-
Cisco Wireless Control System Configuration Guide, Release 4.0
-
Preface
-
Overview
-
Getting Started
-
Configuring Security Solutions
-
Performing System Tasks
-
Adding and Using Maps
-
Monitoring Wireless Devices
-
Managing WCS User Accounts
-
Configuring Mobility Groups
-
Using Templates
-
Maintaining WCS
-
Configuring Hybrid REAP
-
Events and Alarms
-
WCS and End User Licenses
-
Supported Country Codes
-
Conversion of a WLSE Autonomous Deployment to a WCS Controller Deployment
-
Index
-
Table Of Contents
Numerics - A - B - C - D - E - F - G - H - I - K - L - M - N - O - P - Q - R - S - T - U - V - W -
Index
Numerics
802.11a policy name 9-29
802.11a voice templates 9-36
802.11b/g radio templates 9-32
802.11b/g RRM interval template 9-39
802.11b/g RRM threshold templates 9-38
802.11b/g voice templates 9-35
802.11 counters report 6-9
802.11 security trap 9-43
802.1X 9-11
A
AAA override 9-9
AAA traps 9-43
access control list template 9-21
access point
configuring for hybrid REAP 11-9
access point/radio templates 9-47
access point authentication and MFP templates 9-23
Access point authorization 3-6
access point authorization template 9-20
access point load
avoiding 9-30
Access point placement 5-16
access point placement 5-16
access points
converting to LWAPP C-2
access points, adding to maps 5-14 to 5-16
access point templates
adding 9-47
access point traps 9-43
account expiry 7-7
ACL template 9-21
add config groups 8-13
adding access point templates 9-47
adding a license A-5
adding a mobility anchor 9-10
adding controllers from config group 8-15
adding controller templates 9-2
adding guest user accounts 7-5
adding templates from config group 8-15
add known rogue 9-40
add new rule 9-21
administration menu 2-15
Advanced Options
definition 5-13
Aironet IE 9-9
alarms 12-1
alarm trigger threshold 9-24
applying calibration models 5-31
applying config groups 8-16
applying controller templates 9-46
apply to controllers 7-6
AP policies 3-6
audience of document xvi
auditing config groups 8-16
authentication process
Hybrid REAP 11-2
automatic backups, scheduling 10-4
automatic client exclusion 9-10
avoid access point load 9-30
avoid foreign AP interference 9-30
avoid non-802.11 noise 9-31
B
backing up the WCS database
on Windows 10-5
backup and restore license A-6
Bridging link information 6-12
buildings
adding to a campus map 5-3
adding to WCS database 5-4
C
Calibration models
monitoring 5-35
calibration models 5-31
calibration models, applying 5-31
campus map, adding to WCS database 5-2
cascade reboot 8-17
caution, defined xvii
channels
allowed per country B-2 to B-8
monitoring on a floor map 5-28
channels on a floor map 5-28
checking the status of WCS
on Linux 10-2
on Windows 10-2
Cisco.com, obtaining documentation xvii
Cisco UDI 5-12
Cisco Unified Wireless Network Solution 5-35
overview 1-2
Cisco WCS base A-2
Cisco WCS location A-2
Cisco Wireless LAN Solution
overview 1-2
CKIP 9-12
client devices
connecting to WLANs 11-12
client exclusion
happening automatically 9-10
client related traps 9-43
clients
map 6-6
monitoring on a floor map 5-29
parameters 5-29
clients, monitoring on floor map 5-29
command buttons 2-16
config group
adding controllers 8-15
adding templates 8-15
configuring 8-14
downloading IDS signatures 8-18
downloading sw to controllers 8-17
removing controllers 8-15
removing templates 8-15
config groups
applying 8-16
auditing 8-16
creating 8-13
downloading customized webauth 8-19
rebooting 8-17
configure menu 2-15
configuring an access point for hybrid REAP 11-9
configuring config group 8-13
configuring firewall for WCS 3-5
