Using the cli to authorize access points – Cisco WIRELESS LAN CONTROLLER OL-17037-01 User Manual

Page 24

Advertising
background image

7-24

Cisco Wireless LAN Controller Configuration Guide

OL-17037-01

Chapter 7 Controlling Lightweight Access Points

Autonomous Access Points Converted to Lightweight Mode

c.

From the Certificate Type drop-down box, choose MIC, SSC, or LSC.

d.

Click Add. The access point appears in the access point authorization list.

Note

To remove an access point from the authorization list, hover your cursor over the blue drop-down
arrow for the access point and choose Remove.

Note

To search for a specific access point in the authorization list, enter the MAC address of the access
point in the Search by MAC field and click Search.

Using the CLI to Authorize Access Points

Using the controller CLI, follow these steps to authorize access points.

Step 1

To configure an access point authorization policy, enter this command:

config auth-list ap-policy {authorize-ap {enable | disable} | authorize-lsc-ap {enable | disable}}

Step 2

To configure an access point to accept manufactured-installed certificates (MICs), self-signed
certificates (SSCs), or local significant certificates (LSCs), enter this command:

config auth-list ap-policy {mic | ssc | lsc {enable | disable}}

Step 3

To add an access point to the authorization list, enter this command:

config auth-list add {mic | ssc | lsc} ap_mac [ap_key]

where ap_key is an optional key hash value equal to 20 bytes or 40 digits.

Note

To delete an access point from the authorization list, enter this command:
config auth-list delete ap_mac.

Step 4

To view the access point authorization list, enter this command:

show auth-list

Information similar to the following appears:

Authorize MIC APs against AAA ....................... disabled

Authorize LSC APs against Auth-List ................. disabled

Allow APs with MIC - Manufactured Installed C ....... enabled

Allow APs with SSC - Self-Signed Certificate ........ enabled

Allow APs with LSC - Locally Significant Cert ....... enabled

Mac Addr Cert Type Key Hash

----------------------- ---------- ---------------------------------------------

00:12:79:de:65:99

SSC

ca528236137130d37049a5ef3d1983b30ad7e543

00:16:36:91:9a:27

MIC

593f34e7cb151997a28cc7da2a6cac040b329636

Advertising
Popular Brands
Popular manuals