Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
533
Views
0
Helpful
1
Replies

WLC4404: authenticating LWAPPs.

simonbaumann
Level 1
Level 1

‎07-17-2008 11:44 PM - edited ‎07-03-2021 04:11 PM

Hi,

I want so secure my WLAN against rogue LWAPPs. I found the option "Authorize APs against AAA" under "SECURITY -> AAA -> AP Policies". So, it's only possible to authorize them against my IAS RADIUS server?

How dou you protect your network agaisnt rogue LWAPPs? I didn't finde a best practice my Cisco. TIA.

Simon

edit: I'm running 5.0.148.0 on a AIR-WLC4404-100-K9.

Labels:
0 Helpful
1 Reply 1

Scott Fella
Hall of Fame
Hall of Fame

‎07-18-2008 04:39 AM

I don't see why you can't use IAS, you just have to cross reference the doc that explains how to set it up in Cisco ACS:

http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008084f13b.shtml#a1

One way to protect you network against rogue LWAPP's is to make sure your unused ports are shut and configured for a bogus vlan just in case. Have your LAP's on a separate vlan, so that the vlan or subnet is the only subnet that can communicate to the wlc.

-Scott
*** Please rate helpful posts ***
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card