-
Cisco Wireless LAN Controller Configuration Guide, Release 5.0
-
Preface
-
Chapter 1 - Overview
-
Chapter 2 - Using the Web-Browser and CLI Interfaces
-
Chapter 3 - Configuring Ports and Interfaces
-
Chapter 4 - Configuring Controller Settings
-
Chapter 5 - Configuring Security Solutions
-
Chapter 6 - Configuring WLANs
-
Chapter 7 - Controlling Lightweight Access Points
-
Chapter 8 - Managing Controller Software and Configurations
-
Chapter 9 - Managing User Accounts
-
Chapter 10 - Configuring Radio Resource Management
-
Chapter 11 - Configuring Mobility Groups
-
Chapter 12 - Configuring Hybrid REAP
-
Appendix A - Safety Considerations and Translated Safety Warnings
-
Appendix B - Declarations of Conformity and Regulatory Information
-
Appendix C - End User License and Warranty
-
Appendix D - Troubleshooting
-
Appendix E - Logical Connectivity Diagrams
-
Index
-
Table Of Contents
Numerics - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W -
Index
Numerics
11n Mode parameter 4-18
3DES, IPSec data encryption, described 5-9
7920 AP CAC parameter 6-31
7920 Client CAC parameter 6-31
7920 support mode
configuring 6-29
described 6-29
7921 support mode, described 6-29
802.11a (or 802.11b) > Client Roaming page 4-40
802.11a (or 802.11b) > Video Parameters page 4-54
802.11a (or 802.11b) > Voice Parameters page 4-52
802.11a (or 802.11b/g) > EDCA Parameters page 4-64
802.11a (or 802.11b/g) Global Parameters > Auto RF page 10-9
802.11a (or 802.11b/g) Global Parameters page 4-14, 10-32
802.11a (or 802.11 b/g) Network Status parameter 10-39
802.11a (or 802.11b/g) Network Status parameter 4-14, 4-53, 4-54, 4-64, 4-65
802.11a/n (or 802.11b/g/n) Cisco APs > Configure page 6-37, 10-25
802.11a/n (or 802.11b/g/n) Radios page 4-58, 10-24
802.11a > Pico Cell Page 10-38
802.11a > Pico Cell page 10-37
802.11a > Pico Cell Page with Pico Cell Mode V2 Parameters 10-38
802.11a > RRM > DCA page 10-11, 10-13, 10-15, 10-16
802.11a > RRM > Dynamic Channel Assignment (DCA) Page 10-13
802.11b/g/n Cisco APs > Configure Page 7-39, D-35
802.11 bands
configuring using the CLI4-15to 4-17
configuring using the GUI4-14to 4-15
802.11g Support parameter 4-14
802.11n
clients 7-49
configuring using the CLI4-20to 4-24
configuring using the GUI4-17to 4-19
devices 4-17
802.11n (2.4 GHz) High Throughput page 4-18
802.1Q VLAN trunk port 3-5
802.1X
authentication, configuring 6-19
configuring 6-21
described 6-20
dynamic key settings 6-19
802.1X+CCKM
configuring 6-21
described 6-20
802.3 bridging
configuring using the CLI 4-32
configuring using the GUI4-31to 4-32
802.3 Bridging parameter 4-32
802.3 frames, described 4-31
802.3X
flow control, enabling 4-31
A
AAA override
configuring
using the CLI 5-76
described 5-74
Access Control List Name parameter 5-52
access control lists (ACLs)
applying to an interface
using the CLI 5-61
applying to a WLAN
using the CLI 5-61
applying to the controller CPU
using the CLI 5-61
configuring
described 5-51
identity networking 5-71
Access Control Lists > Edit page 5-54
Access Control Lists > New page 5-52
Access Control Lists > Rules > New page 5-53
Access Control Lists page 5-51
Access Mode parameter 4-27, 4-29
access point
assisted roaming, described 4-39
access point groups
assigning access points to
using the CLI 6-42
using the GUI 6-42
creating
using the CLI 6-41
described 6-38
illustrated 6-39
access point manager interface, configuring using the configuration wizard 4-5
access points
authorization list 7-11
authorizing
using MICs 7-10
using SSCs 7-10
using the CLI 7-11
using the GUI 7-10
configure global credentials
configuring hybrid REAP using the CLI12-13to 12-14
global credentials, setting 7-4
guidelines for operating in Japan B-6
LEDs
configuring 7-48
interpreting D-2
migrating from -J regulatory domain to -U regulatory domain7-34to 7-37
priming 7-2
regulatory informationB-2to B-8
rules for operating in TaiwanB-7to B-8
supported for use with hybrid REAP 12-2
supporting oversized images 7-19
troubleshooting
using Telnet or SSH D-37
troubleshooting the join process7-13to 7-16
VCI strings 7-12
verifying that they join the controller 7-3
accounting defined 5-3
Accounting Server parameters 6-47
accounting servers, disabling per WLAN 6-46
ACL counters
configuring using the CLI 5-60
configuring using the GUI 5-52
ACLs
configuring for debug facilityD-30to D-31
using with the debug facilityD-29to D-30
ACS server configuration page 6-44
Action parameter 5-54
Add AAA Client page (on CiscoSecure ACS) 5-5, 5-19
Add AP button 12-17
Add Interface-Mapping button 6-41
Add New Rule button 5-52
Add Web Server button 9-17
administrator access 4-25
administrator usernames and passwords, configuring 4-25
Admin Status parameter 3-20
Admission Control (ACM) parameter 4-53, 4-54
AES
AES-CCMP, described 6-19
AES CBS, IPSec data encryption, described 5-9
AES parameter 6-21
Aggregated MAC Protocol Data Unit (A-MPDU) 4-20
Aggregated MAC Service Data Unit (A-MSDU) 4-20
aggregation method, specifying 4-20
AirMagnet Enterprise Analyzer
See also network analyzer D-34
Aironet IE parameter 6-23, 6-35
Aironet IEs
configuring using the CLI 6-37
configuring using the GUI 6-35
Airopeek
See also network analyzer D-34
Alarm Trigger Threshold parameter 10-30
All APs > Access Point Name > VLAN Mappings page 12-12
All APs > Details (Advanced) page 7-46
All APs > Details (General) page 12-11
All APs > Details (H-REAP) page 12-12
All APs > Details (Inventory) page 7-42
All APs > Details Page 7-5, D-35
All APs > Details page 4-69, 6-42, 7-30, 10-29
Allow AAA Override parameter 5-76, 12-8
Allowable Classification Type and Rogue State Transitions (table)
See also rogue access points
anchor controller, in inter-subnet roaming 11-4
Anonymous Provision parameter, for EAP 5-41
AP > Clients > Traffic Stream Metrics page 4-59
