Radius Based Management Access Parameters, 188 | Proxim AP-700

Command Line Interface (CLI)					AP-700 User Guide
Parameter Tables

Serial Port Parameters

	Name	Type	Value	Access	CLI Parameter
	Serial	Group	N/A	R	serial
	Baud Rate	Integer	2400, 4800,9600	RW	serbaudrate
			(default), 19200, 38400,
			57600
	Data Bits	Integer	8	R	serdatabits
	Parity	Integer	none	R	serparity
	Stop Bits	Integer	1	R	serstopbits
	Flow Control	Value	none (default)	RW	serflowctrl
			xonxoff

RADIUS Based Management Access Parameters

The RADIUS Based Management Access parameters allow you to enable HTTP or Telnet Radius Management Access, enable or disable local user access, and configure the local user password.

The default local user ID is root and the default local user password is public. “Root” cannot be configured as a valid user for RADIUS based management access when local user access is enabled.

	Name	Type	Value	Access	CLI Parameter
	Radius Local User Status	Integer	enable	RW	radlocaluserstatus
			disable
	Radius Local User	DisplayString	User Defined	RW	radlocaluserpasswd
	Password
	HTTP Radius	Integer	enable	RW	httpradiusmgmtaccess
	Management Access		disable
	Telnet Radius	Integer	enable	RW	telradiusmgmtaccess
	Management Access		disable
SSH Parameters

The following commands enable or disable SSH and set the SSH host key.

Name	Type	Value	Access	CLI Parameter
SSH Status	Integer	enable	RW	sshstatus
		disable
SSH Public Host Key	DisplayString	AP Generated	RW	sshkeyfprint
Fingerprint
SSH Host Key Status	Integer	create	RW	sshkeystatus
		delete

The AP SSH feature, open-SSH, confirms to the SSH protocol, and supports SSH version 2. The following SSH clients have been verified to interoperate with the AP’s server. The following table lists the clients, version number, and the website of the client.

Clients	Version	Website
OpenSSH	V3.4-2	http://www.openssh.com
Putty	Rel 0.53b	http://www.chiark.greenend.org.uk
Zoc	5.00	http://www.emtec.com
Axessh	V2.5	http://www.labf.com

For key generation, only the OpenSSH client has been verified.

188

Image 188

Proxim AP-700 Serial Port Parameters Name Type Value Access CLI Parameter, Radius Based Management Access Parameters, 188

