Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
611
Views
5
Helpful
6
Replies

officeextend - AP security

Go to solution
Network Pro
Level 1
Level 1

‎02-20-2012 02:00 AM - edited ‎07-03-2021 09:37 PM

hi,

is there any way i can implement security  for officeextend access points. For example if an officeextend AP gets lost, is there a way i can stop just this AP alone from joining onto the network ?

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
George Stefanick
VIP Alumni
VIP Alumni
In response to Network Pro

‎02-20-2012 06:41 AM

Hey NP,

When you configure OE you should also do a AP policy. Where by the mac of the wireless radio and ethernet of the OE AP is added to the WLC ap policy. Only these allowed APs will be able to join the WLC.

Make sense?

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________

View solution in original post

0 Helpful

Go to solution
blakekrone
Level 4
Level 4
In response to Network Pro

‎02-20-2012 07:48 AM

Head over to the top Security option, then you'll see AP Policies under AAA section on the right. You would add your APs to the list then check the checkbox for these:

Authorize MIC APs against auth-list or AAA
Authorize LSC APs against auth-list

If your OEAPs are on the DMZ WLC then this would only affect OEAPs, if you have your OEAPs on an internal WLC with other APs then they need to be added as well.

View solution in original post

6 Replies 6

Go to solution
Network Pro
Level 1
Level 1

‎02-20-2012 06:38 AM

any ideas?

0 Helpful

Go to solution
George Stefanick
VIP Alumni
VIP Alumni
In response to Network Pro

‎02-20-2012 06:41 AM

Hey NP,

When you configure OE you should also do a AP policy. Where by the mac of the wireless radio and ethernet of the OE AP is added to the WLC ap policy. Only these allowed APs will be able to join the WLC.

Make sense?

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________
0 Helpful

Go to solution
Network Pro
Level 1
Level 1
In response to George Stefanick

‎02-20-2012 07:10 AM

is this done through the mac filtering ? or where is the AP policy ?

0 Helpful

Go to solution
Network Pro
Level 1
Level 1
In response to Network Pro

‎02-20-2012 07:34 AM

i looked for AP policy but cnat find under mamagement - and can this be done only for officeextend AP's and not for internal AP's

0 Helpful

Go to solution
blakekrone
Level 4
Level 4
In response to Network Pro

‎02-20-2012 07:48 AM

Head over to the top Security option, then you'll see AP Policies under AAA section on the right. You would add your APs to the list then check the checkbox for these:

Authorize MIC APs against auth-list or AAA
Authorize LSC APs against auth-list

If your OEAPs are on the DMZ WLC then this would only affect OEAPs, if you have your OEAPs on an internal WLC with other APs then they need to be added as well.

Go to solution
George Stefanick
VIP Alumni
VIP Alumni
In response to George Stefanick

‎02-20-2012 06:47 PM

Yup, if you check your WLC logs you will see traps that your OE ap is trying to join and cant.

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card