I am so confused about wireless security. Someone please explain some things for me in little words!
We are deploying a wireless setup using aironet 1100 APs and 1300 Bridges. We have a mix of XP Pro and XP Home (arrrg) machines.
Right now i have everything set up using wpa-psk w/tkip. But i would like to deploy authentication into the mix. But there are so many auth types out there i don't know what is the best for us, or whether anything is right for us. The thoughts of rolling out a radius box is frightening simply because i haven't done any of that sort of thing before.
Ultimately this wireless setup will be transporting voice along with data via vlans and a dot1q trunk between the bridges. So from what i have read we will need WDS for fast roaming, another confusing topic.
Can someone give me some advice on what we should do?
Well.... One thing is if you want a higher secure method, you will have to use certificates. PEAP is probobly the most deployed method and the simplest EAP method. This would require you to build an IAS server (comes with windows server) and a Certificate Authority Server which also comes with Windows Server. Just do a search on Google.. configure 802.1x windows server 2003 and you will find some good articles on setting this up. WDS for fast roaming requires the use of Cisco wireless cards or cards that are CCK2 compliant. If you are using internal cards, fast roaming will not work. They will however work if you are using Cisco 7920 ip phones. Hope this kind of helps.
Transferring Crash file from standby: Login to the Active WLC in HA.
From CLI: (Cisco Controller) >transfer upload datatype crash (Cisco
Controller) >transfer upload filename (Cisco
Controller) >transfer upload mode tftp (Cisco Controller) >transfer
This is the start of a display filter cross reference between Wireshark
and OmniPeek. The 1st installment is a table of advanced filters. More
filters will be added as time allows. It is a living doc, so check back
for changes every so often Please feel f...
I have created a Powershell script to automatically add a Wireless Guest
User on Cisco WLCs. (tested on 2500 Series) The script should be
completely self explanatory. Prerequisites: Powershell SNMP Module
(Install-Module -Name SNMP) SNMP Write Access to y...