Securing access to Access Points via HTTPS

jeff.k · ‎04-27-2003

For a particular customer we have AP's placed outside the protected network, with clients establishing VPN connectivity to the protected network after they are associated with the AP. That works fine and provides compliance with the customer's security policy.

However, secure management of the AP's is a problem. While access to the AP's can be limited to console access, this is a hassle when they are located on towers, rooftops, etc.

When will https access be available for AP's?

What other options are there for locking down the AP's for management access? (I know we can authenticate administrative users, but the http stream is still unsecured.)

WSE is a kool, almost requirement for any reasonably large scale deployment for configuration and version management, however, it has the same issue - communication between the WSE and the AP is insecure.

Any other ideas for securing AP administrative access is greatly appreciated.

Jeff

sbilgi · ‎05-02-2003

Right now ,HTTP and Telnet are the only means of remotely managing the Cisco Aironet equipments. I am not very sure when it will be supported in future. For finding some information on configurations for securing AP administrative access,you can go through the following document.

http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/csnt26/usergd26/ch3.htm

bchauvn · ‎05-02-2003

Newer APs can use SSH as a method of remote management.