Cisco Systems OL-7426-03 Manual De Usuario
5/26/05
Cisco WLAN Solution Security
OL-7426-03
marking them as Alert rogue access points (watch for and notify when active), or marking them as
Contained rogue access points (have between one and four Cisco 1000 Series lightweight access points
discourage rogue access point clients by sending the clients deauthenticate and disassociate messages
whenever they associate with the rogue access point).
Contained rogue access points (have between one and four Cisco 1000 Series lightweight access points
discourage rogue access point clients by sending the clients deauthenticate and disassociate messages
whenever they associate with the rogue access point).
Integrated Security Solutions
Integrated Security Solutions
•
Cisco WLAN Solution Operating System Security is built around a robust 802.1X AAA (authori-
zation, authentication and accounting) engine, which allows operators to rapidly configure and
enforce a variety of security policies across the Cisco WLAN Solution.
zation, authentication and accounting) engine, which allows operators to rapidly configure and
enforce a variety of security policies across the Cisco WLAN Solution.
•
The
equipped with system-wide authentication and authorization protocols across all ports and
interfaces, maximizing system security.
interfaces, maximizing system security.
•
Operating System Security policies are assigned to individual WLANs, and
eliminate the need for additional access points, which can increase interference and degrade
system throughput.
system throughput.
•
securely terminates IPSec VPN clients, which can reduce the
load on centralized VPN concentrators.
•
Operating System Security uses the
function to continually
monitor the air space for interference and security breaches, and notify the operator when they
are detected.
are detected.
•
Operating System Security works with industry-standard aaa (authorization, authentication and
accounting) servers, making system integration simple and easy.
accounting) servers, making system integration simple and easy.
•
The Operating System Security solution offers comprehensive Layer 2 and Layer 3 encryption
algorithms which typically require a large amount of processing power. Rather than assigning
the encryption tasks to yet another server, the Cisco Wireless LAN Controller can be equipped
with a VPN/Enhanced Security Module that provides extra hardware required for the most
demanding security configurations.
algorithms which typically require a large amount of processing power. Rather than assigning
the encryption tasks to yet another server, the Cisco Wireless LAN Controller can be equipped
with a VPN/Enhanced Security Module that provides extra hardware required for the most
demanding security configurations.
Simple, Cost-Effective Solutions
Simple, Cost-Effective Solutions
Because the Cisco WLAN Solution Radio Resource Management (RRM) function is enabled from the
factory, the IT department does not need to create a detailed rollout plan to continually monitor access
points, or to individually update access points, resulting in very low input required from the IT
department or Wireless LAN manager. This means less money spent deploying, configuring, updating,
and monitoring the Cisco WLAN Solution.
factory, the IT department does not need to create a detailed rollout plan to continually monitor access
points, or to individually update access points, resulting in very low input required from the IT
department or Wireless LAN manager. This means less money spent deploying, configuring, updating,
and monitoring the Cisco WLAN Solution.