Cisco Aironet SAP1602E - changing open to WPA - PSK access remote (RAP and map)

I currently have a deployment of Cisco Aironet SAP1602E Wireless point to point bridge (bridge using RAP and card, root wireless and Non-Root Bridge) to expand a layer 2 VLAN from one building to the other. It currently operates uisng open authentication and encryption - and is administered remotely via the bridge of root, to get wireless (manage) the bridge Non-Root - RAP wireless remote.

Try to configure the PSK WPA2-PSK remotely via the GUI or CLI - first setup - I informed a similar error to her below indicating that:

Error: Key-management WPA is requried for WPA-PSK

Read around, it seems, there is a configuration-control problem, and that I need to specify the mode as WPA2-PSK first, before then being able to specify the PSK there instead of using. However, as soon as this mode is specified on RAP, my remote administration is broken - as probably the RAP try to use WPA2-PSK to look for a PSK, which has not yet been configured. Am I missing something obvious here, or is the order of operations of CLI (1] convert to WPA - PSK; (2] shared secret to apply PSK) as a migration from open to WPA2-PSK cannot be configured remotely (short of preparation of a startup-config; TFTPing presents more; and issuance of a 'reload' remote control)? Can someone please enlighten me as to what the logic is here - no doubt I should be able to specify a PSK first (fo without worrying if I use WPA, WPA2 or other), and then be able to specify that I want as the layer of encryption (WPA) to make use of this pre-parameter PSK? If it was a router, you don't can me to add something to the authentication key chain OSPF; before clarifying its use - why so different Aironet Wireless IOS?

You're right, and because you will have to enter several lines of configuration to switch to WPA2-PSK with AES didn't really matter; the AP would reset the radio anyway because you make changes related to the radio interface. It would be very useful that if Cisco router/switch IOS 'macro' feature available AP thus in changes like this, unfortunately this is not the case.

Start with the nonroot AP and make sure that the following lines are added to your configuration. If you add by the console, the order must be like that, do it by downloading a new configuration of booting with tftp, that it does not matter.

interface Dot11Radio0
encryption ciphers aes - ccm mode

SSID dot11 TEST
authentication wpa key management
WPA - psk ascii 0

Please rate helpful messages... :-)

Tags: Cisco Wireless

Similar Questions

My DBC t57 blu - ray receiver lights. I changed the batteries I have the remote Player and I tried

My Blu - Ray of t57 DBC receiver lights. Ive tried to replace the mattresses in the remote, but that did not work. Not more than plugging the receiver on another taken elec. Help please!

Bill

Hello willy9517!

Thanks for your message, we are sorry to hear of the disadvantages with the product. If there was a power surge or failure, then the internal surge inside the audio device protection House may have been triggered to protect the unit against the surge. It's normal. To reset the internal surge protection circuit unplug the power cord from the wall for at least 30 minutes. If the problem persists, we recommend to visit the following link which contains steps that can help you to solve the problem:

https://us.en.KB.Sony.com/app/answers/detail/A_ID/42963/p/46871%2C74232%2C74554/c/65%2C66/kW/no%20po...

If my post answered your question, please mark it as "accept as a Solution.

Cisco Aironet 1131AG and measure access points to the power of the wireless signal?

/ * Style definitions * / table. MsoNormalTable {mso-style-name : « Table Normal » ; mso-tstyle-rowband-taille : 0 ; mso-tstyle-colband-taille : 0 ; mso-style-noshow:yes ; mso-style-priorité : 99 ; mso-style-qformat:yes ; mso-style-parent : » « ;" mso-rembourrage-alt : 0 à 5.4pt 0 à 5.4pt ; mso-para-marge-top : 0 ; mso-para-marge-droit : 0 ; mso-para-marge-bas : 10.0pt ; mso-para-marge-left : 0 ; ligne-hauteur : 115 % ; mso-pagination : widow-orphelin ; police-taille : 11.0pt ; famille de police : « Calibri », « sans-serif » ; mso-ascii-font-family : Calibri ; mso-ascii-theme-font : minor-latin ; mso-hansi-font-family : Calibri ; mso-hansi-theme-font : minor-latin ;}

/ * Style definitions * / table. MsoNormalTable {mso-style-name : « Table Normal » ; mso-tstyle-rowband-taille : 0 ; mso-tstyle-colband-taille : 0 ; mso-style-noshow:yes ; mso-style-priorité : 99 ; mso-style-qformat:yes ; mso-style-parent : » « ;" mso-rembourrage-alt : 0 à 5.4pt 0 à 5.4pt ; mso-para-marge-top : 0 ; mso-para-marge-droit : 0 ; mso-para-marge-bas : 10.0pt ; mso-para-marge-left : 0 ; ligne-hauteur : 115 % ; mso-pagination : widow-orphelin ; police-taille : 11.0pt ; famille de police : « Calibri », « sans-serif » ; mso-ascii-font-family : Calibri ; mso-ascii-theme-font : minor-latin ; mso-hansi-font-family : Calibri ; mso-hansi-theme-font : minor-latin ;}

