Image 31
Cisco Systems CSACS1121K9 manual Deploying the Access Points on the Wireless Network
Page 30 Page 32

CSACS1121K9 specifications

Cisco Systems CSACS1121K9 is a part of Cisco's comprehensive suite of security solutions tailored for identity and access management. This device, recognized for its reliability and functionality, plays a crucial role in ensuring that organizations can efficiently manage user access across their networks.

One of the main features of the CSACS1121K9 is its centralized user authentication capabilities. This device simplifies the process of validating user identities, allowing administrators to manage credentials for a variety of access methods, including web-based authentication, RADIUS, and TACACS+. This flexibility plays a significant role in diverse environments where different protocols may be required for various devices or applications.

The CSACS1121K9 is built on the robust Cisco Secure Access Control Server (ACS) platform. This platform supports a wide range of security policies, making it versatile enough for different organizational needs. With its capability to integrate seamlessly with other Cisco solutions and third-party platforms, the device enhances the overall security posture of an organization.

In terms of scalability, the CSACS1121K9 can support a substantial number of users and devices. This scalability ensures that as organizations grow, their access management system can scale proportionately without performance degradation. The ability to handle thousands of simultaneous authentication requests makes it suitable for both small companies and large enterprises.

Another significant characteristic of the CSACS1121K9 is its support for advanced visibility and reporting. Administrators can track authentication attempts, policy enforcement, and other critical events in real time. This level of monitoring is essential for compliance audits and helps organizations quickly react to potential security threats.

Moreover, the CSACS1121K9 includes capabilities for implementing role-based access control (RBAC). This feature allows organizations to define specific access rights based on user roles, which enhances security while facilitating efficient operations.

In conclusion, the Cisco Systems CSACS1121K9 is a powerful tool for organizations seeking to enhance their identity and access management frameworks. With its centralized user authentication, scalability, advanced reporting capabilities, and support for RBAC, it provides a robust solution that can adapt to the evolving security demands of modern networks. Whether deployed in a small business environment or within large enterprises, the CSACS1121K9 stands out for its comprehensive feature set and ability to integrate into existing security infrastructures.
Top Page Image Contents