Cisco Cisco Aironet 1200 Access Point Referencia técnica
Cisco Structured Wireless-Aware Network (SWAN) Implementation Guide
Implementing the Cisco SWAN Framework
18
Cisco Structured Wireless-Aware Network (SWAN) Implementation Guide
OL-6217-01
To configure the local RADIUS server on an access point, follow these steps:
Step 1
Access the access point command-line interface and go into configuration mode.
Step 2
Enter the following IOS command:
AAA-ap(config)# aaa new-model
Step 3
Enter the following IOS command:
AAA-ap(config)# radius-server local
You are now in the local RADIUS server configuration mode.
Step 4
Enter the following command for each WDS-host device while in the local RADIUS server
configuration mode:
configuration mode:
AAA-ap(config-radsrv) nas <wds-host ip address> key <shared secret>
Step 5
Each infrastructure access point presents a username and password to the WDS when it authenticates.
These credentials must be defined on the local RADIUS server and do not have to be unique per
infrastructure access point. Most implementations use a single username and password credential pair
for all of the infrastructure access points. To add the username and password credentials into the local
RADIUS server, enter the following command while in local RADIUS configuration mode for each
username and password credential pair:
These credentials must be defined on the local RADIUS server and do not have to be unique per
infrastructure access point. Most implementations use a single username and password credential pair
for all of the infrastructure access points. To add the username and password credentials into the local
RADIUS server, enter the following command while in local RADIUS configuration mode for each
username and password credential pair:
AAA-ap(config-radsrv) user <username> password <password>
Step 6
Exit configuration mode and save the configuration to NVRAM.
Configuring the AAA Server to Support WLAN Client Authentication
for the details of WLAN client authentication configuration.
Preparing the CiscoWorks WLSE for Managing WLAN Devices
The CiscoWorks WLSE uses three methods to communicate with WLAN devices in the network:
•
WLCCP-Control transactions with the WDS-hosts
•
SNMP-Interrogation of all WLAN devices and some configuration tasks
•
Telnet or SSH-Configuration of access points via remote command-line interface
The CiscoWorks WLSE requires the following credentials to successfully communicate with WLAN
devices in the network:
devices in the network:
•
WLCCP credentials for initial authentication of the WLSE by the WDS-hosts
•
SNMP read-only and read-write communities
•
Telnet or SSH credentials