Cisco WIRELESS LAN CONTROLLER OL-17037-01 User Manual

Page 21

Advertising
background image

7-21

Cisco Wireless LAN Controller Configuration Guide

OL-17037-01

Chapter 7 Controlling Lightweight Access Points

Autonomous Access Points Converted to Lightweight Mode

Step 7

To add the CA certificate into the controller’s CA certificate database, hover your cursor over the blue
drop-down arrow for the certificate type and choose Add.

Step 8

To provision the LSC on the access point, click the AP Provisioning tab and check the Enable AP
Provisioning check box.

Step 9

To add access points to the provision list, enter the access point MAC address in the AP Ethernet MAC
Addresses field and click Add.

Note

To remove an access point from the provision list, hover your cursor over the blue drop-down
arrow for the access point and choose Remove.

Note

If you configure an access point provision list, only the access points in the provision list are
provisioned when you enable AP provisioning. If you do not configure an access point provision
list, all access points with a MIC or SSC certificate that join the controller are LSC provisioned.

Step 10

Click Apply to commit your changes.

Using the CLI to Configure LSC

Using the controller CLI, follow these steps to enable the use of LSC on the controller.

Step 1

To enable LSC on the system, enter this command:

config certificate lsc {enable | disable}

Step 2

To configure the URL to the CA server, enter this command:

config certificate lsc ca-server http://url:port/path

where url can be either a domain name or IP address.

Note

You can configure only one CA server. To configure a different CA server, delete the configured
CA server using the config certificate lsc ca-server delete command; then configure a different
CA server.

Step 3

To add the LSC CA certificate into the controller’s CA certificate database, enter this command:

config certificate lsc ca-cert {add | delete}

Step 4

To configure the parameters for the device certificate, enter this command:

config certificate lsc subject-params country state city orgn dept email

Note

The common name (CN) is generated automatically on the access point using the current
MIC/SSC format Cxxxx-MacAddr, where xxxx is the product number.

Step 5

To configure a key size, enter this command:

config certificate lsc other-params keysize

The keysize is a value from 384 to 2048 (in bits), and the default value is 2048.

Advertising
Popular Brands
Popular manuals