AP > Clients page 4-59
AP Authentication Policy page 5-64, 10-30
AP Configuration > AP Credentials Page 7-5
AP Group Description parameter 6-40
AP Group Name parameter 6-40, 6-42
AP Groups VLAN Feature Enable parameter 6-40
AP Groups VLAN page 6-40, 6-41
AP-manager interface
configuring
using the CLI 3-13
creating multiple interfaces3-37to 3-38
described 3-6
illustration
of four AP-manager interfaces 3-37
of three AP-manager interfaces 3-36
of two AP-manager interfaces 3-35
AP Mode parameter 10-29, 12-12
Apply to All APs parameter 7-5
AP Policies page 7-11
Assignment Method parameter 10-25
asymmetric tunneling, illustrated 11-26
audience of document iii-xx
authentication defined 5-3
authentication information element (IE) 10-28
Authentication Priority parameter 5-11, 5-24
Authentication Protocol parameter 4-29
Auth Key Mgmt parameter 6-21
Authority ID Information parameter 5-41, 12-20, 12-21
Authority ID parameter 5-41, 12-20
Authorize APs Against AAA parameter 7-11
Authorize Self Signed Certificate (SSC) parameter 7-11
authorizing access points
using the CLI 7-11
using the GUI 7-10
auto-anchor mobility
configuring
guidelines 11-21
AutoInstall
example operation 4-9
obtaining DHCP addresses for interfaces 4-7
obtaining TFTP server information 4-7
overview 4-6
selecting configuration file 4-8
controllers
using AutoInstall 4-6
configuration files
using AutoInstall 4-6
autonomous access points converted to lightweight mode. See LWAPP-enabled access points
auto-provisioning. See AutoInstall
auto RF, configuring using the configuration wizard 4-6
Average Data Rate parameter 4-44, 4-47
Average Real-Time Rate parameter 4-44, 4-48
Avoid Cisco AP Load parameter 10-14
Avoid Foreign AP Interference parameter 10-14, 11-18
Avoid Non-802.11a (802.11b) Noise parameter 10-14
B
backup controllers
configuring using the CLI7-26to 7-28
described 7-26
backup controllers, configuring7-26to 7-28
bandwidth-based CAC
described 4-50
enabling
using the CLI 4-60
using the GUI 4-53
Base MAC Address parameter 3-26
Beacon Period parameter 4-14
bootup script, for Configuration Wizard 4-4
bridge protocol data units (BPDUs) 3-22
Buffered Log Level parameter D-9
Burst Data Rate parameter 4-44, 4-48
Burst Real-Time Rate parameter 4-44, 4-48
C
CAC
configuring for 7920 phones 6-29
described 4-50
enabling
using the CLI 4-61
using the GUI 4-54
viewing using the CLI 4-62
Canadian compliance statement B-3
Catalyst 3750G Integrated Wireless LAN Controller Switch
described 1-12
logical connectivity diagram and associated software commandsE-4to E-6
caution, defined iii-xxi
CCA Sensitivity Threshold parameter 10-39
CCKM
configuring 6-21
described 6-20
hybrid-REAP groups 12-15
CCX
configuring Aironet IEs
using the CLI 6-37
using the GUI 6-35
described 6-35
viewing a client's version
using the CLI 6-37
CCX Layer 2 client roaming
configuring
using the CLI 4-42
debugging using the CLI 4-43
obtaining information using the CLI 4-42
CCX link test 7-43
CCX radio management
configuring
using the CLI 10-34
debugging using the CLI 10-36
features 10-31
hybrid-REAP considerations 10-31
obtaining information using the CLI10-34to 10-35
CCXv5 clients
location presence enabled 4-83
CCXv5 clients, troubleshootingD-14to D-29
CCXv5 Req button D-21
CCX Version parameter 6-36
CDP > AP Neighbors > Detail page 4-72
CDP > AP Neighbors page 4-72
CDP > Global Configuration page 4-69
CDP > Interface Neighbors > Detail page 4-71
CDP > Interface Neighbors page 4-70
CDP > Traffic Metrics page 4-73
CDP Advertisement Version parameter 4-69
CDP AP Neighbors page 4-71
CDP Protocol Status parameter 4-69
CDP State parameter 4-70
Certificate Authority (CA) certificates
downloading
using the CLI 8-11
using the GUI 8-10
overview 8-10
using with local EAP 5-37, 5-43
Certificate Issuer parameter 5-40
Certificate Password parameter 8-9
Certificate Type parameter 7-11
Change Rules Priority parameter 5-84
Channel Assignment Leader parameter 10-14
Channel Assignment Method parameter 10-13
channel bandwidth, changing from 20 to 40 MHz4-21to 4-22
channels
statically assigning
using the CLI 10-26
Channel Scan Duration parameter 10-17
Check Against CA Certificates parameter 5-40
Check Certificate Date Validity parameter 5-41
chokepoints, for RFID tag tracking 4-77
CIDS Sensor Add page 5-99
CIDS Sensors List page 5-98
CIDS Shun List page 5-101
ciphers
described 6-20
Cisco 2100 Series Wireless LAN Controllers
AutoInstall interfaces 4-7
described 1-9
FCC statement B-8
features not supported 1-9
network connections1-17to 1-18
Cisco 28/37/38xx Integrated Services Router
described 1-11
logical connectivity diagram and associated software commands E-3
versions 1-11
Cisco 4400 Series Wireless LAN Controllers
AutoInstall interfaces 4-7
described 1-9
FCC statement B-9
models 3-4
network connections1-18to 1-19
supporting more than 48 access points3-34to 3-38
Cisco 7920 Wireless IP Phone, guidelines 6-29
Cisco 7921 Wireless IP Phone, guidelines 6-29
Cisco Client Extensions (CCX). See CCX
Cisco Discovery Protocol (CDP)
configuring
using the CLI 4-74
debugging using the CLI 4-76
described 4-66
enabling using the GUI4-69to 4-70
sample network 4-68
supported devices 4-66
viewing neighbors
viewing traffic information
using the CLI 4-75
using the GUI 4-73
Cisco Discovery Protocol parameter 4-70
Cisco high-power switches 7-46
Cisco Logo parameter 9-10
CiscoSecure Access Control Server, using RADIUS 5-4
Cisco Unified Wireless Network (UWN) Solution
illustrated 1-3
Cisco Wireless Control System (WCS), described 1-2
Cisco WiSM
configuring the Supervisor 7204-85to 4-86
guidelines 4-85
logical connectivity diagram and associated software commandsE-2to E-3
SSC key-hash 7-8
support maximums
router chassis 1-10
switch chassis 1-10
CKIP
configuring
using the CLI 6-24
described 6-22