Contents

ORiNOCO AP-700 Access Point User Guide Copyright TrademarksOpenSSL License Note AP-700 User Guide Contents Contents AP-700 User Guide Management Monitoring CommandsTroubleshooting Command Line Interface CLI General Notes Ascii Character Chart C Specifications Statement of WarrantyTechnical Support Regulatory Compliance AP-700 User Guide Document Conventions Introduction to Wireless NetworkingIntroduction Introduction AP-700 User Guide Ieee 802.11 SpecificationsGuidelines for Roaming HTTP/HTTPS Interface Command Line InterfaceManagement and Monitoring Capabilities SNMPv3 Secure Management Snmp ManagementSSH Secure Shell Management Page Overview Installation and InitializationAP-700 Hardware Description External Antennas Installation and Initialization AP-700 User GuideAntennas LED Indicators Active Ethernet Prerequisites Installation and Initialization AP-700 User Guide Product Package System Requirements Cabling the AP-700 Hardware InstallationRequired Materials Mounting the AP-700 to a Ceiling Installing the Security CoverMounting the AP-700 Installing External Antennas AP-700 Mounting Plate Mounting the AP-700 to a Wall Installing the AP in a Plenum Opening the Antenna Compartment ScanTool Instructions Using ScanToolInitialization Scan List Click LAN Settings Enter Network Password screen appearsLogging Select Tools Internet Options Using the Setup Wizard 11 System Status Screen 12 Setup Wizard Setup Wizard Instructions Installing the Software Install Software with Http Interface Click Commands Update AP via Http Click Commands Reboot Install Software with Tftp Server Install Updates from your Tftp Server using the CLI Related Topics System Status System Status Screen Advanced Configuration Advanced Configuration AP-700 User Guide Configure Main Screen System Dynamic DNS SupportPage IP Configuration Network Advanced Dhcp ServerDNS Client Comment optional Advanced Configuration AP-700 User Guide NetworkStart IP Address End IP Address Dhcp Relay Agent Dhcp Relay Agent Dhcp Server IP Address Table Link Integrity Target IP Address Comment optional Link Integrity Configuration Screen Sntp Simple Network Time Protocol Sntp Configuration Screen Advanced Configuration AP-700 User Guide Network Operational Mode Interfaces Advanced Configuration AP-700 User Guide Interfaces Super Mode and Turbo ModeConfiguring 802.11d Support Ieee 802.11d Support for Additional Regulatory Domains TX Power Control/Transmit Power Level Configuring TX Power Control Wireless 802.11a/b/g Radio 10 Wireless InterfacePage Dynamic Frequency Selection/Radar Detection DFS/RD Affected Countries Wireless Service Status RTS/CTS Medium Reservation Traps Generated During Wireless Service Shutdown and Resume Click on Configure Interfaces WirelessSet Blacklist Status to Enable Channel Blacklist Table 13 WDS Example Bridging WDS WDS Setup Procedure 14 WDS Configuration Ethernet 15 Adding WDS Links 16 Ethernet Sub-tab Passwords Management Secure Management IP Access TableServices Advanced Configuration AP-700 User Guide Management Snmp SettingsHttp Access Https Access Secure Socket Layer 17 Management Services Configuration Screen SSH Clients SSH Session SetupConfiguring SSH Click Commands Update AP via Http or via Tftp Uploading Externally Generated Host Keys Serial Configuration Settings Radius Based Management Access Set up Automatic Configuration for Static IP Automatic Configuration AutoConfigAuto Configuration and the CLI Batch File 19 Automatic Configuration Screen Set up Automatic Configuration for Dynamic IP Hardware Configuration Reset Chrd 20 Dhcp Options Setting the Boot Server Host Name Click Configure Management Chrd Configuration Reset via Serial Port During BootupConfiguring Hardware Configuration Reset Procedure to Reset Configuration via the Serial Interface Filtering Ethernet ProtocolStatic MAC Select the Filter Operation Type Advanced Configuration AP-700 User Guide Filtering Wired MAC Address 0040F41CDB6A Wireless MAC Address 00022D5194E4Wired MAC Address Wireless MAC Address 0020A6124E38 Advanced TCP/UDP PortNumber Click Add under the TCP/UDP Port Filter Table heading Editing TCP/UDP Port Filters Click Edit under the TCP/UDP Port Filter Table heading Alarms Groups Security Trap Group Trap Name Description Severity Level Operational Trap Group Trap Name Description Severity Level Trap Name Description Severity Level Flash Memory Trap Group Trap Name Description Severity Level Alarm Host Table Tftp Trap Group Trap Name Description Severity LevelImage Trap Group Trap Name Description Severity Level Sntp Trap Group Trap Name Description Severity Level Advanced Configuration AP-700 User Guide Alarms Event Priority Description