We have about forty points of access Cisco Aironet 1131AG spread over four floors and they all have a static IP (BVI1) on the same SSID, customers will be on its own virtual local area network (dhcp on 3750 switch) and they use several channels (1,6,11). Cisco Wireless Control System is pending. This wireless network should support roaming for customers (there will be Wi - Fi tags of multiple AeroScout and wireless laptops). To measure the strength of the wireless signal and wireless coverage on each floor. My questions are:
1. How to measure the strength of the wireless signal: we must meet at least three APs available with signal excellent (I guess for the WCS needs that will determine the position of the client in the building)? We thought to use NetStumbler and a few laptops with wifi and measure as many points as we can as simpler thing. Or should we use something like Cisco Aironet Client adapters for our mobile phone and then use Cisco Aironet Client Utility (is it worth buying for our analysis and measurement)? Any other idea?
2. What signal level should we consider for a good wireless (dBm)?
3. That we should propose for authentication, authorization and management accounting? What happens to the roaming wireless? I did not quiteunderstand WCS, WDS and WLC-that should be used for above tasks?
Thanks in advance.

"Use the command on the AP" sh dot11 associations "will give you the clients associated with success. If you add the MAC address of the client at the end of the command, you will get detailed information. Look under "Signal Strength" and "Signal to noise". Under the strength of the Signal, you want a value of-75 dBm or lower (lower values the better). -76 dBm and is bad. Under Signal-noise, you want a value of 25 dBm or more (values higher the better).

To measure the strength of the signal, I use Airmagnet, but you can use Netstumbler or Cisco Wireless Site Survey.

Cannot open volume for direct access?

OK so I have windows vista 32-bit home... and I installed this program from avg that solves all the problems on the computer... Well now when I boot, I get a cannot open volume for direct access... and I loaded my computer finally and its telling me everything is corrupted?

Hello

I'm sorry but most of the posters, which I am part, who come here do not believe in using Tuneup Utilities, registry cleaners, etc. to improve performance or solve problems.

They are completely unnecessary.

Do a Safe Mode system restore to before the problem started.

http://bertk.MVPs.org/html/restoresysv.html

How to access Safe Mode

http://www.bleepingcomputer.com/tutorials/how-to-start-Windows-in-safe-mode/#Vista

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Or, if you don't have one, borrow a DVD of Microsoft Vista, not a recovery disk and you could do a upgrade in repair facility.

"How to perform a repair for Vista Installation"

http://www.Vistax64.com/tutorials/88236-repair-install-Vista.html

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

And I have contacted AVG or their Forums as you say it was their program that caused the problems.

http://free.Avg.com/us-en/support

See you soon.

Aironet 2600 WPA PSK

I'm trying to set up a new Aironet2600 with the web configuration utility wireless access point. Only, I need a simple unique SSID no VLAN and want to use WPA/WPA2 PSK security. Is there a way to configure the device in this way in the config of the web? If not, is there a walkthru basic config to use the IOS CLI? I have a basic understanding of the CLI, but he did years that I used it.

-Brian

Hi Brian,.

It is easy to give you an example of a config to do via CLI.

If you configure your AP as below & connect to a DSL modem/router DHCP already defined in this topic, you should be able to get the user wireless connect to the SSID.

If you connect this Cisco switch, then you must configure the DHCP pool on which to spend (for the vlan 1) & then connect this access point to a default switchport (should be on the vlan 1).

host name

!

dot11 ssid

open authentication

authentication-key wpa version2 management

Comments-mode

WPA - psk ascii
```
!
interface Dot11Radio0
encryption mode ciphers aes-ccm
ssid
no shutdown
!
interface Dot11Radio1
encryption mode ciphers aes-ccm
ssid
no shutdown
!
interface BVI1
ip address dhcp
If you need any further assistance let us know.
HTH
Rasika
*** Pls rate all useful responses ***
```

I have a palm tx. Trying to get on wi - fi, I need to have the WPA2 (AES) Palm said that it has WPA - PSK with no way to change this.

I use a Wi - FI 764DD8 EVO he asks the security code is WPA2 (AES). Palm has a WPA - PSK code with no way to change what I can find. Thank you Bob

Limitation of the device. He is able to use WPA2?
(Why is it a problem of Windows XP? heh)

How to change the encryption type M252dw printer WPA2 (WPA - PSK) for the WPA used by the router?

We had to change the type of encryption on our WPA2 WiFi router (LAN setup origin, on which to install and successfully used our M252dw printer) and use simple WPA, to solve some other problems of connectivity.

NOW, the HP printer, we have (M252dw) apparently does not automatically reset the encryption type.

Apparently, he has no way to automatically start "from scratch" when connecting to the new configuration of router.

Even with ALL the rest on the LAN works fine and speaking well, including WiFi laptops and smart phones, the HP printer sees the new name of WiFi SSD connects to the router in order to attempt a connection, accepts the new password WPA, but RETAINS THE WPA - PSK PARAMETER OF CONFIGURATION PREVIOUS.

We know, because after that the printer fails to connect, print the network SHOWS Test report this known problem in the paragraph of the resolution of the problems, but worthless advice said to "run the setup of wireless network for re - enter your network WPA wireless security password. The WPA authentication on your HP printer has been changed from the default setting. This can cause problems connecting to your wireless network, if your wireless router does not use the same breed of WPA authentication.