clearing the controller configuration 8-17
Clear Stats button 11-19
CLI
basic commands 2-9
enabling wireless connections 2-9
logging out 2-8
navigating 2-9
troubleshooting commandsD-5to D-7
Client Certificate Required parameter 5-40
client location, using WCS 1-8
client MFP, described 5-62
Client Protection parameter 5-66
client reporting
configuring using the CLID-23to D-26
configuring using the GUID-20to D-23
described D-14
Client Reporting page D-22
client roaming, configuring4-38to 4-43
clients
connecting to WLANs 12-14
viewing CCX version using the CLI 6-37
viewing CCX version using the GUI6-35to 6-37
viewing using the CLI7-52to 7-53
viewing using the GUI7-48to 7-52
Clients > AP > Traffic Stream Metrics page 4-57
Clients > AP page 4-57
Clients > Detail page 4-56, 6-36, 7-23, 7-24, 7-51, D-21
Clients page 4-55, 7-23, 7-44, 7-49
Client Type parameter 7-24
Commands > Reset to Factory Defaults page 4-3
Community Name parameter 4-27
conditional web redirect 6-43
configuring
using the CLI 6-46
using the GUI 6-45
described 6-43
Conditional Web Redirect parameter 6-45, 6-46
Configuration File Encryption Key parameter 8-16
Configuration File Encryption parameter 8-14
configuration files
downloading
uploading
using the CLI 8-15
configuration wizard
described 4-2
configure global credentials
Configure option, for RRM override 10-25
Confirm Password parameter 12-9
Console Log Level parameter D-9
controller failure detection time, reducing 7-26
controller network module
baud rate 3-3
versions 3-4
controllers
configuration
clearing 8-17
erasing 8-18
saving 8-17
connections 1-12
discovery process 7-2
multiple-controller deployment1-4to 1-5
primary, secondary, and tertiary 1-8
resetting factory default settings
using the CLI 4-3
using the GUI 4-3
single-controller deployment1-3to 1-4
synchronizing with location appliance 4-82
types of memory 1-16
upgrading software
Controller Spanning Tree Configuration page 3-26
Controller Time Source Valid parameter 5-66
Control Path parameter 11-23
conventions of documentiii-xxito iii-xxiii
Country Code parameter 7-31
country codes
commonly used 7-28
configuring
using the configuration wizard 4-5
described 7-28
Japanese 7-35
viewing using the CLI 7-33
See also multiple country codes
Country page 7-29
Coverage Exception Level per AP parameter 10-16
coverage hole detection and correction 10-4
CPU Access Control Lists page 5-57
CPU ACL Mode parameter 5-57
Custom Signatures page 5-107
D
Data Path parameter 11-23
Data Rates parameters 4-15
date
configuring manually 4-10
configuring through NTP server 4-10
setting
using the CLI 4-11
using the GUI 4-10
DCA algorithm default value 10-13
DCA Channels parameter 10-14
DCA Sensitivity Level parameter 10-14
debug commands, sending 7-16
debug facility
Default Mobility Group parameter 11-11
Default Routers parameter 6-10
Delivery Traffic Indication Map (DTIM). See DTIM period
Deny Counters parameter 5-55
DES, IPSec data encryption, described 5-9
Description parameter 5-30, 12-10
Designated Root parameter 3-26
Destination parameter 5-53
Destination Port parameter 5-54
device certificates
downloading
using the CLI 8-9
overview 8-8
using with local EAP 5-37, 5-43
DHCP
configuring using the CLI 6-8
configuring using the GUI 6-7
DHCP Addr. Assignment Required parameter 6-8
DHCP option 43, in controller discovery process 7-2
DHCP option 82
described 5-50
example 5-50
DHCP proxy, configuring 4-24
DHCP Scope > Edit page 6-10
DHCP scopes
configuring using the CLI6-11to 6-12
configuring using the GUI6-9to 6-10
described 6-9
DHCP Scopes page 6-9
DHCP server discovery 7-2
DHCP Server IP Addr parameter 6-8
DHCP Server Override parameter 6-8
DHCP servers
configuring using the configuration wizard 4-5
internal 6-6
diagnostic channel
configuring using the CLID-16to D-20
configuring using the GUI D-15
described D-14
Diagnostic Channel parameter D-15
directed roam request, for controller 4-40
Direction parameter 5-54
disabled clients, configuring a timeout 6-13
discovery request timer, configuring 7-27
distribution system ports, described3-4to 3-5
DNS Domain Name parameter 6-10
DNS Servers parameter 6-10
document
audience iii-xx
conventionsiii-xxito iii-xxiii
purpose iii-xx
documentation
feedback iii-xxiii
obtaining iii-xxiii
domain name server (DNS) discovery 7-2
Download button 5-106, 8-9, 8-11, 9-19
Download File to Controller page 5-106, 8-8, 8-10, 8-15, 9-18
DSCP parameter 5-54
DTIM period, configuring for MAC filtering 6-13
DTPC Support parameter 4-15
dynamic channel assignment 10-3
dynamic frequency selection, described7-37to 7-38
dynamic interface
configuring
described 3-8
dynamic transmit power control
configuring 4-15
described 10-3
dynamic WEP, configuring 6-19
E
EAP
setting local timers5-43to 5-44
EAP-FAST Method Parameters page 5-41
EAP-FAST parameter 5-40
EAP Profile Name parameter 5-42
EAP-TLS parameter 5-40
EDCA Profile parameter 4-65
Edit QoS Profile page 4-43
Edit QoS Role Data Rates page 4-47
Egress Interface parameter 9-27
Email Input parameter 9-28
Enable AP Local Authentication parameter 12-18
Enable Check for All Standard and Custom Signatures parameter 5-108
Enable Controller Management to be accessible from Wireless Clients parameter 2-10, 5-49
Enable Counters parameter 5-52
Enable Coverage Hole Detection check box 10-15
Enable CPU ACL parameter 5-57
Enable Dynamic AP Management parameter 3-38
Enable EAP-FAST Authentication parameter 12-20
Enable IGMP Snooping parameter 4-36
Enable LEAP Authentication parameter 12-20
Enable Low Latency MAC parameter 4-65
Enable Server Status parameter 5-33
Encryption Key parameter, for WLANs 6-24
end user license agreementC-2to C-4
enhanced distributed channel access (EDCA) parameters
configuring using the CLI4-65to 4-66
configuring using the GUI4-64to 4-65
enhanced neighbor list