Configuring Syslog Event NotificationsSyslog Syslog Messages Syslog Message Name Priority Severity Description Advanced Configuration AP-700 User Guide Rogue Scan 25 Preventing Rogue AP Attacks Continuous Scanning Mode Background Scanning ModeMulti-Band Scanning Rogue Scan Data Collection Click Configure Alarms Rogue Scan Rogue Scan 26 Rogue Scan Screen Bridge Spanning Tree Advanced Configuration AP-700 User Guide Bridge Storm Threshold Packet Forwarding Configuring Interfaces for Packet ForwardingIntra BSS Wireless Multimedia Extensions WME/Quality of Service QoS Click Configure QoS PolicyQoS Enabling QoS and Adding QoS policies Advanced Configuration AP-700 User Guide QoS Enter the Priority Mapping Index Click Configure QoS Priority Mapping Priority Mapping Enhanced Distributed Channel Access Edca STA Edca Table and AP Edca Table 32 Edca Tables Advanced Configuration AP-700 User Guide QoS Radius Servers per Authentication Mode and per Vlan Radius Profiles Configuring Radius Profiles Radius Servers Enforcing Vlan Access Control Advanced Configuration AP-700 User Guide 35 Add Radius Server Profile Radius Accounting MAC Access Control Via Radius Authentication802.1x Authentication using Radius 101 Authentication AttributesAccounting Attributes 102 103 SSID/VLAN/SecurityVlan Overview 104 Typical User Vlan Configurations Control Access to the APClick Configure SSID/VLAN/Security Mgmt Vlan Management Vlan Security Profile Provide Access to a Wireless Host in the Same WorkgroupDisable Vlan Tagging Advanced Configuration AP-700 User Guide SSID/VLAN/Security Authentication ProcessWi-Fi Protected Access WPA/802.11i WPA2 107 Authentication Protocol Hierarchy 108 Configuring Security Profiles Click Configure SSID/VLAN/Security Security ProfileVLANs and Security Profiles 109 Non Secure Station WEP Station802.1x Station WPA Station 111 40 Security Profile Table Add Entries 112 113 MAC AccessWireless Configuring an SSID/VLAN with Vlan Tagging Disabled 114 43 SSID/VLAN Edit Entries Screen Vlan Tagging Disabled 115 116 Configuring SSID/VLANs with Vlan Tagging EnabledClick SSID/VLAN/Security Wireless 45 SSID/VLAN Edit Entries Screen Vlan Tagging Enabled 117 Broadcast Ssid and Closed System 118 Monitoring 119 Version Monitoring AP-700 User Guide IP/ARP Table Icmp Monitoring Tab Learn Table Learn Table Monitoring Tab Radius 124 Monitoring AP-700 User Guide Interfaces 125 126 Station Statistics 127 Monitoring AP-700 User Guide Station Statistics 128 129 CommandsIntroduction to File Transfer via Tftp or Http Image Error Checking During File Transfer Tftp File Transfer GuidelinesHttp File Transfer Guidelines 130 Update AP Update AP via TftpCommands AP-700 User Guide 131 132 Update AP via HttpCommands AP-700 User Guide Update AP via Http Commands AP-700 User Guide Retrieve File Retrieve FileRetrieve File via Tftp 133 Retrieve File via Http 134 Retrieve File via Http Command Screen Commands AP-700 User Guide Reboot RebootReset 13 Help Link Configuration Screen 137 Help Link Troubleshooting Troubleshooting ConceptsSymptoms and Solutions Connectivity Issues Basic Software Setup and Configuration Problems Client Connection Problems Vlan Operation Issues Active Ethernet AE Forced Reload Procedure Recovery ProceduresReset to Factory Default Procedure Download a New Image Using ScanTool Download ProcedurePreparing to Download the AP Image 143 Download a New Image Using the Bootloader CLI 144 Setting IP Address using Serial Port Initializing the IP Address using CLIHardware and Software Requirements Attaching the Serial Port Cable Radius Authentication Server Related ApplicationsTftp Server 146 Troubleshooting AP-700 User Guide Related Applications 147 Command Line Interface CLI General NotesPrerequisite Skills and Knowledge Notation Conventions CLI Error Messages Navigation and Special Keys Command Line Interface CLI Variations Bootloader CLICommand Line Interface CLI AP-700 User Guide 150 Example 1. Display Command list CLI Command TypesOperational CLI Commands Example 3a. Display every parameter that can be changed Example 2. Display specific CommandsExample 3. Display parameters for set and show Example 3b. Display parameters based on letter sequence Example 4. Display Prompts for Successive ParametersDone, exit, quit Download Help HistoryPasswd 154 Parameter Control Commands Show CLI CommandSearch 155 Set CLI Command Configuring Objects that Require RebootSet and show Command Examples Examples Example 1 Set the Access Point IP Address Parameter Example 4 Enable, Disable, or Delete a table entry or rowExample 2 Create a table entry or row Example 3 Modify a table entry or row 158 Example 5 Show the Group ParametersExample 6 Show Individual