Well, DUH.

Mind you, there is NOTHING in the post above that says:
1) go to "this" menu item.

2) click "this" option to change the encryption method.

(3) select the method (SSID, WEP, WPA, WPA2) that corresponds to your router.

... because... There seems to be NO option ANYWHERE in ANY menu that offers this choice.

HE DIDN'T THERE HAS NO BUTTON, OPTION, SELECTION, OR ADVICE IN THE MANUAL TO RESET OR CHOOSE WPA!

There is a checklist wonderfully unnecessary, repeated throughout your manuals and on the site, basically saying

' Check the type of printer encryption (WEP, WPA, WPA2, etc.) corresponds to the router.

Well well... What do you do when you KNOW that it IS NOT?

Thanks to try at least, I appreciate it.

Unfortunately, it did not work;

but it leads to find the answer for later use.

Summary -

After selecting
Printer flow treatment and deleted the saved connection data, an IPv4, subnet mask and default gateway address (router address IPv4) and IPv6 turned power on.

Then... I did this:

(1) Went back to and IPv6 turned to back, leaving only ON IPv4.

2) went back to and returned once again the preferred settings.
Address: 192.168.254.250

Mask: 255.255.255.0

Default gateway: 192.168.254.254

3) reinforced by the "Wizard" where he immediately found the SSID of the wireless router.

(4) select the SSID of the router

(5) when it is asked for the password (which is actually just a 'word' with WPA pass) I got that.

(6) given the printer attempts to connect and failed.

WPA - PSK same listed, even noted on the test report from network once more.

Therefore, no chance after Restore Defaults.

It really would have been nice if HP had made sure this option actually actually reset * ALL * default settings, including the wiping WPA2 security type.

(Just for reference, the DHCP range is set to 192.168.254.15 - 192.168.254.47, so that the fixed IP addresses assigned, like this printer, you can assign DHCP to be defined to ensure no changes outside.

This printer is the FIRST device assigned a fixed IP address, to make sure that nothing else can come into conflict with the IP address and eliminate it as a cause as possible.)

OK - so after your suggestion, I am inspired to re - enter the menu and look at it again.

I had already looked through what I have and not able to find the submenu I thought that has been included by HP...

.. .or I would expect a user was manually choose method/type of security encryption (SSID, WEP, WPA, WPA2)

.. .or at least handed to "REMOVE/RESET/nothing: Please ask the next router you are trying to connect to use"

One thing I found there is the option that resembled what I wanted now:

That seemed to be the best thing after trying to 'Network Defaults' so I did.

Then did a not through all the steps above, 1-6...

* SUCCESS *.

ALSO: The printer is already running on each PC had to be "retired" in Windows

-According to the right

-Then follow up

-Waited for printer not found, click it, and then select

Thank you HP - I just needed to find out who Reset was correct.

Now - I humbly suggest stating that in the manual.

Under the line "Verify encryption type corresponds to router", you could add something simple like:

"IF it isn't, then select and your printer will automatically ask the next router you are trying to connect with and correspond to this type of encryption."

C4580 change settings (from the open to WPA) wireless

Hi all

I have a C4580 and he was initially installed with wireless open (for various reasons at the same time). Now, I changed to use WPA and a password. Before the change, it is a very happy camper and worked very well. Now, he said only: "disconnected" and I can't print. Can I change any laptop here in seconds to use the new settings, but I can't find anywhere that I can change the settings. I got two calls for support for about 4 hours of total and they executed me all over the place. I can't believe there is no setting I can change to activate the new settings of the router into the printer. Other than to do an uninstall and reinstall, is there a shorter method to activate the new configuration of the router? As I mentioned, it was quite nice before changing the security setting. It is really becoming a car accident. Can anyone offer a solution more simple as the relocation (or supported by calling again? Please no.... not yet)? Thanks for any help!

Kurt

Sure!
- First, remove the password of your network (temporarily) so that your printer can be back on the network.
- Then, print a the front of the printer Network Setup Page. Get the IP address of the printer.
- Now type this IP address in a browser. You will see the printer's built-in Web server.
- Go to the tab network, 802.11 (left), Advanced tab.
- Enter your new password information, etc. But first... before you leave...
- Go to the tab Configuration IPv4 and set a manual IP address of the printer (the one used above), subnet 255.255.255.0, gateway, and DNS are the IP address of your router (probably your IP printer with a '1' after the last point instead of what the printer has).
- Click 'apply '. The printer works now with your new password, but not before you go back to your router to apply it again!
Reset the printer and the router and good luck!

New Cisco Aironet 1602i is not broadcasting the SSID I place

New Cisco Aironet 1602i is not broadcasting the SSID I place

SSID I set up is not broadcasting, so I don't see the wireless network to choose and connect. On my laptop if I choose specify the name of the SSID then I am able to connect to the wireless network. I have only 1 Configuration SSID on the access point. Anyone know how to update the configuration for the SSID is broadcast?

The green light on the AP flashes and turns off about 3 seconds; is this normal or should it stays on all the time?

