Академический Документы
Профессиональный Документы
Культура Документы
Table
of
Contents
Antenna
.......................................................................................................................................
3
Wireless traffic:
..........................................................................................................................
4
Reset
the
Wireless
LAN
Controller:
.............................................................................................
4
Start
up
Configuration:
....................................................................................................................
4
WLC
Configuration
Backup
............................................................................................................
5
Upload configuration file using GUI
..........................................................................................................
5
Upload configuration file using CLI
...........................................................................................................
5
Creating
accounts
on
WLC
..............................................................................................................
6
Creating
a
guest
Access
Account
Using
the
lobby
Ambassador
Option
...........................
6
Creating a Lobby Ambassador Account Using the Controller GUI
................................................
6
Creating a Lobby Ambassador Account Using the Controller CLI
.................................................
7
Creating
Guest
User
Accounts
Using
the
Controller
GUI
......................................................
7
Using
the
GUI
to
View
Guest
Accounts
........................................................................................
8
Using
the
CLI
to
View
Guest
Accounts
........................................................................................
8
Banner
..........................................................................................................................................
9
Using
the
GUI
to
Download
a
Login
Banner
File
.....................................................................
9
Using
the
CLI
to
Download
a
Login
Banner
File
...................................................................
10
Web access Security
...............................................................................................................
11
Enable
secure
web
mode
(HTTPS)
using
GUI
.......................................................................
11
Enable
web
mode
using
the
controller
CLI
............................................................................
11
Save configuration
..................................................................................................................
12
Antenna
1. The
two
factors
involved
in
dealing
with
antennas
are
polarity
and
Diversity.
Briefly
explain
each
factor.
2. There
are
two
types
of
antenna,
Omnidirectional
and
Directional.
Explain
how
they
operate
and
what
are
the
differences.
Use
examples
for
each
type.
3. What
is
the
model
of
Access
Point
used
in
Laboratory?
How
many
antenna
it
has?
What
is
the
type
of
antennas?
Wireless traffic:
Reset the Wireless LAN Controller:
During
loading
process
choose
option
5
to
clear
the
previous
configuration.
When
it
reloads
for
the
second
time
choose
option
1.
Start up Configuration:
Follow the procedure in previous lab experiment to configure the Figure-1 topology.
A lobby ambassador account is used to assign guest access accounts. You can create a lobby ambassador account on the controller through either its GUI or the CLI. Creating a Lobby Ambassador Account Using the Controller GUI To create a lobby ambassador account on the controller using the controller GUI, follow these Step 1 Click Management > Local Management Users. Note! This Local Management Users window lists the names and access privileges of the current local management users. You can delete any of the user accounts from the controller by selecting the Remove option from the blue arrow drop-down menu next to that account. However, deleting the default administrative user prohibits both GUI and CLI access to the controller. Therefore, you must create a user with administrative privileges (Read/Write) before you remove the default user. Step 2 Click New. Step 3 Step 4 In the User Name field, enter a username. In the Password and Confirm Password fields, enter a password. Note! Passwords are case sensitive. Step 5 Select LobbyAdmin from the User Access Mode drop-down menu. This option enables the lobby ambassador to create guest user accounts. Note! The ReadOnly option in the User Access Mode menu creates an account with read-only privileges, and the ReadWrite an option creates an administrative
Step 6 Step 7
account with both read and write privileges. Click Apply to see your changes. The new lobby ambassador account appears in the list of local management users. Click Save Configuration to save your changes.
Creating a Lobby Ambassador Account Using the Controller CLI Use this command to create a lobby ambassador account using the controller CLI: config mgmtuser add lobbyadmin_username lobbyadmin_pwd lobby-admin
Follow these steps to create guest user accounts using the controller GUI after you have created the Lobby Ambassador account: Note! A lobby ambassador cannot access the controller CLI and therefore can only create guest user accounts from the controller GUI. Step 1 Log into the controller as the lobby ambassador, using the username and password specified in the Creating a Lobby Ambassador Account Using the Controller GUI section above. Step 2 Click New to create a guest user account. Step 3 In the User Name field, enter a name for the guest user. You can enter up to 24 characters. Step 4 Perform one of the following: If you want to generate an automatic password for this guest user, check the Generate Password check box. The generated password is entered automatically in the Password and Confirm Password fields. If you want to create a password for this guest user, leave the Generate Password check box unchecked and enter a password in both the Password and Confirm Password fields. Note! Passwords can contain up to 24 characters and are case sensitive. Step 5
From the Lifetime drop-down boxes, choose the amount of time (in days, hours, minutes, and seconds) that this guest user account is to remain active. A value of zero (0) is not valid for the lifetime parameter.
Default: 1 day Range: 5 minutes to 30 days Step 6 From the WLAN SSID drop-down menu, choose the SSID to be used by the guest user. The only WLANs that are listed are those, which have Layer 3 web authentication configured. Step 7 In the Description field, enter a description of the guest user account. You can enter up to 32 characters. Click Apply to commit your changes. Step 8 Repeat this procedure to create any additional guest user accounts.
Note A lobby ambassador cannot access the controller CLI interface and therefore can create guest user accounts only from the controller GUI.
Banner
In controller software release 6.0 or later releases, you can download a login banner file using either the GUI or the CLI. The login banner is the text that appears on the page before user authentication when you access the controller GUI or CLI using Telnet, SSH, or a console port connection. You save the login banner information as a text (*.txt) file. The text file cannot be larger than 1500 bytes and cannot have more than 18 lines of text.
Here is an example of a login banner: Unauthorized access prohibited. Contact sysadmin@corp.com for access.
Click Download to download the login banner file to the controller. A message appears indicating the status of the download.
10
11
This command allows users to access the controller GUI using https://ip-address. The default value is enabled. Secure web mode is a secure connection. Enable HTTPS and Disable HTTP Step 3 To enable or disable secure web mode with increased security, enter this command: config network secureweb cipher-option high {enable | disable} This command allows users to access the controller GUI using https://ip-address but only from browsers that support 128-bit (or larger) ciphers. The default value is disabled. Step 4 To enable or disable SSLv2 for web administration, enter this command: config network secureweb cipher-option sslv2 {enable | disable} If you disable SSLv2, users cannot connect using a browser configured with SSLv2 only. They must use a browser that is configured to use a more secure protocol such as SSLv3 or later. The default value is enabled. Step 5 To verify that the controller has generated a certificate, enter this command: show certificate summary Information similar to the following appears: Web Administration Certificate................. Locally Generated Web Authentication Certificate................. Locally Generated Certificate compatibility mode:................ off
Save configuration
Save
the
configuration
file
on
TFTP
server
and
keep
it
for
the
next
lab.
12