described 4-39
request (E2E), described 4-40
erasing the controller configuration 8-18
Ethernet connection, connecting remotely to CLI 2-8
Ethernet Multicast Mode parameter 4-35
European declaration of conformityB-4to B-5
event reporting, for MFP 5-63
Expedited Bandwidth parameter 4-53
expedited bandwidth requests
described 4-51
enabling
using the CLI 4-60
using the GUI 4-53
Extensible Authentication Protocol (EAP), configuring 6-19
F
factory default settings
resetting using the CLI 4-3
resetting using the GUI 4-3
failover protection1-16to 1-17
Fast Ethernet port 3-4
fast heartbeat timer, enable 7-27
FCC declaration of conformityB-2to B-3
FCC statement
2100 series controllers B-8
4400 series controllers B-9
Federal Information Processing Standards (FIPS). See RADIUS
File Name parameter 8-9, 8-11, 8-13, 8-14, 8-16, 9-19
File Path parameter 8-9, 8-11, 8-13, 8-14, 8-16, 9-19
file transfers 1-14
File Type parameter 8-8, 8-10, 8-12, 8-14, 8-16, 9-18
filter, using to view clients7-49to 7-50
Fingerprint parameter 5-100
flashing LEDs, configuring 7-48
foreign controller, in inter-subnet roaming 11-4
Forward Delay parameter 3-27, 3-28
Fragmentation Threshold parameter 4-14
Friendly Rogue > Create Page 5-85
G
General page 3-32, 4-32, 4-35, 5-29, 5-114, 10-7
Generate Password parameter 9-5
gigabit Ethernet port 3-4
global credentials, override using the CLI 7-6
global credentials, override using the GUI 7-5
global credentials, verify 7-7
Group Mode parameter 10-9, 11-17
Group Name parameter 11-12, 12-17
Group Name parameter, for mobility group 11-12
Group Setup page (on CiscoSecure ACS) 5-21
Guest LAN parameter 9-26
guest N+1 redundancy 11-20
guest user accounts
creating as a lobby ambassador9-4to 9-6
viewing
using the CLI 9-7
using the GUI 9-6
Guest User parameter 5-30, 12-9
Guest User Role parameter 5-30, 12-9
guest WLAN, creating 9-5
GUI
enabling wireless connections 2-9
guidelines 2-2
opening 2-2
using 2-2
H
Headline parameter 9-10
Hello Time parameter 3-27, 3-28
help, obtaining 2-2
hex2pcap, sample output D-32
high-density network
benefits 10-36
example 10-36
overview 10-36
See also pico cell mode
HREAP Group Name parameter 12-12
HREAP Groups > Edit page 12-17, 12-18, 12-19
HREAP Groups page 12-16
H-REAP Local Switching parameter 12-8
HTTP Access parameter 2-3
HTTP Configuration page 2-3
HTTPS Access parameter 2-3
hybrid REAP
access points supported 12-2
authentication process12-2to 12-4
bandwidth restriction 12-2
configuring
access points using the CLI12-13to 12-14
access points using the GUI12-10to 12-13
controller using the GUI12-6to 12-10
guidelines 12-4
illustrated 12-2
number of access points supported 12-2
overview 12-2
hybrid-REAP groups
backup RADIUS server 12-15
CCKM 12-15
configuring using the CLI 12-20
configuring using the GUI12-16to 12-20
described 12-15
example 12-15
local authentication 12-16
Hysteresis parameter 4-41
I
identity networking
overview 5-70
IDS
described 5-98
IDS sensors
configuring
described 5-98
IDS signature events
viewing using the CLI5-112to 5-113
viewing using the GUI5-109to 5-110
IDS signatures
configuring using the CLI5-111to 5-112
configuring using the GUI5-105to 5-109
described 5-102
frequency 5-109
measurement interval 5-109
pattern 5-108
tracking method 5-108
uploading or downloading using the GUI5-105to 5-106
viewing using the CLI5-112to 5-113
viewing using the GUI5-109to 5-110
IGMP Timeout parameter 4-36
IKE
Diffie Hellman Group 5-10
IKE Phase 1 parameter 5-10
Index parameter, for IDS 5-99
infrastructure MFP
components 5-63
described 5-62
Infrastructure MFP Protection parameter 5-65
Infrastructure Protection parameter 5-66
Infrastructure Validation parameter 5-66
Ingress Interface parameter 9-27
Injector Switch MAC Address parameter 7-47
inline power, described 7-45
intelligent power management (IPM) 7-46
inter-controller roaming
described 4-39
example 11-3
Interface Name parameter 6-41
Interface parameter 6-8
interfaces
and identity networking 5-72
assigning WLANs 6-13
configuring
Interfaces > Edit page 3-16, 3-37, 5-56, 9-26
Interfaces > New page 3-15, 3-37
Interfaces page 3-10
interference
defined 10-3
Interference threshold parameter 10-17
Internet Group Management Protocol (IGMP)
configuring using the CLI 4-37
configuring using the GUI 4-36
snooping, described 4-33
inter-subnet mobility 11-7
inter-subnet roaming
described 4-39
Interval parameter 10-33
Intra-Controller Roaming 11-2
intra-controller roaming
described 4-38
illustrated 11-2
Inventory page 7-41
Invoke Channel Update Now button 10-13
Invoke Power Update Now button 10-11
IP Address parameter 4-27, 8-9, 8-10, 8-13, 8-14, 8-16, 9-18
IP Mask parameter 4-27
IPSec parameter 5-9
IPv6 bridging
configuring using the CLI 6-34
configuring using the GUI 6-34
described 6-32
guidelines 6-32
IPv6 bridging and IPv4 web authentication, example 6-33
IPv6 Enable parameter 6-34
J
Japanese country codes 7-35
Japanese regulations for migrating access points from -J to -U regulatory domain7-34to 7-37
K
Keep Alive Count parameter 11-22
Keep Alive Interval parameter 11-22
Key Encryption Key (KEK) parameter 5-8
Key Format parameter 6-24
Key Index parameter 6-23
key permutation
configuring 6-24
described 6-22
Key Permutation parameter 6-24
Key Size parameter 6-23
Key Wrap Format parameter 5-8
Key Wrap parameter 5-8
L
LAG. See link aggregation (LAG)
LAG Mode on Next Reboot parameter 3-32
Last Auto Channel Assignment parameter 10-14
Last Power Level Assignment parameter 10-12
Layer 1 security 5-2
Layer 2
LWAPP discovery 7-2
operation 1-6
security
described 5-2
Layer 2 Security parameter 6-21, 6-23, 6-45
Layer 3
LWAPP discovery 7-2
operation 1-6
security
described 5-3
Layer 3 Security parameter 6-25, 6-26, 6-45, 9-28
LDAP
choosing server priority order 5-33
configuring
local EAP methods supported 5-32, 5-36
