WDS not authenticated with WLSE

Hi all Experts
I m using Wlse 2.7 and 1230 ap(wireless domain services wds).i m facing problem with authentication between wlse and wds.i also configured wds as radius server configuration is attached. kindly help me if some one have experience on this field.
thanks

WDS must be set up for WLSE radio management features to work. There are two ways to set up the WDS: automatically and manually. For an explanation of each see: WDS on an Access Point and WDS on WLSM.

Similar Messages

  • WDS not authenticated with WLSE / Freeradius

    I create a AP WDS (12.2(15))with Freeradius working well -> AP Information : authenticated
    I give the Wireless Network Manager Ip Adresse on my WDS and my WDS Status is allways NOT AUTH. I never a request of my WLSE on my Radius. How can I configure my WLSE / WDS or Radius to have authenticated status ?

    I configure SNMP on both with the same public and private community but how can I be sure that my WLSE is able to manage the WDS AP ?
    I have entered in DEVICES->DISCOVER->WLCPP Credentials a USER/PASSWD I olso have entered this USER/PASSWD on my radius and in the Admin Access of my WDS AP is it good ? (I don't understand when you say "you have entered the LEAP credental on the WLSE")

  • WAP is not authenticated to WLSE?

    Hello,
    I'm trying to set up WDS with 2 Cisco 1130 WAP, 1 ACS (V3.3) and Cisco WLSE.
    I got everything working except for connecting WDS access point to WLSE.
    I put WLSE's ip address in WNM global configuration but I see this access point constantly generating error messages saying 'Not authenticated'.
    WLSE had this devide under 'Managed Devices' but does it need additional configuration to talk to WDS access point?
    Thanks for your help in advance.

    I believe you are seeing this bug:
    http://www.cisco.com/cgi-bin/Support/Bugtool/onebug.pl?bugid=CSCsb47726&Submit=Search
    There is not a very good workaround. You can downgrade ACS to 3.3.2 or run local authentication on the AP for WDS.
    What you will see if you debug radius on the WDS primary are access-request and access-challenge but never an access-accept.

  • Outlook 2011 for Mac not authenticating with Exchange 2010

    Hi,
    We have an issue with our Mac Clients authenticating with our Exchange Server. We have Exchange 2010 Version 14.03.0174.001. 
    Outlook is saying the credentials are incorrect for the user when we know they work fine in OWA and in Outlook 2010.
    It seems this is since we re-keyed are SSL certificate. I have changed the EWS directory to Basic Authentication and also re-created the EWS directory. I have also re-ran all the SBS Wizards.
    Is there anything else we can do to get this sorted?
    Thanks 

    Hi Robert,
    I found a KB for your reference:
    Sending email error "Authentication failed. Error 17897" in Outlook 2011 for Mac
    http://support.microsoft.com/kb/2492901
    If it not matches to yours, please paste the details without sensitive information.
    Thanks
    Mavis
    Mavis Huang
    TechNet Community Support

  • VPN Client and Clientless users not authenticating with AD

    Web clients are receiving login failed messages and VPN clients are getting disconnected by host messages. I am able to ping the server from the ASA5510.  Users authenticate in AD.  I am not sure if the problem is on the server or the ASA.
    CP

    Hi,
    Are you using LDAP for user authentication, is this a new setup or was this working at one point?
    If using LDAP please use "debug ldap 255" and reproduce, If you are using radius what are you using?
    Thanks,
    Sent from Cisco Technical Support iPad App

  • TACACS not authenticating 6500

    Devices not authenticating with TACACS. I am wondering what the following outputs mean?
    Aug: %AAA-3-BADSERVERTYPEERROR: Cannot process accounting server type tacacs+ (UNKNOWN)
    Aug: %AAA-3-BADSERVERTYPEERROR: Cannot process accounting server type tacacs+ (UNKNOWN)
    Aug: %AAA-3-BADSERVERTYPEERROR: Cannot process accounting server type tacacs+ (UNKNOWN)
    Aug: %AAA-3-BADSERVERTYPEERROR: Cannot process accounting server type tacacs+ (UNKNOWN)
    Aug: %AAA-3-BADSERVERTYPEERROR: Cannot process accounting server type tacacs+ (UNKNOWN)
    Aug: %AAA-3-BADSERVERTYPEERROR: Cannot process accounting server type tacacs+ (UNKNOWN)
    Aug: %AAA-3-BADSERVERTYPEERROR: Cannot process accounting server type tacacs+ (UNKNOWN)
    Aug: %AAA-3-BADSERVERTYPEERROR: Cannot process accounting server type tacacs+ (UNKNOWN)
    Aug: %AAA-3-BADSERVERTYPEERROR: Cannot process authentication server type tacacs+ (UNKNOWN)
    Aug: %AAA-3-BADSERVERTYPEERROR: Cannot process accounting server type tacacs+ (UNKNOWN)

    Hi,
    Kindly check config at 6500. Check whether the server ip and shared key are mentioned and are correct.
    Regards,
    Anim Saxena
    Community Manager 