Current configuration: 1842 bytes

!

version 15.2

no service button

horodateurs service debug datetime msec

Log service timestamps datetime msec

encryption password service

!

host ap name

!

!

Pulse 9 logging console

enable secret 5 $1$ rrlE$ msWqu8CGY/tpDkgRAAAIe /.

!

No aaa new-model

no ip Routing

no ip cef

!

!

!

dot11 syslog

!

dot11 ssid Mi Casa

open authentication

authentication-key wpa version2 management

WPA - psk ascii 7 142017070F0C787B7579

!

!

Crypto pki token removal timeout default 0

!

!

username Cisco privilege 15 password 7 112A1016141D

!

!

Bridge IRB

!

!

!

interface Dot11Radio0

no ip address

no ip route cache

!

encryption algorithms aes - ccm tkip encryption mode

!

SSID Mi Casa

!

gain of antenna 0

STBC

beamform ofdm

root of station-role

Bridge-Group 1

Bridge-group subscriber-loop-control 1

Bridge-Group 1 covering-disabled people

Bridge-Group 1 block-unknown-source

No source of bridge-Group 1-learning

unicast bridge-Group 1-floods

!

interface Dot11Radio1

no ip address

no ip route cache

!

encryption algorithms aes - ccm tkip encryption mode

!

SSID Mi Casa

!

gain of antenna 0

DFS block 3 Strip

STBC

beamform ofdm

channel SFR

root of station-role

Bridge-Group 1

Bridge-group subscriber-loop-control 1

Bridge-Group 1 covering-disabled people

Bridge-Group 1 block-unknown-source

No source of bridge-Group 1-learning

unicast bridge-Group 1-floods

!

interface GigabitEthernet0

no ip address

no ip route cache

automatic duplex

automatic speed

Bridge-Group 1

Bridge-Group 1 covering-disabled people

No source of bridge-Group 1-learning

!

interface BVI1

IP 192.168.10.200 255.255.255.0

no ip route cache

!

by default-gateway IP 192.168.10.1

IP forward-Protocol ND

IP http server

no ip http secure server

IP http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag

!

1 channel ip bridge

!

!

!

Line con 0

line vty 0 4

local connection

transport of entry all

!

end

Hi you must guest mode config on the ssid... Read this bud

https://supportforums.Cisco.com/docs/doc-5442

Sent by Cisco Support technique iPhone App

Cisco aironet 1131AG AP radio interface down

Hello
I have a problem with my cisco aironet 1131ag AP radio interface.
I configured the ssid, authentication and encryptation me have it (the ssid) associated with the radio interface, but the interface of dot11radio still in a State of remission to zero, and if a restart the interface this msg appears "% DOT11-4-NO_SSID: no SSID configured." Not started Dot11Radio0 ' what I need to do?
Help, please

Configuration:

Building configuration...

Current configuration: 1394 bytes
!
version 12.4
no service button
horodateurs service debug datetime msec
Log service timestamps datetime msec
encryption password service
!
host ap name
!
Select the 5 secret $1$ Mf3YfBFQQS2.6MSWHQOeG0 $URAK
!
No aaa new-model
domain IP Nida.local
!
!
!
dot11 ssid Nida
VLAN 1
open authentication
authentication wpa key management
Comments-mode
WPA - psk ascii 7 01100F175804575D72
admit-traffic
!
!
diet pre-standard trading online
!
!
username Cisco privilege 15 password 7 123A0C041104
!
Bridge IRB
!
!
interface Dot11Radio0
IP 192.168.1.80 255.255.255.0
no ip route cache
!
algorithms for encryption tkip encryption mode
!
encryption vlan 1 tkip encryption mode
!
SSID Nida
!
root of station-role
Bridge-Group 1
Bridge-group subscriber-loop-control 1
Bridge-Group 1 block-unknown-source
No source of bridge-Group 1-learning
unicast bridge-Group 1-floods
Bridge-Group 1 covering-disabled people
!
interface FastEthernet0
192.168.1.81 IP address 255.255.255.0
no ip route cache
automatic duplex
automatic speed
Bridge-Group 1
No source of bridge-Group 1-learning
Bridge-Group 1 covering-disabled people
!
interface BVI1
customer_id FastEthernet0 dhcp IP address
no ip route cache
!
IP http server
no ip http secure server
IP http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
1 channel ip bridge
!
!
!
Line con 0
line vty 0 4
local connection
!
end