LDAP servers, assigning to WLANs5-34to 5-35
LDAP Servers > New page 5-32
LDAP Servers page 5-32
LDAP Servers parameter 5-42
LEAP parameter 5-40
Lease Time parameter 6-10
LEDs
configuring 7-48
for controllers D-2
Lifetime parameter 5-30, 9-5, 12-9
Lightweight Access Point Protocol (LWAPP), described. See LWAPP-enabled access points
lightweight mode, reverting to autonomous mode 7-9
link aggregation (LAG)
configuring neighboring devices 3-33
enabling
using the CLI 3-33
using the GUI 3-32
example 3-29
guidelines 3-31
illustrated 3-30
verifying settings using the CLI 3-33
Link Status parameter 3-20
Link Test
button 7-44
option 7-44
page 7-44
link test
described 7-42
performing
using the CLI 7-45
types of packets 7-42
Link Trap parameter 3-21
load balancing, with RRM 10-5
Load-based AC parameter 4-53
load-based CAC
enabling
using the CLI 4-60
using the GUI 4-53
Load Measurement parameter 10-17
lobby ambassador account
creating using the CLI 9-3
creating using the GUI9-2to 9-3
Lobby Ambassador Guest Management > Guest Users List > New page 9-4
Lobby Ambassador Guest Management > Guest Users List page 9-4, 9-6
local EAP
configuring
debugging 5-46
example 5-37
viewing information using the CLI 5-45
Local EAP Authentication parameter 5-42
Local EAP Profiles > Edit Page 5-40
Local EAP Profiles Page 5-39
Local Management Users > New page 9-3
Local Management Users page 9-2
Local Net Users > New page 5-30, 12-9
Local Net Users page 5-29, 9-6
local network users
configuring using the CLI 5-31
configuring using the GUI5-28to 5-31
local user database, capacity 9-2
location
calibration 10-32
settings, viewing using the CLI4-82to 4-84
location appliance
certificate, installing4-81to 4-82
synchronizing with controller 4-82
location-based services 10-32
location presence 4-83
logical connectivity diagram
Catalyst 3750G Integrated Wireless LAN Controller Switch E-4
Cisco 28/37/38xx Integrated Services Router E-3
Cisco WiSM E-2
logs
long preambles
described 5-47
enabling on SpectraLink NetLink phones
using the CLI 5-48
using the GUI 5-47
LWAPP-enabled access points
configuring a static IP address 7-18
debug commands 7-16
disabling the reset button 7-18
enabling memory core dumps 7-18
guidelines 7-8
Layer 2 discovery 7-2
MAC addresses displayed on controller GUI 7-18
receiving debug commands from controller 7-16
reverting to autonomous mode7-9to 7-10
sending crash information to controller 7-17
sending radio core dumps to controller 7-17
sending SSCs to controller 7-10
LWAPP hybrid-REAP, migrating to 12-16
M
MAC address of access point
displayed on controller GUI 7-18
MAC filtering
DTIM period 6-13
MAC filtering, configuring on WLANs6-12to 6-13
management frame protection (MFP)
configuring
debugging 5-69
guidelines 5-63
types 5-62
Management Frame Protection parameter 5-66
Management Frame Protection Settings page 5-66
management frame validation 5-63
management interface
described 3-6
management interface, overview
configuring
using the CLI 3-12
Management over Wireless feature
described 5-49
enabling
using the CLI 5-49
using the GUI 5-49
Master Controller Configuration page 7-3
Master Controller Mode parameter 7-3
Max Age parameter 3-26
Maximum Age parameter 3-27
maximum local database entries
configuring using the CLI 5-114
configuring using the GUI 5-113
Maximum Local Database Entries parameter 5-29, 5-114
Maximum Retries parameter 9-18
Maximum RF Usage Per AP parameter 4-44
Max RF Bandwidth parameter 4-53, 4-54
MCS data rates 4-18
Member MAC Address parameter 11-12
memory
core dumps from converted APs 7-18
types 1-16
Message Authentication Code Key (MACK) parameter 5-8
Message Authentication Code Key (MACK) parameter. See RADIUS
message logs
configuring
using the GUI D-7
viewing
using the CLI D-13
See also system logging
Message Logs page D-10
Message parameter, for web authentication 9-10
Metrics Collection parameter 4-53
MFP Client Protection parameter 5-65
MFP Frame Validation parameter 5-65
migrating access points from -J to -U regulatory domain7-34to 7-37
Min Failed Client Count per AP parameter 10-15
Minimum RSSI parameter 4-41
mirror mode. See port mirroring, configuring
MMH MIC
configuring 6-24
described 6-22
MMH Mode parameter 6-24
Mobile Announce messages 11-7
Mobility Anchor Config page 11-22, 11-27
Mobility Anchor Create button 11-23
mobility anchors
viewing 11-23
See also auto-anchor mobility
Mobility Anchors option 11-22
Mobility Anchors page 11-22, 11-26
Mobility Group Member > New page 11-11
Mobility Group Members > Edit All page 11-13
mobility groups
configuring
using the CLI 11-15
using the configuration wizard 4-5
with one NAT device 11-8
with two NAT devices 11-9
detecting failed members 11-20
determining when to include controllers 11-7
difference from RF groups 10-6
examples 11-6
failover 11-20
illustrated 11-5
messaging among 11-7
ping requests to members 11-20
using with NAT devices11-7to 11-9
mobility group statistics
types 11-16
viewing using the CLI 11-19
viewing using the GUI11-16to 11-19
Mobility Multicast Messaging > Edit Page 11-14
Mobility Multicast Messaging Page 11-13
mobility ping tests, running 11-29
Mobility Statistics page 11-17
mode button. See reset button
monitor intervals, configuring using the GUI 10-17
Multicast Appliance Mode parameter 3-21
multicast groups
viewing using the CLI 4-37
viewing using the GUI 4-36
Multicast Groups page 4-36
multicast mode
configuring using the GUI4-35to 4-36
enabling using the CLI 4-37
Multicast page 4-36
multiple country codes
configuration guidelines 7-29
configuring using the CLI 7-31
configuring using the GUI7-30to 7-31
multiple country support, using the configuration wizard 4-5
N
NAT devices, in mobility groups11-7to 11-9
Native VLAN ID parameter 12-12
Neighbor Packet Frequency parameter 10-17