configuring Hybrid REAP 11-1
Configuring IDS 3-7
Configuring IDS signatures 3-8
configuring template
ACL 9-21
configuring templates
802.11a policy name 9-29
802.11a voice 9-36
802.11b/g radio 9-32
802.11b/g RRM interval 9-39
802.11b/g RRM threshold 9-38
802.11b/g voice 9-35
access point/radio 9-47
access point authentication and MFP 9-23
access point authorization 9-20
file encryption 9-12
guest users 9-18
known rogue access point 9-40
local management user 9-45
local net users 9-16
MAC filter 9-19
QoS 9-3
RADIUS accounting 9-15
RADIUS authentication 9-14
syslog 9-45
Telnet SSH 9-44
traffic stream metrics QoS 9-5
trap control 9-42
trap receiver 9-41
web authentication 9-24
WLAN 9-7
configuring the controller for hybrid REAP 11-6
configuring the switch
for hybrid REAP 11-5
connecting client devices
to WLANs 11-12
Connecting to the Guest WLAN 3-17
controller
configuring for hybrid REAP 11-6
controllers
adding to WCS database 4-2
pinging network devices 6-7
specified 1-2
viewing status and configurations 6-7
controller templates
adding 9-2
applying 9-46
conventions of document xvii
converting WLSE autonomous to WCS controller C-1
Counters report
for 802.11 6-9
country codes, supported B-1 to B-8
coverage holes
finding 6-6
monitoring on a floor map 5-29
coverage holes, monitoring 5-29
cranite 9-11
creating a lobby ambassador account 7-4
Creating a network design 5-19
creating a network design 5-19
creating calibration models 5-30
creating config groups 8-13
Creating guest user accounts 7-3
CSV file format 9-17
customized webauth
downloading 8-19
Customized Web authentication 3-14
customized web authentication
downloading 9-26
Custom signature 3-11
D
Deleting a guest user 3-17
deleting a license A-6
deleting guest user templates 7-7
designing a network 5-19
DHCP server
overriding 9-10
document
audience xvi
conventions xvii
organization xvi
purpose xvi
documentation
DVD xviii
feedback xviii
ordering xviii
downloading a customized web authentication page 9-26
downloading customized webauth 8-19
Downloading customized web authentication 3-14
Downloading IDS signatures 3-9
downloading IDS signatures
from your config group 8-18
downloading sw to controllers
after adding config group 8-17
downstream delay 9-6
downstream packet loss rate 9-6
DTIM 9-29
E
editing guest users 7-6
Editing signature parameters 3-12
Enabling Web login 3-14
end user license agreement A-6 to A-9, A-10
event notification 1-5
Events 12-1
events 12-1
F
file encryption template 9-12
firewall, configuring for WCS 3-5
Floor maps
modifying appearance 5-34
floor plans
adding to a campus building 5-5 to 5-6
adding to a standalone building 5-7 to 5-8
enhancing with map editor 5-8
foreign access point interference
avoiding 9-30
fortress 9-11
Frame type 3-11
G
generate password 9-18
Global settings
for standard and custom signatures 3-12
Guest user
deleting 3-17
Guest user accounts
creating 7-3
guest user accounts
adding 7-5
managing 7-5
guest users
viewing and editing 7-6
guest user templates 9-18
deleting 7-7
Guest WLAN
connecting 3-17
H
heat map
described 5-15
Heatmap cutoff 5-35
help menu 2-15
Hierarchy of Mesh parent to child 6-11
Hybrid 11-4
Hybrid REAP
Hybrid REAP local switching 9-10
I
IDS 3-7
IDS event correlation 12-3
IDS sensors 3-7
IDS signature attacks
viewing 12-2
IDS signatures 3-8
downloading 3-9
downloading from config group 8-18
uploading 3-8
importing the location appliance into WCS 10-8
information elements
Aironet 9-9
installing a license A-4
installing WCS
for WLSE conversion C-2
inter-subnet roaming 8-4
Intrusion Detection Systems 3-7
K
KEK
key encryption key 9-14
key wrap 9-14