You must create the dot11radio0.1 and fastethernet0.1 interface

Must be something like this:

version 12.4
no service button
horodateurs service debug datetime msec
Log service timestamps datetime msec
encryption password service
!
host ap name
!
Select the 5 secret $1$ Mf3YfBFQQS2.6MSWHQOeG0 $URAK
!
No aaa new-model
domain IP Nida.local
!
!
!
dot11 ssid Nida
VLAN 1
open authentication
authentication wpa key management
Comments-mode
WPA - psk ascii 7 01100F175804575D72
admit-traffic
!
!
diet pre-standard trading online
!
!
!
Bridge IRB
!
!
interface Dot11Radio0
no ip route cache
!
algorithms for encryption tkip encryption mode
!
encryption vlan 1 tkip encryption mode
!
SSID Nida
!
root of station-role

interface dot11radio0.1
encapsulation dot1q 1 native
Bridge-Group 1
Bridge-group subscriber-loop-control 1
Bridge-Group 1 block-unknown-source
No source of bridge-Group 1-learning
unicast bridge-Group 1-floods
Bridge-Group 1 covering-disabled people
!
interface FastEthernet0
no ip route cache
automatic duplex
automatic speed

interface Fastethernet0.1
encapsulation dot1q 1 native
192.168.1.81 IP address 255.255.255.0
Bridge-Group 1
No source of bridge-Group 1-learning
Bridge-Group 1 covering-disabled people
!
interface BVI1
customer_id FastEthernet0 dhcp IP address
no ip route cache
!
IP http server
no ip http secure server
IP http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
1 channel ip bridge
!
!
!
Line con 0
line vty 0 4
local connection
!
end

PS has also removed the ip address dot11 interface slot and I'm not sure why the role of station is root?

Cisco Aironet autonomous AP - WDS Configuration...

Hello.

I have 10 AP I am defining as my WDS access point / Radius Server and configure the other 9 to use this AP as the Radius server. LATHQWAP01 the AP I want set up as WDS and LATHQWAP02 server is the first AP I want to link to the WDS AP. However, I'm struggling...

I used the CLI as the GUI is beyond useless. Here are the commands that I published on the radius (LATHQWAP01) server:

LATHQWAP01 (config) #aaa new-model

LATHQWAP01 (config) #aaa rad_eap radius server group

LATHQWAP01 (config-sg-RADIUS) #server X.X.201.170

LATHQWAP01 (config-sg-RADIUS) #exit

LATHQWAP01 (config) #aaa authentication login eap_methods group rad_eap

LATHQWAP01 (config) #radius - X.X.201.170 - key cisco123 host server

LATHQWAP01 (config) #-local radius server

LATHQWAP01(config-radsrv) #nas X.X.201.170 - key cisco123

LATHQWAP01(config-radsrv) #user wds password cisco123

LATHQWAP01(config-radsrv) #exit

LATHQWAP01 (config) #wlccp wds priority 255 interface bvi1

LATHQWAP01 (config) #wlccp authentication infrastructure eap_method Server

LATHQWAP01 (config) #wlccp ap wds user password cisco123

LATHQWAP01 (config) #exit

LATHQWAP01 #show wlccp wds

MAC: 881d.fc46.c865, IP-ADDR: X.X.201.170, IPV6-ADDR::

Priority: 255

Interface BVI1, State: Administratively autonomous - ACTIVE

AP count: 0 Count MN: 0

Here are the commands I issued on the AP I want to link to the WDS / AP RADIUS.

LATHQWAP02 #conf t

Enter configuration commands, one per line. End with CNTL/Z.

LATHQWAP02 (config) #wlccp ap wds user name password cisco123

LATHQWAP02 (config) #exit

LATHQWAP02 #show wlccp ap

WDS = 881d.fc46.c865, IP: x.x.201.170 IPV6:

State = wlccp_ap_st_leap_auth

IN authenticator = IP: x.x.201.170 IPV6:

However, you can see on the Show wlccp wds output the number of AP is 0. Surely, you need 2? AP WDS with himself and the second point of access I linked?

See the race on the WDS (LATHQWAP01)...

User access audit

User name: admin

Password:

LATHQWAP01 #show run

Building configuration...

Current configuration: 5148 bytes

!

! Last configuration change at 22:53:11 UTC Tuesday, March 2, 1993 by admin

version 15.3

no service button

horodateurs service debug datetime msec

Log service timestamps datetime msec

encryption password service

!

hostname LATHQWAP01

!

!

Pulse 9 logging console

!

AAA new-model

!

!

AAA rad_eap radius server group

Server x.x.201.170

!

AAA authentication login default local

AAA authentication login eap_methods group rad_eap

AAA authorization exec default local

!

!

!

!

!

AAA - the id of the joint session

no ip source route

no ip cef

!

!

!

!

dot11 syslog

dot11 vlan data name of vlan 1000

dot11 vlan-name COMMENTS vlan 1234

dot11-name of vlan VOICE vlan 1200

!

SSID dot11 x

VLAN 1000

open authentication

authentication-key wpa version2 management

WPA - psk ascii 7 046F03555A2A55475C1B090241

!

SSID dot11 x

VLAN 1234

open authentication

authentication-key wpa version2 management

Comments-mode

WPA - psk ascii 7 0828425A0C15091E150E0210272A362336212B1D00

No customer ID MFP

!

!

Dot11 phone

!

!

!

username ADMIN privilege 15 password 7 062A5B35601E0A4D21

!

!

!

class-map correspondence _class_Lync2

match ip dscp cs3

class-map correspondence _class_Lync0

match ip dscp cs5

class-map correspondence _class_Lync1

match ip dscp af41

!

Policy-map Lync

class _class_Lync0

COS Set 6

class _class_Lync1

COS Set 5

class _class_Lync2

COS Set 4

!

Bridge IRB

!

