This option allows support for both WPA and WPA2
clients on the same service set identifier (SSID) to support
legacy systems during migration to WPA. Allow
WPA-2 TKIP Clients: This option allows support of legacy
hardware that cannot run Advanced Encryption Standard-Cipher
Block Chaining Message Authentication Code Protocol (AES-CCMP)
but can run WPA2. Pre-Shared Key: When this
option is checked, you can choose to enable a preshared key
with or without an 8- to 63-character Record Sequence Number
(RSN) passphrase.
Content
6.6 WLAN Lab Exercises
6.6.1 Lab 6.1 Configuring a WLAN Controller Lab
Activity Lab Exercise: Lab 6.1a Configuring a WLAN
Controller In the next two labs, you will configure a wireless
solution involving a WLAN controller, two lightweight wireless
access points, and a switched wired network. You will configure
a WLAN controller to broadcast SSIDs from the lightweight
wireless access points. If you have a wireless client nearby,
connect to the WLANs and access devices from the inside of your
pod to verify your configuration of the controller and access
points. Note
It is required that you upgrade the WLC
firmware image to 4.0.206.0 or higher in order to accomplish
this lab.
Lab Activity Lab Exercise: Lab 6.1b
Configuring a WLAN Controller (Optional) This lab leverages an
internal WLAN controller in the topology.
Content
6.6 WLAN Lab Exercises
6.6.2 Lab 6.2a Configuring a WLAN Controller via the
Web Interface Lab Activity Lab Exercise: Lab 6.2a
Configuring a WLAN Controller via the Web Interface Continuing
from the previous lab, you will now set up the WLAN controller
through its web interface. Previously you configured it through
the CLI. Note
It is required that you upgrade the
WLC firmware image to 4.0.206.0 or higher in order to
accomplish this lab.
Lab Activity Lab Exercise:
Lab 6.2b Configuring a WLAN Controller via the Web Interface
(Optional) This lab leverages an internal WLAN controller in
the topology.
Content 6.6 WLAN Lab
Exercises 6.6.3 Lab 6.3 Configuring a Wireless
Client Lab Activity Lab Exercise: Lab 6.3
Configuring a Wireless Client In this lab, you will install a
Cisco Aironet wireless PC card on a laptop. Then you will also
configure the Cisco Aironet Desktop Utility (ADU) to connect to
an access point.
Content 6.6 WLAN Lab
Exercises 6.6.4 Lab 6.4 Configuring WPA
Security with Preshared Keys Lab Activity Lab
Exercise: Lab 6.4 Configuring WPA Security with Preshared Keys
IIn this lab, you will configure and verify Wi-Fi Protected
Access ( WPA) security in a wireless environment using
preshared keys. This lab requires two separate PCs, Host A and
Host B. Host A will act on VLAN 10 as the Cisco access control
server (ACS) server and will also be used to configure the
wireless LAN (WLAN) controller as a PC has been used to do in
previous labs. Host B requires a Cisco wireless network card
with the Aironet Desktop Utility installed. Host B will
function as a wireless client on WLAN 1 which corresponds to
VLAN 2. You may complete this scenario using either the
external WLAN controller (WLC) or the network module that
resides in a router. However, you must load the final
configurations from the end of Lab 6.1: Configuring a WLAN
Controller. We highly recommended that you complete Labs 6.1,
6.2, and 6.3 before attempting this lab. Note
This
lab will only go into the details of configuring WLAN security
using WPA-PSK. For more information on using the web interface
of the WLC, consult Lab 6.2: Configuring a WLAN Controller via
the Web Interface.
Content 6.6 WLAN Lab
Exercises 6.6.5 Lab 6.5 Configuring LEAP
Lab Activity Lab Exercise: Lab 6.5 Configuring LEAP In
this lab, you will configure and verify 802.1X security in a
wireless environment. The 802.1X authentication protocol is
built on the Extensible Authentication Protocol (EAP) and the
RADIUS authentication protocol and provides per-client
authentication and network admission. This lab requires two
separate PCs, Host A and Host B. Host A will act on VLAN 10 as
the Cisco access control server (ACS) and will also be used to
configure the wireless LAN (WLAN) controller the way a PC has
been used to do in previous labs. Host B requires a Cisco
wireless network card with the Aironet Desktop Utility
installed. Host B will function as a wireless client on WLAN 1
which corresponds to VLAN 2. You may complete this scenario
using either the external wireless LAN controller (WLC) or the
network module that resides in a router. However, you must load
the final configurations from the end of Lab 6.1: Configuring a
WLAN Controller. We highly recommend that you complete Labs
6.1, 6.2, and 6.3 before attempting this lab. Note
This lab will only go into the details of configuring the
802.1X security protocol. For more information on using the web
interface of the WLC, consult Lab 6.2: Configuring a WLAN
Controller via the Web Interface..
Content
Summary Video and voice applications are used with wireless
clients as well as wired clients and QoS is required for both
types of clients. To support QoS, WLANs use 802.11e or WMM
scheduling and queuing. These QoS features are implemented on
access points. Authentication and encryption are the two
primary facilities for securing the WLAN. While encryption
using static WEP keys is very vulnerable, WLANs can now be
configured to support EAP and the 802.1x standards including
LEAP, EAP-FAST, EAP-TLS, PEAP, WPA, and WPA2. Cisco offers two
WLAN implementations: an autonomous and a lightweight WLAN
solution. Autonomous access points are configured per access
point, while lightweight access points are configured via the
WLAN controller. CiscoWorks WLSE is a server that supports
centralized configuration, firmware, and radio management.
Cisco WCS is a Cisco WLAN solution network management tool used
for WLAN planning, configuration, and management. Three Cisco
WCS tracking options are available: WCS Base, WCS Location, and
WCS Location and Cisco 2700 Series Wireless Location Appliance.
The Cisco 2700 Series Wireless Location Appliance system is
used for tracking of thousands of 802.11 wireless devices. The
user must supply the Cisco WCS software with campus, building,
and floor plan graphics.