Netbios Name Servers parameter 6-10
Netmask parameter 6-10
network analyzer supported software
AirMagnet D-34
Airopeek D-34
Omnipeek D-34
Wireshark D-34
Network Mobility Services Protocol (NMSP) 4-77, 4-84
Network parameter 6-10
Noise Measurement parameter 10-17
note, defined iii-xxi
NTP server
configuring to obtain time and date 4-10
setting in the configuration wizard 4-6
Number of Hits parameter 5-55
O
Omnipeek
See also network analyzer
online help, using 2-2
OpenSSL license issuesC-6to C-8
operating system
software 1-5
organization of documentiii-xxto iii-xxi
Override Global Config parameter 9-21, 9-28
Override Global Credentials check box 7-6
override global credentials CLI command 7-6
Override Interface ACL parameter 5-58
oversized access point images 7-19
over-the-air provisioning (OTAP) 7-2
P
P2P Blocking parameter 6-17
password, default enable 7-4
password, setting global 7-4
Password parameter 5-30, 8-12, 12-9
password recovery mechanism 4-25
PEAP parameter 5-40
peer-to-peer blocking
configuring using the CLI6-17to 6-18
configuring using the GUI6-16to 6-17
described 6-15
guidelines 6-16
Physical Mode parameter 3-21
Physical Status parameter 3-20
pico cell mode
configuring
debugging using the CLI 10-40
guidelines 10-37
versions 10-38
Pico Cell Mode parameter 10-38
ping link test, described 7-42
ping tests, described 11-29
PMK cache lifetime timer 6-22
Pool End Address parameter 6-10
Pool Start Address parameter 6-10
Port > Configure page 3-19
port mirroring, configuring3-21to 3-22
Port Number parameter 3-20, 5-8, 5-23, 5-33, 9-26
Port parameter, for IDS 5-99
ports
on 2100 series controllers 3-2, 3-3, 3-4
on 4400 series controllers 3-2, 3-3, 3-4
on Catalyst 3750G Integrated Wireless LAN Controller Switch 3-3, 3-4
on Cisco 28/37/38xx Series Integrated Services Router 3-3, 3-4, 4-87, 7-13
Ports page 3-18
Power Assignment Leader parameter 10-12
Power Injector Selection parameter 7-46
Power Injector State parameter 7-46
Power Neighbor Count parameter 10-12
power over Ethernet (PoE)
configuring
using the CLI 7-47
Power Over Ethernet (PoE) parameter 3-20
Power Threshold parameter 10-12
preauthentication access control list (ACL)
applying to a WLAN
using the CLI 5-61
for external web server 9-16, 12-9
Preauthentication ACL parameter 5-59, 6-45
Pre-Standard State parameter 7-46
Primary RADIUS Server parameter 12-17
priming access points 7-2
Priority Order > Local-Auth page 5-34
Priority Order > Management User page 5-11, 5-24
Priority parameter 3-27
Privacy Protocol parameter 4-29
Profile Details page D-23
Profile Name parameter 6-4, 9-27, 12-7
protected access credentials (PACs)
overview 8-12
uploading
using the CLI 8-13
using the GUI 8-12
using with local EAP 5-37, 5-41, 5-43, 12-20, 12-21
Protection Type parameter 5-64, 10-30
Protocol parameter 5-53
Protocol Type parameter 4-45
PSK
configuring 6-21
described 6-20
PSK Format parameter 6-21
purpose of document iii-xx
Q
QBSS
configuring using the CLI 6-31
configuring using the GUI6-30to 6-31
described 6-29
guidelines 6-29
QoS
identity networking 5-71
translation values 6-27
with CAC 4-50
QoS profiles
assigning to a WLAN using the CLI 6-28
assigning to a WLAN using the GUI6-27to 6-28
configuring using the CLI4-45to 4-46
configuring using the GUI4-43to 4-45
QoS roles
assigning for use with hybrid-REAP 12-9
configuring using the CLI4-48to 4-49
configuring using the GUI4-46to 4-48
QoS Roles for Guest Users page 4-47
Quality of Service (QoS) parameter 6-28
quarantined VLAN
configuring 3-16
using 12-8
Quarantine parameter 3-16
Query Interval parameter 5-99
Queue Depth parameter 4-44
R
radio core dumps, to controller 7-17
radio measurement requests
configuring
on the CLI 10-34
on the GUI 10-33
overview 10-32
viewing status using the CLI 10-35
radio preamble, described 5-47
radio resource management (RRM)
benefits 10-5
CCX features. SeeCCX radio management
configuring
using the configuration wizard 4-6
configuring monitor intervals
using the GUI 10-17
coverage hole detection
coverage hole detection and correction 10-4
debugging 10-23
disabling dynamic channel and power assignment
using the CLI 10-27
using the GUI 10-27
specifying channels10-12to 10-14
statically assigning channel and transmit power settings
using the CLI 10-26
view using the CLI10-20to 10-22
Wireless > 802.11a/n (or 802.11b/g/n) > RRM > TPC parameter 10-11
radio resource monitoring 10-2
RADIUS
configured on ACS 5-4
configuring
configuring on ACS 5-4
FIPS standard 5-11
KEK parameter 5-12
MACK parameter 5-12
server fallback behavior 5-10
RADIUS server
hybrid-REAP, using with 12-15
RADIUS settings, configuring 5-3
Redirect URL After Login parameter 9-10
Refresh-time Interval parameter 4-69
regulatory information
for 1000 series access pointsB-2to B-8
for 4400 series controllers B-9
related publications iii-xxiii
Remote Authentication Dial-In User Service. SeeRADIUS
Reserved Roaming Bandwidth parameter 4-53, 4-54
reset button
disabling on LWAPP-enabled access points 7-18
using to revert LWAPP-enabled access points to autonomous mode7-9to 7-10
resetting the controller 8-18
Re-sync button 5-102
reverse path filtering (RPF) 11-26
RF Channel Assignment parameter 10-27
RF domain. See RF groups
RF exposure declaration of conformity B-5
RF group leader
described 10-6
viewing 10-9
RF group name
described 10-6
entering 10-7
RF groups
configuring
using the CLI 10-8
using the configuration wizard 4-5
using the GUI 10-7
difference from mobility groups 10-6
viewing status
using the CLI 10-9
RFID tags
described 4-76
formats supported 4-76
number supported per controller 4-77
tracking
configuring using the CLI 4-78
debugging using the CLI 4-80
viewing information using the CLI4-79to 4-80
RF-Network Name parameter 10-7
RLDP
configuring
configuring using the CLI5-80to 5-81
