Cisco Cisco Wireless Services Module 2 (WiSM2) Notas de publicación
19
Release Notes for Cisco Wireless LAN Controllers and Lightweight Access Points for Release 7.4.100.0
OL-28134-01
Special Notes for Licensed Data Payload Encryption on Cisco Wireless LAN Controllers
Special Notes for Licensed Data Payload Encryption on
Cisco Wireless LAN Controllers
Cisco Wireless LAN Controllers
Datagram Transport Layer Security (DTLS) is required for all Cisco 600 Series OfficeExtend Access
Point deployments to encrypt data plane traffic between the APs and the controller. You can purchase
Cisco Wireless LAN Controllers with either DTLS that is enabled (non-LDPE) or disabled (LDPE). If
DTLS is disabled, you must install a DTLS license to enable DTLS encryption. The DTLS license is
available for download on Cisco.com.
Point deployments to encrypt data plane traffic between the APs and the controller. You can purchase
Cisco Wireless LAN Controllers with either DTLS that is enabled (non-LDPE) or disabled (LDPE). If
DTLS is disabled, you must install a DTLS license to enable DTLS encryption. The DTLS license is
available for download on Cisco.com.
Important Note for Customers in Russia
If you plan to install a Cisco Wireless LAN Controller in Russia, you must get a Paper PAK, and not
download the license from Cisco.com. The DTLS Paper PAK license is for customers who purchase a
controller with DTLS that is disabled due to import restrictions but have authorization from local
regulators to add DTLS support after the initial purchase. Consult your local government regulations to
ensure that DTLS encryption is permitted.
download the license from Cisco.com. The DTLS Paper PAK license is for customers who purchase a
controller with DTLS that is disabled due to import restrictions but have authorization from local
regulators to add DTLS support after the initial purchase. Consult your local government regulations to
ensure that DTLS encryption is permitted.
Note
Paper PAKs and electronic licenses available are outlined in the respective controller datasheets.
Downloading and Installing a DTLS License for an LDPE Controller
Step 1
Download the Cisco DTLS license.
a.
Go to the Cisco Software Center at this URL:
b.
On the Product License Registration page, choose Get New > IPS, Crypto, Other Licenses.
c.
Under Wireless, choose Cisco Wireless Controllers (2500/5500/7500/8500/WiSM2) DTLS
License.
License.
d.
Complete the remaining steps to generate the license file. The license file information will be sent
to you in an e-mail.
to you in an e-mail.
Step 2
Copy the license file to your TFTP server.
Step 3
Install the DTLS license. You can install the license either by using the controller web GUI interface or
the CLI:
the CLI:
•
To install the license using the web GUI, choose:
Management > Software Activation > Commands > Action: Install License
•
To install the license using the CLI, enter this command:
license install tftp://ipaddress /path /extracted-file
After the installation of the DTLS license, reboot the system. Ensure that the DTLS license that is
installed is active.
installed is active.