Cisco Systems OL-7426-03 Integrated Security Solutions, Simple, Cost-Effective Solutions

marking them as Alert rogue access points (watch for and notify when active), or marking them as Contained rogue access points (have between one and four Cisco 1000 Series lightweight access points discourage rogue access point clients by sending the clients deauthenticate and disassociate messages whenever they associate with the rogue access point).

Integrated Security Solutions

•Cisco WLAN Solution Operating System Security is built around a robust 802.1X AAA (authori- zation, authentication and accounting) engine, which allows operators to rapidly configure and enforce a variety of security policies across the Cisco WLAN Solution.

•The Cisco Wireless LAN Controllers and Cisco 1000 Series Lightweight Access Points are equipped with system-wide authentication and authorization protocols across all ports and interfaces, maximizing system security.

•Operating System Security policies are assigned to individual WLANs, and Cisco 1000 Series Lightweight Access Points simultaneously broadcast all (up to 16) configured WLANs. This can eliminate the need for additional access points, which can increase interference and degrade system throughput.

•The Cisco Wireless LAN Controllers securely terminates IPSec VPN clients, which can reduce the load on centralized VPN concentrators.

•Operating System Security uses the Radio Resource Management (RRM) function to continually monitor the air space for interference and security breaches, and notify the operator when they are detected.

•Operating System Security works with industry-standard aaa (authorization, authentication and accounting) servers, making system integration simple and easy.

•The Operating System Security solution offers comprehensive Layer 2 and Layer 3 encryption algorithms which typically require a large amount of processing power. Rather than assigning the encryption tasks to yet another server, the Cisco Wireless LAN Controller can be equipped with a VPN/Enhanced Security Module that provides extra hardware required for the most demanding security configurations.

Simple, Cost-Effective Solutions

Because the Cisco WLAN Solution Radio Resource Management (RRM) function is enabled from the factory, the IT department does not need to create a detailed rollout plan to continually monitor access points, or to individually update access points, resulting in very low input required from the IT department or Wireless LAN manager. This means less money spent deploying, configuring, updating, and monitoring the Cisco WLAN Solution.