known rogue access point templates 9-40
L
laptop icon 6-5
Layer 1 security solutions 3-2
Layer 2 security solutions 3-2
Layer 3 security solutions 3-2
Layer 3 to Layer 2 mode, converting Cisco Wireless LAN Solution 3-4
LEAP authentication
requirements 8-7
license
adding A-5
backup and restore A-6
deleting A-6
license agreement A-6 to A-9, A-10
license installation A-4
license management A-5
licenses A-2
license types A-2
licensing
on WLSE network management C-3
link aggregation (LAG)
guidelines 11-4
Link test
running 6-12
Link test result 6-13
Lobby ambassador 7-3
lobby ambassador account
creating 7-4
local management user template 9-45
local net users template 9-16
local switching
Hybrid REAP 9-10
location accuracy
using testpoints 5-35
location appliance importing 10-8
location appliances
adding to WCS database 4-2
relationship with WCS Location 1-5
location menu 2-15
location upgrade A-2
logging 10-16
logging in
to the WCS user interface 7-4
logging into the WCS user interface 2-11 to 2-13
login.html 3-15
long preambles, enabling for SpectraLink NetLink phones 4-4
M
MAC filtering 9-12
MAC filter template 9-19
MAC frequency 3-11
MAC information 3-11
MACK
message authenticator code keys 9-14
Maintain Image Aspect Ratio 5-30
Management Frame Protection 3-6
management frame protection 9-23
managing guest user accounts 7-5
managing licenses A-5
Map Editor
general notes and guidelines 5-8
map editor, enhancing floor plans 5-8
maps
menu bar 2-14
Mesh tree
viewing 6-11
message integrity check information element 9-23
metrics
in QoS 9-5
MFP 3-6
MFP signature generation 9-12
MFP templates 9-23
MIC IE 9-23
mobility 8-2
mobility anchor
adding 9-10
mobility anchors 8-10
mobility groups, configuring 8-7
Modifying the appearance of floor maps 5-34
Monitoring calibration models 5-35
monitoring channels on a floor map 5-28
monitoring clients on a floor map 5-29
monitoring coverage holes 5-29
Monitoring outdoor areas 5-30
monitoring predicted coverage 5-26
monitoring transmit power levels 5-28
monitor menu 2-14
N
network design 5-19
network protection 3-7
Network Summary page 2-11, 6-8
noise
avoid non-802.11 9-31
note, defined xvii
NTP server template 9-3
O
open source terms A-10 to A-12
organization of document xvi
Outdoor areas
monitoring 5-30
outdoor areas, adding to a campus map 5-4 to 5-5
overview
WCS 1-3
P
packet jitter 9-5
packet latency 9-5
packet loss 9-5
packet loss rate 9-6
pico cell mode 9-30
pinging network devices from a controller 6-7
placement of access points 5-16
planning mode 5-11
PLR 9-6
policy manager solutions 3-3
Predicted Coverage 5-26
predicted coverage, monitoring ?? to 5-27
Prerequisites 2-2
Present map 6-5
product security
overview xix
reporting problems xix
protection type 9-24
publications and information, obtaining xxi
purpose of document xvi
Q
QoS templates 9-3
Quiet time 3-11
R
radio resource management 9-30
RADIUS accounting template 9-15
RADIUS authentication template 9-14
rebooting config groups 8-17
Recent map 6-5
related publications xvii
removing controllers from config group 8-15
removing templates from config group 8-15
Report
for 802.11 counters 6-9
for voice metric 6-10
for voice statistics 6-9
Reports
for voice TSM 6-10
restoring WCS database on Linux 10-7
Retrieving UDI 6-13
RF calibration model, creating 4-5
RF calibration tool 1-7
RF prediction heat map 5-16, 5-27
RF profile traps 9-43
RF update traps 9-43
roaming 8-2
rogue access points
acknowledging 6-4
alarm monitor 6-3
detecting and locating 6-2 to 6-4
map 6-4
solutions for 3-3
rogue access point templates 9-40
RRM 9-30
RRM intervals 9-39
RRM thresholds 9-38