!

!

interface Dot11Radio0

no ip address

!

encryption mode vlan 1000 ciphers aes - ccm

!

encryption mode vlan 1234 ciphers aes - ccm

!

SSID x

!

SSID x

!

gain of antenna 0

STBC

root of station-role

!

interface Dot11Radio0.1000

encapsulation dot1Q 1000

Bridge-group 255

Bridge-group subscriber-loop-control 255

Bridge-group 255 covering people with reduced mobility

Bridge-group 255 block-unknown-source

No source of bridge-group 255-learning

No bridge group 255 unicast-flooding

service-policy input Lync

service-policy output Lync

!

interface Dot11Radio0.1200

encapsulation dot1Q 1200 native

Bridge-Group 1

Bridge-group subscriber-loop-control 1

Bridge-Group 1 covering-disabled people

Bridge-Group 1 block-unknown-source

No source of bridge-Group 1-learning

unicast bridge-Group 1-floods

!

interface Dot11Radio0.1234

encapsulation dot1Q 1234

Bridge-group 254

Bridge-group subscriber-loop-control 254

Bridge-group 254 covering people with reduced mobility

Bridge-254 block-unknown-source group

No source of bridge-group 254-learning

No bridge group 254 unicast-flooding

service-policy input Lync

service-policy output Lync

!

interface Dot11Radio1

no ip address

!

encryption mode vlan 1000 ciphers aes - ccm

!

encryption mode vlan 1234 ciphers aes - ccm

!

SSID x

!

SSID x

!

gain of antenna 0

peakdetect

no block of dfs

STBC

channel SFR

root of station-role

!

interface Dot11Radio1.1000

encapsulation dot1Q 1000

Bridge-group 255

Bridge-group subscriber-loop-control 255

Bridge-group 255 covering people with reduced mobility

Bridge-group 255 block-unknown-source

No source of bridge-group 255-learning

No bridge group 255 unicast-flooding

service-policy input Lync

service-policy output Lync

!

interface Dot11Radio1.1200

encapsulation dot1Q 1200 native

Bridge-Group 1

Bridge-group subscriber-loop-control 1

Bridge-Group 1 covering-disabled people

Bridge-Group 1 block-unknown-source

No source of bridge-Group 1-learning

unicast bridge-Group 1-floods

!

interface Dot11Radio1.1234

encapsulation dot1Q 1234

Bridge-group 254

Bridge-group subscriber-loop-control 254

Bridge-group 254 covering people with reduced mobility

Bridge-254 block-unknown-source group

No source of bridge-group 254-learning

No bridge group 254 unicast-flooding

service-policy input Lync

service-policy output Lync

!

interface GigabitEthernet0

no ip address

full duplex

automatic speed

!

interface GigabitEthernet0.1000

encapsulation dot1Q 1000

Bridge-group 255

Bridge-group 255 covering people with reduced mobility

No source of bridge-group 255-learning

service-policy input Lync

service-policy output Lync

!

interface GigabitEthernet0.1200

encapsulation dot1Q 1200 native

Bridge-Group 1

Bridge-Group 1 covering-disabled people

No source of bridge-Group 1-learning

!

interface GigabitEthernet0.1234

encapsulation dot1Q 1234

Bridge-group 254

Bridge-group 254 covering people with reduced mobility

No source of bridge-group 254-learning

service-policy input Lync

service-policy output Lync

!

interface BVI1

881d.fc46.c865 Mac address

IP address x.x.201.170 255.255.254.0

!

IP default-gateway x.x.201.202

IP forward-Protocol ND

IP http server

aaa IP http authentication

no ip http secure server

IP http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag

!

!

local RADIUS server

NAS x.x.201.170 touches 110A1016141D5A5E57 7

NAS x.x.201.171 touches 1511021F07257A767B 7

the nthash wds user 7 013250267D2D5257036A1E5F3F5144332E5B220872747B10107531574626

24770B

!

RADIUS-server host 10.10.201.170 touches 14141B180F0B7B7977 7

!

rap_eap RADIUS server

!

1 channel ip bridge

!

!

wlccp ap username wds going 7 104D000A061843595F

And show performed on the WDS AP client...

User access audit

User name: admin

Password:

LATHQWAP02 #show run

Building configuration...

Current configuration: 4668 bytes

!

! Last configuration change at 03:25:50 UTC Tuesday, March 2, 1993 by admin

version 15.3

no service button

horodateurs service debug datetime msec

Log service timestamps datetime msec

encryption password service

!

hostname LATHQWAP02

!

!

Pulse 9 logging console

!

AAA new-model

!

!

AAA authentication login default local

AAA authorization exec default local

!

!

!

!

!

AAA - the id of the joint session

no ip source route

no ip cef

!

!

!

!

dot11 syslog

dot11 vlan data name of vlan 1000

dot11 vlan-name COMMENTS vlan 1234

dot11-name of vlan VOICE vlan 1200

!

SSID dot11 x

VLAN 1000

open authentication

authentication-key wpa version2 management

WPA - psk ascii 7 046F03555A2A55475C1B090241

!

