i need to implement the wlc into one of my customer.
The security issue as below has to be solved.
How can we stop the APs to send the discovery request to the wlc.We need few APs to be associated with it.If any one insert the APs to send the recovery and join the wlc THATthreat to be identified and blocked.
This is the major security issue needs to be solved.
What featre in the wlc that can be used to solve the problem.
You configure WLC to make APs configure against the Radius Server. On the WLC Web GUI:Security>RADIUS authentication>New> , Add ACS server IP, ASCII Shared secret, port number and check the boxes for
network user, management, IPSEC if used for AAA authentication , On the ACS server: Network Configuration>Add entry>
Add WLC hostname, IP address and matching shared key, for authenticate , using select RADIUS Cisco Aironet or Cisco Airespace if using ACS 4.0 , To configure the WLC so AP's authenticate against ACS: On the WLC: Security>AP Policies>Select the checkbox for Authorize APs against AAA, On the ACS server:, Add a user account for the MAC address of the AP with no dots or dashes, the password will also be the MAC address of the AP with no dots or dashes.
We are moving! Please use WLCCA Forum for updates and discussions
[toc:faq] Wireless LAN Controller (WLC) Config Analyzer Download Click
here to Download To request access, send an e-mail to
firstname.lastname@example.org. Please include your Cisco.com userna...
[toc:faq] IntroductionHere is the step by step process that we have to
take care of while converting LWAPP to IOS and then vice versa..LWAPP to
IOSThe hardware used = 1141 AP (make sure we are using the right
[toc:faq] Introduction AnyConnect Secure Mobility Client 3.0: Network
Access Manager & Profile Editor on Windows Summary Use the Cisco
AnyConnect Network Access Manager Profile Editor to build custom
profiles for the AnyConnect Secure Mobility Client. App...