The AP that you assign the role of "WDS" will act as an authentication proxy; i.e., the client's authentication traffic is routed through the WDS AP .. as the client roams, the hashed credentials are forwarded to the "next" AP that will handle that client's traffic ... the hashed credentials greatly improve the probability that the client will not lose the connection during the hand-over.
The WLSE is a wireless network management system. It will provide status and control for the entire network from a central location, including rogue management, client tracking, software updates (individual, several, or all... on a schedule or immediately).
The WLSE also provides the usual reporting capabilities.
The WLSM is only required if you need Layer 3 mobility (client that roams between subnets). The WLSM is the only device that has the necessary logical mechanisms to provide that type of service (accomplished using a point-to-multipoint tunnel).
L2 mobility can be done using the WDS (client roams within a single broadcast domain).
I believe the fast-roaming featues require using LEAP or EAP-Fast .... which could use the local database (on an AP) ... but only up to 50 client names/user names. The ACS give you the same authentication functionality (lots more, actually) but for a much larger client base.
Is it possible to achieve this fast-roaming capability for EAP without LEAP or EAP-FAST (cisco proprietary).
I have a set of 1242 aps doing EAP authentication with an MS IAS box. Im reading in these forums that one of these APs could be configured with WDS. Does that mean I can cache the credentials on this AP (no radio) and go without an ACS box? My clients are not necessarily using aironet cards, so if that were a prerequisite then I guess the answer is no.
If there is a 50 user limit, I could probably live with that.
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...