SSID dot11 x

VLAN 1234

open authentication

authentication-key wpa version2 management

Comments-mode

WPA - psk ascii 7 0828425A0C15091E150E0210272A362336212B1D00

No customer ID MFP

!

!

Dot11 phone

!

!

!

username ADMIN privilege 15 password 7 062A5B35601E0A4D21

!

!

!

class-map correspondence _class_Lync2

match ip dscp cs3

class-map correspondence _class_Lync0

match ip dscp cs5

class-map correspondence _class_Lync1

match ip dscp af41

!

Policy-map Lync

class _class_Lync0

COS Set 6

class _class_Lync1

COS Set 5

class _class_Lync2

COS Set 4

!

Bridge IRB

!

!

!

interface Dot11Radio0

no ip address

!

encryption mode vlan 1000 ciphers aes - ccm

!

encryption mode vlan 1234 ciphers aes - ccm

!

SSID x

!

SSID x

!

gain of antenna 0

STBC

root of station-role

!

interface Dot11Radio0.1000

encapsulation dot1Q 1000

Bridge-group 255

Bridge-group subscriber-loop-control 255

Bridge-group 255 covering people with reduced mobility

Bridge-group 255 block-unknown-source

No source of bridge-group 255-learning

No bridge group 255 unicast-flooding

service-policy input Lync

service-policy output Lync

!

interface Dot11Radio0.1200

encapsulation dot1Q 1200 native

Bridge-Group 1

Bridge-group subscriber-loop-control 1

Bridge-Group 1 covering-disabled people

Bridge-Group 1 block-unknown-source

No source of bridge-Group 1-learning

unicast bridge-Group 1-floods

!

interface Dot11Radio0.1234

encapsulation dot1Q 1234

Bridge-group 254

Bridge-group subscriber-loop-control 254

Bridge-group 254 covering people with reduced mobility

Bridge-254 block-unknown-source group

No source of bridge-group 254-learning

No bridge group 254 unicast-flooding

service-policy input Lync

service-policy output Lync

!

interface Dot11Radio1

no ip address

!

encryption mode vlan 1000 ciphers aes - ccm

!

encryption mode vlan 1234 ciphers aes - ccm

!

SSID x

!

SSID x

!

gain of antenna 0

peakdetect

no block of dfs

STBC

channel SFR

root of station-role

!

interface Dot11Radio1.1000

encapsulation dot1Q 1000

Bridge-group 255

Bridge-group subscriber-loop-control 255

Bridge-group 255 covering people with reduced mobility

Bridge-group 255 block-unknown-source

No source of bridge-group 255-learning

No bridge group 255 unicast-flooding

service-policy input Lync

service-policy output Lync

!

interface Dot11Radio1.1200

encapsulation dot1Q 1200 native

Bridge-Group 1

Bridge-group subscriber-loop-control 1

Bridge-Group 1 covering-disabled people

Bridge-Group 1 block-unknown-source

No source of bridge-Group 1-learning

unicast bridge-Group 1-floods

!

interface Dot11Radio1.1234

encapsulation dot1Q 1234

Bridge-group 254

Bridge-group subscriber-loop-control 254

Bridge-group 254 covering people with reduced mobility

Bridge-254 block-unknown-source group

No source of bridge-group 254-learning

No bridge group 254 unicast-flooding

service-policy input Lync

service-policy output Lync

!

interface GigabitEthernet0

no ip address

full duplex

automatic speed

!

interface GigabitEthernet0.1000

encapsulation dot1Q 1000

Bridge-group 255

Bridge-group 255 covering people with reduced mobility

No source of bridge-group 255-learning

service-policy input Lync

service-policy output Lync

!

interface GigabitEthernet0.1200

encapsulation dot1Q 1200 native

Bridge-Group 1

Bridge-Group 1 covering-disabled people

No source of bridge-Group 1-learning

!

interface GigabitEthernet0.1234

encapsulation dot1Q 1234

Bridge-group 254

Bridge-group 254 covering people with reduced mobility

No source of bridge-group 254-learning

service-policy input Lync

service-policy output Lync

!

interface BVI1

f44e.053c.092d Mac address

IP address x.x.201.171 255.255.254.0

!

IP default-gateway x.x.201.202

IP forward-Protocol ND

IP http server

aaa IP http authentication

no ip http secure server

IP http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag

!

!

!

1 channel ip bridge

!

!

wlccp ap username wds going 7 00071A1507545A545C

!

Line con 0

line vty 0 4

transport of entry all

!

ntp2c.MCC.AC.UK SNTP server

SNTP client distribution

end

I'm completely at a loss with this. Any help is greatly appreciated.

This is what looks like my WDS Setup:

RADIUS AAA server WDS group

the name of the WDS server

!

AAA authentication login eap_methods group rad_eap

AAA authentication login mac_methods local

AAA authentication login method_WDS group WDS

AAA authorization exec default local

AAA accounting network acct_methods power group rad_acct

local RADIUS server

No leap authentication

no authentication mac

NAS 192.168.180.6 touches 062506324F41584B56 7

the nthash wds user 7 132444425D595072727C7F63167B4056322654077C0E0475285A4B32787E71710A

!

format of server RADIUS attribute 32 include-in-access-req hour

!