rules
adding 9-21
Running a link test 6-12
S
sequence parameter 9-22
Service Options
definitions 5-12
service request
definitions of severity xxi
submitting xx
Shunned clients 3-7
sidebar area 2-15
skull-and-crossbones indicator 6-3
SNMP authentication 9-42
software
downloading config groups to controllers 8-17
software, updating 4-4
SpectraLink NetLink phones, enabling long preambles 4-4
Standard signature 3-11
starting WCS
on Linux 2-10
on Windows 2-10
static WEP 9-11
static WEP-802.1X 9-11
statistics reports, viewing 6-9
status, checking 10-2
stopping WCS
on Linux 10-3
on Windows 10-3
supported Cisco WLSE management stations C-2
Sweep Client Power for Location 5-35
switch
configuring for hybrid REAP 11-5
syslog templates 9-45
System requirements 2-2
T
technical assistance, obtaining xx to xxi
technical support and documentation website xx
Telnet SSH templates 9-44
templates
using 9-1
Testpoints 5-35
traffic indicator message 9-29
traffic stream metrics QoS status 9-6
traffic stream metrics QoS template 9-5
transmit power level 9-30
transmit power levels
monitoring on a floor map 5-28
supported by country B-2 to B-8
values 5-28
transmit power levels, monitoring 5-28
trap
802.11 security 9-43
trap control templates 9-42
trap receiver template 9-41
traps
AAA 9-43
access point 9-43
client related 9-43
RF profile 9-43
RF update 9-43
WPS 9-43
U
UDI
retrieving on controllers and access points 6-14
uninstalling WCS
on Linux 10-14
on Windows 10-14
unique device identifier 6-14
Update map view 6-11
updating system software 4-4
upgrading to Linux 4
during WLSE conversion C-3
upgrading WCS
on Linux 10-15
on Windows 10-15
Uploading IDS signatures 3-8
upstream delay 9-6
upstream packet loss rate 9-6
User accounts
for guest 7-3
user groups 7-2
User Interface 2-14
using template
ACL 9-21
using templates 9-1
802.11a policy name 9-29
802.11a voice 9-36
802.11b/g radio 9-32
802.11b/g RRM interval 9-39
802.11b/g RRM threshold 9-38
802.11b/g voice 9-35
access point/radio 9-47
access point authentication & MFP 9-23
access point authorization 9-20
file encryption 9-12
guest users 9-18
known rogue access point 9-40
local management user 9-45
local net users 9-16
MAC filter 9-19
NTP server 9-3
QoS 9-3
RADIUS accounting 9-15
RADIUS authentication 9-14
syslog 9-45
Telnet SSH 9-44
traffic stream metrics QoS 9-5
trap control 9-42
trap receiver 9-41
web authentication 9-24
WLAN 9-7
V
View Filters icon 5-26
viewing guest users 7-6
viewing IDS signature attacks 12-2
Viewing IDS signature events 3-13
Viewing Mesh tree 6-11
Viewing shunned clients 3-7
Voice metric report 6-10
Voice statistics report 6-9
Voice TSM reports 6-10
W
WCS
checking status
on Linux 10-2
on Windows 10-2
installing 2-3
overview 1-3
servers supported 1-3
starting
on Linux 2-10
on Windows 2-10
stopping
on Linux 10-3
on Windows 10-3
uninstalling
on Linux 10-14
on Windows 10-14
upgrading
on Linux 10-15
on Windows 10-15
viewing statistics reports 6-9
WCS Base, described 1-6
WCS controller deployment
from WLSE autonomous C-1
WCS database
adding controllers 4-2
adding location appliances 4-2
backing up
on Windows 10-5
restoring
on Linux 10-7
on Windows 10-6
scheduling automatic backups 10-4
WCS licenses A-2
WCS Location
relationship with Cisco location appliances 1-5
WCS user accounts
adding 7-2
changing passwords 7-3
deleting 7-3
WCS user interface 7-4
web authentication template 9-24
Web authentication types 3-14
Wireless Control System (WCS)
WLAN templates 9-7
WLSE autonomous deployment conversion C-1
WLSE management stations C-2
WLSE upgrade A-2
WMM policy 9-9
WPA1 + WPA2 9-12
WPS traps 9-43