Table of Contents
Advertisement
Connecting the Cisco 1500 Series Mesh Access Points to the Network
Controller GUI Security Settings
Although the settings are not directly related to the feature, it might help you in achieving the desired behavior
with respect to APs provisioned with an LSC.
Figure 82: Possible Cases for Mesh AP MAC Authorization and EAP
• Case 1—Local MAC Authorization and Local EAP Authentication
Add the MAC address of RAP/MAP to the controller MAC filter list.
Example:
(Cisco Controller) >
(Cisco Controller) >
• Case 2—External MAC Authorization and Local EAP authentication
Enter the following command on the WLC:
(Cisco Controller) >
or
Check only the external MAC filter authorization on the GUI page and follow these guidelines:
OL-27593-01
config macfilter mac-delimiter colon
config macfilter add 00:0b:85:60:92:30 0 management
config mesh security rad-mac-filter enable
◦ Do not add the MAC address of the RAP/MAP to the controller MAC filter list.
◦ Configure the external radius server details on the WLC.
◦ Enter the config macfilter mac-delimiter colon command configuration on the WLC.
◦ Add the MAC address of the RAP/MAP in the external radius server in the following format:
User name: 11:22:33:44:55:66 Password : 11:22:33:44:55:66
Locally Significant Certificates for Mesh APs
Cisco Mesh Access Points, Design and Deployment Guide, Release 7.3
191
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
