We recently went through an audit of our wireless environment. There were a handful of suggestions provided to us by the auditor in order to remediate some of the findings of vulnerabilities or holes in the AP configs. Unfortunately, we were provided the command-line fixes.
Since we have over 50 APs across our network, that would clearly be very time-consuming. Is there a way to send these commands either from the WLC or Prime Infrastructure?
It will be a waste of time to send the commands to the APs when you have WLC. This is because the APs won't be able to save the commands. All configurations need to be done on the WLC.
Exactly what command(s) are you trying to do?
Understood, Leo. I think I just need to determine where in the WLC I can adjust the settings that correspond to the commands. Since the APs can't save the commands, I'm really wondering why this audit gave us the command-line fix.
One example is the command service tcp-keepalives-in. I'm sure there's a setting in the WLC for this, so it's just a matter of finding it.
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...