roaming and real-time diagnostics
configuring using the CLID-26to D-29
described D-14
logs
described D-14
roam reason report, described 4-40
rogue access point alarm 10-30
rogue access point detection
enabling using the CLI10-30to 10-31
enabling using the GUI10-28to 10-30
rogue access points
Allowable Classification Type and Rogue State Transitions (table)
Classification Mapping (table) 5-78
classifying 5-77
managing 5-76
RLDP support 5-77
rule-based classification support 5-77
tagging, location, and containment 5-76
viewing and classifying
WCS support for rule-based classification 5-79
Rogue AP Detail Page 5-89
Rogue AP Ignore-List Page 5-93
rogue classification rules, configuring
Rogue Client Detail Page 5-91
Rogue Location Discovery Protocol (RLDP) 5-80
defined 5-76
See Also rogue access points
Rogue Rule > Edit Page 5-84
Rogue Rules > Priority Page 5-84
Rogue States (table)
See also rogue access points
Role Name parameter 4-47
root bridge 3-23
Root Cost parameter 3-26
Root Port parameter 3-26
RRM. See radio resource management (RRM)
RSNA logs
described D-14
Rx Sensitivity Threshold parameter 10-39
S
Save and Reboot button 8-9, 8-11
saving configuration settings 8-17
Scan Threshold parameter 4-41
Scope Name parameter 6-9
Search Clients page 7-50
Secondary RADIUS Server parameter 12-17
Secure Shell Protocol. See SSH
secure web mode
described 2-2
enabling using the CLI 2-4
enabling using the GUI 2-3
security
guidelines iii-xxiii
overview 5-2
Security Policy Completed parameter 6-33
Select APs from Current Controller parameter 12-18
self-signed certificate (SSC) 7-10
self-signed certificate (SSC), LWAPP-enabled access points sending to controller 7-10
Sequence parameter 5-53
serial port
baudrate setting 2-8
connecting 2-7
timeout 2-8
Server Address parameter 5-99
Server Index (Priority) parameter 5-8, 5-23, 5-33
Server IP Address parameter 5-8, 5-23, 5-33
Server Key parameter 5-41, 12-20
Server Mode parameter 5-33
Server Status parameter 5-9, 5-23
Server Timeout parameter 5-9, 5-24, 5-33
service port, described 3-5
service-port interface
configuring
using the CLI 3-14
using the configuration wizard 4-4
described 3-8
Set to Factory Default button 10-18
Severity Level Filtering parameter D-8
Shared Secret Format parameter 5-8, 5-23
Shared Secret parameter 5-8, 5-23
Short Preamble Enabled parameter 5-47
short preambles, described 5-47
show advanced backup-controller command 7-28
show location
using CLI 4-82
Show Wired Clients option 7-24
shunned clients
described 5-101
viewing using the CLI 5-102
viewing using the GUI 5-101
Signature Events Detail page 5-110
Signature Events Summary page 5-109
Signature Events Track Detail Page 5-110
sniffing
using the CLI D-36
described D-34
enable
using the CLI D-36
using the GUI D-34
prerequisites D-34
supported software D-34
SNMP
traps, using the CLI 4-25
SNMP community string
changing default values using the CLI4-27to 4-28
changing default values using the GUI4-26to 4-27
SNMP v1 / v2c Community > New page 4-27
SNMP v1 / v2c Community page 4-26
SNMP v3 users
changing default values
using the CLI 4-29
SNMP V3 Users > New page 4-29
SNMP V3 Users page 4-28
software
upgrading
Source parameter, ACLs 5-53
Source Port parameter 5-54
Spanning Tree Algorithm parameter 3-27
Spanning Tree Protocol (STP)
configuring
described 3-22
spanning-tree root 3-23
Spanning Tree Specification parameter 3-26
SpectraLink NetLink phones
enabling long preambles
using the CLI 5-48
enabling long preambles using the GUI 5-47
overview 5-47
Spectralink Voice Priority parameter 4-65
splash page web redirect 6-43
Splash Page Web Redirect parameter 6-45, 6-46
SSC key-hash, on Cisco WiSM 7-8
SSH, troubleshooting using D-37
SSID
configuring
using the CLI 6-5
using the GUI 6-4
described 6-2
SSL certificate
generating from CLI 2-4
generating from GUI 2-3
loading using the CLI2-6to 2-7
loading using the GUI2-5to 2-6
SSL protocol 2-2
Standard Signature > Detail Page 5-108
Standard Signatures page 5-107
Static Mobility Group Members page 11-11
Status parameter 4-27, 6-4, 6-10, 9-27
STP Mode parameter 3-25
STP Port Designated Bridge parameter 3-24
STP Port Designated Cost parameter 3-24
STP Port Designated Port parameter 3-24
STP Port Designated Root parameter 3-24
STP Port Forward Transitions Count parameter 3-24
STP Port ID parameter 3-24
STP Port Path Cost Mode parameter 3-25
STP Port Path Cost parameter 3-25
STP Port Priority parameter 3-25
STP State parameter 3-24
Supervisor 720
described 4-85
switch, configuring at the remote site12-5to 12-6
Switch IP Address (Anchor) parameter 11-23
SX/LC/T small form-factor plug-in (SFP) modules 3-4
symmetric mobility tunneling
configuring
using the CLI 11-28
using the configuration wizard 4-5
illustrated 11-26
Symmetric Mobility Tunneling Mode parameter 11-27
syslog
described D-14
levels D-9
Syslog Configuration page D-7
Syslog Facility parameter D-8
syslog server
number supported by controller D-8
remove from controller D-8
severity level filtering D-8
Syslog Server IP Address parameter D-8
system logging
configuring
enabling
using the CLI D-10
setting severity level D-9
system logs
viewing
using the CLI D-13
T
TACACS+
accounting 5-18
authentication 5-17
authorization 5-17
choosing authentication priority order 5-11, 5-24
configuring
configuring on ACS5-4to5-6, 5-18to 5-22
viewing administration server logs5-26to 5-28
TACACS+ (Authentication, Authorization, or Accounting) Servers > New page 5-23
TACACS+ (Authentication, Authorization, or Accounting) Servers page 5-22
TACACS+ (Cisco) page (on CiscoSecure ACS) 5-20
TACACS+ Administration .csv page (on CiscoSecure ACS) 5-27, 5-28
technical support, obtaining iii-xxiii
telemetry 4-76
Telnet, troubleshooting using D-37
terminal emulator, settings 2-8
text2pcap, sample output D-32
