I have both MIC and TKIP enabled and working fine with my Cisco 350 AP's and Clients. (All new cisco gear). Both are at the latest versions of software and firmware.
I wish to use LEAP with an ACS server.
Do I need to turn off TKIP when I go with LEAP?
The cisco doc's say this is redundant, but you can run TKIP and LEAP at the same time. I called TAC to get some advise and they said I must turn off TKIP if I start running LEAP. But the Cisco online seminar I just sat for said leave all three running for added protection.
TKIP and LEAP function together very well and, in fact, Cisco recommends running both.
TKIP is an adaptation of RSA's fast packet keying proposal in which the WEP key is hashed using the IV. Since the IV changes (randomly on Cisco AP's) for every packet, each packet will have a unique WEP key.
Coupling that with LEAP, which provides WEP key rotation on a timed interval or whenever a user reauthenticates, will mitigate any known attacks on WEP.
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...