I'm using two cisco 1242 AG access points to configure WDS feature. I've named the accesspoints as AP1(acts as WDS) and AP2. Since I've only two accesspoints, I've configured the AP1 to act both as a WDS and as a regular accesspoints.
Further I'm using the local radius server within the AP1 to authenticate both clients and infrastructure accesspoints. And both APs are connected to a router (which act as a dhcp server) via a unmanageble switch and both accesspoints are getting registered with WDS.
But the issue is when I tried to connect to the configured SSID, it promts me a "authendication window" but after entering the configured username and password, i'm not getting authenticated by the AP.
I've attached the configurations of both APs to for your reference and I've used the following cisco document as a guideline to crate the WDS.
When you perform the "#show wlccp wds ap" command you should see both the WDS master (ap1) and AP2 registered.
In AP1's radius-server local confiig, I show the shared key for AP2 and applicable username
nas 18.104.22.168 key 7 01100F175804
user AP1242 nthash 7 025327035B5629701F6F5A3A204F442E28567F7F740C1761074454455 2240F780A
You should also add the radius server to this list
# radius-server local
# nas 22.214.171.124 key 0
It looks like you already have the username created and set under your wlccp config
user ap1 nthash 7 14454A2A29517F737770671606315F415A59700D08717759263944087E73 767300
wlccp ap username ap1 password 7 105A01180E0513075D
Once you see AP1 and AP2 registered with show wlccp wds ap see what you get.
Also, on AP2, you will call the same key-management, auth, etc "eap" methods group under your SSID as used on AP1. All of this information will hit the AP1 WDS master and use AP1s designated groups and host lists. This is the reason you have the following commands on your master. Requests from received at the WDS slave will be forwarded to the master and handled accordingly.
wlccp authentication-server infrastructure ...
wlccp authentication-server client ...
You should not even need to declare your radius server groups, or define hosts on AP2, only the master. Just using your wlccp command that is in place will work.
Transferring Crash file from standby: Login to the Active WLC in HA.
From CLI: (Cisco Controller) >transfer upload datatype crash (Cisco
Controller) >transfer upload filename (Cisco
Controller) >transfer upload mode tftp (Cisco Controller) >transfer
This is the start of a display filter cross reference between Wireshark
and OmniPeek. The 1st installment is a table of advanced filters. More
filters will be added as time allows. It is a living doc, so check back
for changes every so often Please feel f...