Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

How do one disable "Management via wireless" on a cisco 3850 Wireless LAN Controller

I have a cisco 3850 24 port switch (WLC), and want to disable management via wireless but I do not get that option on the GUI. Is menu hidden somewhere or can it be done via CLI?

1 ACCEPTED SOLUTION

Accepted Solutions
Gold

This is the list of options

This is the list of options available to access the WLC:

  • GUI access with HTTP or HTTPS

  • CLI access with Telnet, SSH, or console access

  • Access through service port

For more information on how to enable these modes, refer to the Using the Web-Browser and CLI Interfaces section of the document Cisco Wireless LAN Controller Configuration Guide, Release 5.1. Usually, the management interface IP address is used for GUI and CLI access. Wireless clients can access the WLC only when the optionEnable Controller Management to be accessible from Wireless Clients is checked. In order to enable this option, click the Management menu of the WLC, and click Mgmt via Wireless on the left-hand side. WLC can also be accessed with one of its dynamic interface IP addresses. Use the config network mgmt-via-dynamic-interface command to enable this feature. Wired computers can have only CLI access with the dynamic interface of the WLC. Wireless clients have both CLI and GUI access with the dynamic interface.

 

Uncheck the Mgmt via wireless

3 REPLIES
Gold

This is the list of options

This is the list of options available to access the WLC:

  • GUI access with HTTP or HTTPS

  • CLI access with Telnet, SSH, or console access

  • Access through service port

For more information on how to enable these modes, refer to the Using the Web-Browser and CLI Interfaces section of the document Cisco Wireless LAN Controller Configuration Guide, Release 5.1. Usually, the management interface IP address is used for GUI and CLI access. Wireless clients can access the WLC only when the optionEnable Controller Management to be accessible from Wireless Clients is checked. In order to enable this option, click the Management menu of the WLC, and click Mgmt via Wireless on the left-hand side. WLC can also be accessed with one of its dynamic interface IP addresses. Use the config network mgmt-via-dynamic-interface command to enable this feature. Wired computers can have only CLI access with the dynamic interface of the WLC. Wireless clients have both CLI and GUI access with the dynamic interface.

 

Uncheck the Mgmt via wireless

Thank you Mohanak, The

Thank you Mohanak,

 

The challenge I have is that the option is on available on the GUI, see attached screenshot. Or do I need to upgrade the WLC to get all the features on the controller?
 

Cisco Employee

The answer that was provided

The answer that was provided is for AirOS controllers such as 8500/7500/5500/2500 will not work for NGWC/ NextGen ( 5760/4500/3800/3600).

The question if is for 3850 which is a NGWC controller. 

This controller is a basically a switch as long as the wireless client has access  to the management VLAN this client can be able to manage the controller from wireless. TO prevent this you can create an ACL to block communication to the management VLAN.

TAC

922
Views
0
Helpful
3
Replies