Wips support, Trusted host management, Apache certificate management – Brocade Mobility 5181 Access Point Product Reference Guide (Supporting software release 4.4.0.0) User Manual
Page 16: Adaptive ap
2
Brocade Mobility 5181 Access Point Product Reference Guide
53-1002516-01
New features
1
WIPS support
An access point can radio can function as a Wireless Intrusion Protection System (WIPS) sensor
and upload sensor mode operation information to a dedicated WIPS server.
WIPS protects your wireless network, mobile devices and traffic from attacks and unauthorized
access. WIPS provides tools for standards compliance and around-the-clock 802.11a/b/g wireless
network security in a distributed environment. WIPS allows administrators to identify and
accurately locate attacks, rogue devices and network vulnerabilities in real time and permits both a
wired and wireless lockdown of wireless device connections upon acknowledgement of a threat.
For use in configuring the access point for WIPS support, see
“Configuring WIPS server settings”
Trusted host management
Trusted subnet management restricts Mobility 5181 Access Point LAN1, LAN2 and WAN interface
access (via SNMP, HTTP, HTTPS, Telnet and SSH) to a set of user defined trusted host or subnets.
Only hosts with matching subnet (or IP) addresses are able to access the access point. Enabling
the feature denies access from any subnet not defined as trusted. Once a set of trusted hosts is
defined and applied, the settings can be imported and exported as a part of the access point’s
configuration import/export functionality.
For information on defining a set of trusted hosts for exclusive access point access, see
Apache certificate management
Apache certificate management allows the update and management of security certificates for an
Apache HTTP server. This allows users to upload a trusted certificate to their AP. When a client
attaches to it with a browser, a warning message pertaining to the certificate no longer displays.
Apache certificate management utilizes the access point’s existing Certificate Manager for the
creation of certificates and keys. The certificate can then be loaded into the apache file system
using a command.
For information on defining the Apache certificate management configuration, see
Adaptive AP
An adaptive AP (AAP) is a Mobility 5181 Access Point that can adopt like a Mobility 300. The
management of an AAP is conducted by a controller, once the access point connects to a Brocade
Mobility RFS6000 Controller or Mobility RFS7000 Controller and receives its AAP configuration.
An AAP provides:
•
local 802.11 traffic termination
•
local encryption/decryption
•
local traffic bridging
•
the tunneling of centralized traffic to the wireless controller
For a information overview of the adaptive AP feature as well as how to configure it, refer to