TFTP server, guidelines 2-5, 5-105, 8-2, 8-8, 8-10, 8-12
time
configuring manually 4-10
configuring through NTP server 4-10
setting
using the CLI 4-11
using the GUI 4-10
time-length-values (TLVs), supported for CDP4-66to 4-67
timeout, configuring for disabled clients 6-13
Timeout parameter 9-19
Time Since Topology Changed parameter 3-26
Time to Live for the PAC parameter 5-41, 12-20
time zone, setting
from the CLI 4-12
from the GUI 4-11
TKIP
described 6-19
parameter 6-21
Topology Change Count parameter 3-26
traffic specifications (TSPEC) request
described 4-51
examples 4-51
traffic stream metrics (TSM)
described 4-52
enabling
using the CLI 4-61
using the GUI 4-53
viewing statistics
Transition Time parameter 4-41
transmit power
statically assigning using the CLI 10-26
statically assigning using the GUI10-24to 10-26
transmit power levels, described 10-25
Transmit Power parameter 10-39
transmit power threshold, decreasing 10-18
troubleshooting
access point join process7-13to 7-16
using Telnet or SSH D-37
tunnel attributes, and identity networking 5-73
Tx Power Level Assignment parameter 10-27
Type parameter 6-4, 9-27, 12-7
U
U-APSD
described 4-52
viewing status
using the CLI 4-62
using the GUI 4-56
UDP, use in RADIUS 5-4
unicast mode, described 4-33
unique device identifier (UDI)
described 7-41
retrieving
using the CLI 7-42
Upload File from Controller page 8-12, 8-14
URL parameter 9-17
Use AES Key Wrap parameter 5-7
User Access Mode parameter 9-3
user accounts, managing9-1to 9-20
User Attribute parameter 5-33
User Base DN parameter 5-33
User Credentials parameter 5-34
User Datagram Protocol. See UDP
username, setting global 7-4
User Name parameter 5-30, 12-9
User Object Type parameter 5-33
User parameter 8-12
User Profile Name parameter 4-29
V
Validity parameter 8-12
VCI strings 7-12
Verify Certificate CN Identity parameter 5-41
video settings
configuring
using the CLI 4-61
viewing using the CLI4-62to 4-64
viewing using the GUI4-55to 4-60
virtual interface
configuring
using the CLI 3-14
using the configuration wizard 4-5
described 3-7
VLAN Identifier parameter
for AP-manager interface 3-11
for dynamic interface 3-15, 3-16
for management interface 3-11
VLAN ID parameter 12-13
VLAN interface. See dynamic interface
VLAN Mappings
button 12-12
page 12-12
VLANs
described 3-8
guidelines 3-10
VLAN Support parameter 12-12
VLAN tag, and identity networking 5-72
Voice & Video Optimized parameter 4-65
Voice Optimized parameter 4-65
voice-over-IP (VoIP) telephone roaming, described 4-39
Voice RSSI parameter 10-15
voice settings
configuring
viewing
VPN Gateway Address parameter 6-25
VPN passthrough
configuring using the CLI 6-25
configuring using the GUI 6-25
W
warnings
definediii-xxiito iii-xxiii
webauth.tar files 9-21
webauth bundle 9-17
web authentication
described 9-7
successful login page 9-9
web authentication, WLAN methods9-21to 9-23
Web Authentication Login page
assigning per WLAN
using the CLI 9-22
using the GUI 9-21
choosing the default
customized example 9-20
customizing from an external web server
using the CLI 9-17
default 9-8
downloading a customized login page
guidelines 9-17
using the CLI 9-19
modified default example 9-13
verifying settings using the CLI 9-20
Web Authentication option 9-28
Web Authentication Type parameter 9-10, 9-17, 9-19
Web Auth Type parameter 9-21, 9-28
web-based authentication, configuring 6-26
web-browser security alert 9-7
web mode
described 2-2
enabling using the CLI 2-4
enabling using the GUI 2-3
Web Passthrough option 9-28
Web Policy parameter 5-59, 6-45
Web Redirect. See WLANs
web redirect feature 6-43
Web Server IP Address parameter 9-17
WEP keys, configuring 6-18
WGB parameter 7-23
WGB Wired Clients page 7-24
wired guest access
configuration overview 9-25
configuring using the CLI9-29to 9-34
configuring using the GUI9-25to 9-29
guidelines 9-25
one-controller example 9-24
two-controller example 9-24
troubleshooting
using wireless sniffing D-34
Wireless > 802.11a/n (or 802.11b/g/n) > Network parameter 10-37
Wireless > 802.11a/n (or 802.11b/g/n) > Pico Cell parameter 10-37
Wireless > 802.11a/n or 802.11b/g/n > RRM > Coverage parameter 10-15
Wireless > 802.11a/n or 802.11b/g/n > RRM > DCA parameter 10-12
Wireless > 802.11a/n or 802.11b/g/n > RRM > General parameter 10-16
wireless sniffing, prerequisites D-34
Wireshark
See also network analyzer D-34
WLAN
assign web login, login failure, and logout pages
using the CLI 9-22
using the GUI 9-21
web authentication methods9-21to 9-23
wired security solution 1-6
WLAN override
configuring using the CLI 6-38
configuring using the GUI6-37to 6-38
WLAN Override parameter 6-37
WLAN Profile parameter 5-30, 12-9
WLANS
conditional web redirect 6-43
WLANs
checking security settings 6-19
configuring conditional web redirect6-43to 6-46
configuring static and dynamic WEP 6-19
connecting clients to 12-14
creating
using the CLI 6-5
deleting
using the CLI 6-5
using the GUI 6-3
described1-13, 3-8to3-10, 6-2to 6-3
MAC filtering
DTIM period, setting6-13to 6-15
splash page web redirect 6-43
using the same SSID 6-3
WLANs > Edit (Advanced) page 5-58, 5-65, 5-75, 6-34, D-15
WLANs > Edit (QoS) page 6-30
WLANs > Edit (Security > AAA Servers) page 5-34, 5-42, 6-46, 9-21
WLANs > Edit (Security > Layer 2) page 6-21, 6-23
WLANs > Edit (Security > Layer 3) Page 6-45
WLANs > Edit (Security > Layer 3) page 5-59, 6-25, 6-45, 9-28
WLANs > Edit page 6-4, 9-27, 12-7
WLANs > New page 6-4, 9-27, 12-7
WLAN SSID parameter 6-4, 6-41, 9-5, 9-27, 12-7
WMM
described 6-29
with CAC 4-50
WMM parameter 4-65
WMM Policy parameter 6-30
workgroup bridges (WGBs)
debugging 7-25
described 7-19
illustrated 7-20
sample configuration 7-22
viewing status
using the CLI 7-25
WPA1+WPA2
configuring
using the CLI 6-21
described 6-19
WPA2 Policy parameter 6-21
WPA Policy parameter 6-21