Thanks for your reply.. I have enabled telnet on remote AP its working fine, now I need to integrate the same with TACACS server(ACS) as i need to provide read only access to that AP for remote support or Do we have any option  that with out integrating AP with TACACS, only restict access(read only) in AP level

Regards

Kumar

Hi,

Sorry for the delayed response..

By default the LWAPP AP which is registered to the WLC is READ-ONLY, Unless someone consoles into the AP knowing the credentials, but still its the read-only.

Regards

Surendra

Hi,

Thanks for your reply and sorry for come back on the same...

1) If i need to give full access to location AP(remote AP) for local supportthru telnet and as per your previous ans you said, once i integrate AP with WLC...will get read only acccess ryt....How can we achive this?

Regards

Kumar

Hi,

No problem at all..

If the AP is registered to the WLC, then its read only.. We cannot configure anything on the AP, instead if the remote location support team can access the WLC rite, then they can make some changes.. and also if you enable telnet to the remote AP, then we can run few debug commands to verify the status and troubleshoot and if we hav the console access this will do the same. But based on my experience, we cannot configure the AP through telneting into it when its registered to the WLC, coz we will be having fewer access, like no "config t" just few sh commnads and debugs and everything should be done from the controller.

Regards

Surendra

hi,

did that answer your question???

Surendra,

summarising all the post and ur replies, once the AP is joined to WLC, management is disabled. Telnet and SSH are enabled but with limited functionality and debug commands only. Disable CDP is you dont want any AP finding anyother APs??

Another question, regarding Aggressive Load Balancing.

Once I set the load balancing in WLC (lets suppose, enable aggressive load balancing, client window size 20, denial threshold count 3), will this setting automatically go global as soon as I apply? Saying that will this load balancing appear for all the APs connected to that WLC? If I go a individual AP, can I change the client window size to 15 or 30, denial threshold count 5? or can I disable "Aggressive load balancing" in WLC but in an individual AP, set the maximum client association number ??Will any of this work??

I have 4402WLC and around 40 APs. there are 3 APs functional n standalone . Will this cause any issues? I have some heat zones where there are huge numbers of clients. But the clients dont seem to be connecting to anyone except the very closest one. Say, Room1 and Room2 with AP1 and AP2 respectively. Room 1 has 50 clients and room 2, none. ALL 50 are connecting to AP1. How can I make the clients to go to AP2 or AP3 without Aggressive Load Balancing?

Also, Aggressive Load Balancing doesnt seem to be effective against clients that ignore Reason Code17, are there any options??

Thank you in advance.

Telnet and SSH are enabled but with limited functionality and debug commands only.