and Table Parameters Using Tables and Strings Using StringsWorking with Tables 159 Configuring the AP using CLI commands Set Basic Configuration Parameters using CLI CommandsLog into the AP using HyperTerminal Log into the AP using Telnet Change Passwords Set Network Names for the Wireless InterfaceSet System Name, Location and Contact Information 161 Country Code 162 Configure SSIDs Network Names, VLANs, and Profiles 163 Other Network Settings Download an AP Configuration File from your Tftp ServerBackup your AP Configuration File Set up Auto Configuration Configure the AP as a Dhcp Server Configure the DNS Client Autochannel Select ACS Operational ModeEnable/Disable Closed System Shutdown/Resume Wireless Service Enable/Disable Super Mode 802.11a/g onlyEnable/Disable Turbo Mode 802.11a/g only Configure Antenna Diversity Set Communication Ports Edit Management IP Access TableConfigure Management Ports Configure Secure Socket Layer Https Set Telnet Session TimeoutsConfigure Serial Port Interface 169 Create/Enable WDS Enable/Disable WDSSetup MAC Address Access Control Add an Entry to the MAC Access Control Table Figure A-17 Result of showradiustbl CLI Command 171 Add a Entry to the Wifssid Table Enable Vlan ManagementDisable Vlan Management CLI Monitoring Parameters Parameter Tables 174 Filtering Parameters 175 Name Type Value Access CLI Parameter Set sysresettodefaultsSystem Parameters 176 DNS Client for Radius Name Resolution Dhcp Server Parameters Name Type Value Access CLI ParameterNetwork Parameters 177 Dhcp Server table for IP pools Dhcp Relay GroupDhcp Relay Server Table 178 179 Sntp Parameters Name Type Value Access CLI ParameterLink Integrity IP Target Table Wireless Interface Parameters Interface ParametersCommon Parameters to 802.11a/b/g 180 802.11a Only Parameters 181 182 802.11b Only Parameters802.11b/g Only Parameters For 802.11g-only mode For 802.11b/g modeFor 802.11b-only Mode Wireless Distribution System WDS Parameters Wireless Interface SSID/VLAN/Profile ParametersChannel Blacklist Parameters 184 Wireless Distribution System WDS Security Table Parameters Snmp Parameters Name Type Value Access CLI ParameterManagement Parameters 185 186 187 Http Parameters Name Type Value Access CLI ParameterTelnet Parameters Name Type Value Access CLI Parameter Serial Port Parameters Name Type Value Access CLI Parameter Radius Based Management Access ParametersSSH Parameters 188 189 IP Access Table ParametersTftp Server Parameters 190 Filtering ParametersEthernet Filtering Table Proxy ARP Parameters Name Type Value Access CLI Parameter TCP/UDP Port FilteringTCP/UDP Port Filtering Table 191 Alarms Parameters Name Type Value Access CLI Parameter Syslog Group 192Snmp Table Host Table Parameters Syslog Parameters Syslog Host Table 193 194 Bridge ParametersSpanning Tree Priority and Path Cost Table Storm Threshold Table Intra BSS Subscriber BlockingPacket Forwarding Parameters 195 Radius Server Configuration Parameters Radius ParametersGeneral Radius Parameters 196 MAC Access Control Table Security Parameters 198 VLAN/SSID ParametersSecurity Profile Table Iapp Parameters Name Type Value Access CLI Parameter Enabling QoS Name Type Value Access CLI ParameterConfiguring QoS Policies Other Parameters Specifying the Mapping between 802.1p and 802.1D Priorities 200 201 Defining the QoS Policy used for a Wireless Interface SsidCLI Batch File CLI Batch File Format and Syntax Auto Configuration and the CLI Batch FileReboot Behavior CLI Batch File Error Log 203 Charact Equival Ent 204 Ascii Character ChartHex Specifications Software FeaturesNumber of Stations per BSS Management Functions Medium Access Control MAC Functions Specifications AP-700 User Guide Software FeaturesAdvanced Bridging Functions Security Functions 207 Specifications AP-700 User GuideNetwork Functions Hardware Specifications Mode Frequency Channel Product SKU Band Available Channels802.11b/g 802.11a Upper 149 153 157 161 ISM Band 165 210 RF Performance802.11a RF Performance 802.11a Data Rates Mbps Software and Documentation Downloads Knowledgebase 211 Technical SupportOnline Support International 212 Telephone SupportTechnical Support AP-700 User Guide Telephone Support Statement of Warranty Warranty CoverageRepair or Replacement Limitations of Warranty Ask a Question or Open an Issue Other InformationSearch Knowledgebase Other Adapter Cards 215 Regulatory ComplianceProduct Model Numbers 216 Safety Information USA, Canada, & European UnionRegulatory Compliance AP-700 User Guide Federal Communications Commission FCC 217 Modifications 218 Industry Canada IC 219 European Union 220 221 Regulatory Compliance Certifications SummaryCountry Certification/Reference No