RADIUS WDS server

ipv4 192.168.180.6 address auth-port 1812 acct-port 1813

touch 7 14341B180F0B7B7977

!

Bridge Protocol ieee 1

1 channel ip bridge

!

!

wlccp ap username wds password 7 140016185D 5679

wlccp-server authentication infrastructure method_WDS

priority interface 255 wlccp wds BVI1

but I have a question, you will allow an SSID with 802. 1 X? If you're not then gains WDS nothing as the PSK will be validated at each AP WDS allows you an access point to the authenticator for the users, if when you move from one AP to another do you a 4 - way handshake with the WDS master instead of a handshake 15 pin with the AAA server.

HTH,

Steve

WPA - PSK, BEFW11SA, can not connect the computer to the network

When I enable security wireless mode WPS Pre - Shared Key, algorithm, TKIP, a 9-character key and key group og renewal 3600 and then configure the computer, the computer is not connected to internet, even if the connection is recognized.

When I created my Linksys BEFW11SA with "Wireless security" disabled, my computer has no problem connecting to the internet.

Somehow, I'm sure that the problem is related to the configuration of the WPS, but I don't know what to do.

I run XP sp 3. Router firmware version is 1.50.11, which I think is the last update (1.50.13 in mentioned on the home page of Linksys, but the corresponding version notes give the 1.50.11 version) the router does not have common WPS - PSK option with XP, so I couldn't try to use WPA2 or other options.

Can someone please help?

/ JanB

You tried the WPA key on your router and still it dosent work, you tried to secure your network using the WEP password. If it isn't then you can try settings WEP key password on your router and check if you are getting connected to your network on your laptop or not.

Open an Internet Explorer browser on your computer (desktop) wired page. In the address bar type - 192.168.1.1 and press ENTER... Let the empty user name & password use admin lowercase...
For wireless settings, follow these steps: -.
Click on the Wireless tab

For wireless security: -.
Click the sub-tab under wireless > Wireless Security...
Change the mode of WEP wireless security, encryption must be 64-bit. Let the empty password, do not type in anything... Under type of WEP Key 1 in all 10 numbers please (numbers only and no mailbox for example: your 10-digit phone number) and click on save settings...
Please note the 1 WEP key as it comes to the security key for the wireless network...

Now let's see if you can locate your wireless network and try to connect...

WPA - PSK

Sorry to be a techno-nerd, but I'm an English teacher in a very small school that happens to dabble in technology because no one else will.

Here's my problem. I installed access points DLink N. have laptops Compaq with Win2K using Cisco cards. Is there a driver for Cisco cards that will allow me to do the WPA - PSK? We used to use WEP, but the old access point is fried by lightening and replaced. I'm stuck with the AP and need a solution for the cards as soon as POSSIBLE. I do not see a selection in the settings so I hope there's an update to the driver.

Help, please!

Hey Joe,

Take a look at the following technical note;

Q. does the ACU support Wi - Fi Protected Access-Pre - Shared Key (WPA - PSK)?

A. WPA provides a pre-shared key (WPA - PSK) version that should be used in small office, Office at home (SOHO) or domestic wireless networks. ACU (Aironet Client Utility) does not support WPA - PSK. The Automatic Configuration Windows wireless utility supports WPA - PSK for most wireless cards.

This doc.

http://www.Cisco.com/en/us/products/ps6458/products_qanda_item09186a0080128c0f.shtml

I hope this helps!

Rob

Remember messages useful rate...

WPA - PSK lost...

I have several Aironet 1300 connected via WPA - PSK. One of them is just down (non-root) and I do not know the WPA - PSK. 4 working again, I encrypted the hash from the configs. Is it possible that I can break one of them to acquire the key? I want to talk about the key to the line that reads:

WPA - psk ascii 7 XXXXX...

DRM for your comments.

I just ran the encrypted for password

WPA - psk ascii 7 11584B5643475D5B5C737B

(ref: http://www.cisco.com/en/US/products/ps5853/products_configuration_guide_chapter09186a008067e9eb.html )

via the decoder of password encrypted 7 type of Boson

http://www.boson.com/FreeUtilities.html

and he returned a value of 'good '...

so, try this.

HTH,

Ross

851W w / WPA - PSK - Interface goes down.

Hello

I tried to configure WPA - PSK on the router 851W. I followed the instructions using the SDM and properly active wireless WPA - PSK network. I have connected a MacBookPro to the network wireless, with all the features, then after a minute or two, separates the client and Dot11Radio interface goes down.

I have install a network open without any connectivity problems. I have search the net and forums of Cisco without success for a solution to this problem. Here is the link to the guide: http://www.cisco.com/en/US/products/hw/routers/ps380/products_configuration_example09186a00808acf2f.shtml

Any ideas what might be causing the radio interface down with WPA - PSK configured?

Thank you.

For some it's IOS version WPA - PSK, which proved to be intermittent. Cisco CSCeh90412 bug describes it. Try to update the IOS version and check.

Cisco Aironet SAP1602E - changing open to WPA - PSK access remote (RAP and map)

Similar Questions

Maybe you are looking for