  • Not Working-central web-authentication with a switch and Identity Service Engine

    on the followup the document "Configuration example : central web-authentication with a switch and Identity Service Engine" by Nicolas Darchis, since the redirection on the switch is not working, i'm asking for your help...
    I'm using ISE Version : 1.0.4.573 and WS-C2960-24PC-L w/software 12.2(55)SE1 and image C2960-LANBASEK9-M for the access.
    The interface configuration looks like this:
    interface FastEthernet0/24
    switchport access vlan 6
    switchport mode access
    switchport voice vlan 20
    ip access-group webauth in
    authentication event fail action next-method
    authentication event server dead action authorize
    authentication event server alive action reinitialize
    authentication order mab
    authentication priority mab
    authentication port-control auto
    authentication periodic
    authentication timer reauthenticate server
    authentication violation restrict
    mab
    spanning-tree portfast
    end
    The ACL's
    Extended IP access list webauth
        10 permit ip any any
    Extended IP access list redirect
        10 deny ip any host 172.22.2.38
        20 permit tcp any any eq www
        30 permit tcp any any eq 443
    The ISE side configuration I follow it step by step...
    When I conect the XP client, e see the following Autenthication session...
    swlx0x0x#show authentication sessions interface fastEthernet 0/24
               Interface:  FastEthernet0/24
              MAC Address:  0015.c549.5c99
               IP Address:  172.22.3.184
                User-Name:  00-15-C5-49-5C-99
                   Status:  Authz Success
                   Domain:  DATA
           Oper host mode:  single-host
         Oper control dir:  both
            Authorized By:  Authentication Server
               Vlan Group:  N/A
         URL Redirect ACL:  redirect
             URL Redirect: https://ISE-ip:8443/guestportal/gateway?sessionId=AC16011F000000510B44FBD2&action=cwa
          Session timeout:  N/A
             Idle timeout:  N/A
        Common Session ID:  AC16011F000000490AC1A9E2
          Acct Session ID:  0x00000077
                   Handle:  0xB7000049
    Runnable methods list:
           Method   State
           mab      Authc Success
    But there is no redirection, and I get the the following message on switch console:
    756005: Mar 28 11:40:30: epm-redirect:IP=172.22.3.184: No redirection policy for this host
    756006: Mar 28 11:40:30: epm-redirect:IDB=FastEthernet0/24: In epm_host_ingress_traffic_qualify ...
    I have to mention I'm using an http proxy on port 8080...
    Any Ideas on what is going wrong?
    Regards
    Nuno

    OK, so I upgraded the IOS to version
    SW Version: 12.2(55)SE5, SW Image: C2960-LANBASEK9-M
    I tweak with ACL's to the following:
    Extended IP access list redirect
        10 permit ip any any (13 matches)
    and created a DACL that is downloaded along with the authentication
    Extended IP access list xACSACLx-IP-redirect-4f743d58 (per-user)
        10 permit ip any any
    I can see the epm session
    swlx0x0x#show epm session ip 172.22.3.74
         Admission feature:  DOT1X
         ACS ACL:  xACSACLx-IP-redirect-4f743d58
         URL Redirect ACL:  redirect
         URL Redirect:  https://ISE-ip:8443/guestportal/gateway?sessionId=AC16011F000000510B44FBD2&action=cwa
    And authentication
    swlx0x0x#show authentication sessions interface fastEthernet 0/24
         Interface:  FastEthernet0/24
         MAC Address:  0015.c549.5c99
         IP Address:  172.22.3.74
         User-Name:  00-15-C5-49-5C-99
         Status:  Authz Success
         Domain:  DATA
         Oper host mode:  multi-auth
         Oper control dir:  both
         Authorized By:  Authentication Server
         Vlan Group:  N/A
         ACS ACL:  xACSACLx-IP-redirect-4f743d58
         URL Redirect ACL:  redirect
         URL Redirect:  https://ISE-ip:8443/guestportal/gateway?sessionId=AC16011F000000510B44FBD2&action=cwa
         Session timeout:  N/A
         Idle timeout:  N/A
         Common Session ID:  AC16011F000000160042BD98
         Acct Session ID:  0x0000001B
         Handle:  0x90000016
         Runnable methods list:
         Method   State
         mab      Authc Success
    on the logging, I get the following messages...
    017857: Mar 29 11:27:04: epm-redirect:IDB=FastEthernet0/24: In epm_host_ingress_traffic_qualify ...
    017858: Mar 29 11:27:04: epm-redirect:epm_redirect_cache_gen_hash: IP=172.22.3.74 Hash=271
    017859: Mar 29 11:27:04: epm-redirect:IP=172.22.3.74: CacheEntryGet Success
    017860: Mar 29 11:27:04: epm-redirect:IP=172.22.3.74: Ingress packet on [idb= FastEthernet0/24] matched with [acl=redirect]
    017861: Mar 29 11:27:04: epm-redirect:IDB=FastEthernet0/24: Enqueue the packet with if_input=FastEthernet0/24
    017862: Mar 29 11:27:04: epm-redirect:IDB=FastEthernet0/24: In epm_host_ingress_traffic_process ...
    017863: Mar 29 11:27:04: epm-redirect:IDB=FastEthernet0/24: Not an HTTP(s) packet
    What I'm I missing?

  • "530 5.7.1 Client was not authenticated" Error with mail service

    Hi,
    I have some problem with Mail service with the Webspaces application. I have configured the Service (with MS Exchange server) with WebSpaces Application with the required IMAP, SMTP, External Application and LDAP Settings correctly. I opened the Mail Page and Logged in with the
    user credentials. I am able to see the incoming mails , But when I try to send a mail I am getting the following exception. For some reason, SMTP send is failing. I did the same IMAP and SMTP settings in MS Outlook and successfully sent the mail. what could be the problem? Please repond.
    oracle.webcenter.collab.mail.MailException: Failed to send the message with subject "Test". Further information: 530 5.7.1 Client was not authenticated
         at oracle.webcenter.collab.mail.MailSession.sendMessage(MailSession.java:864)
         at oracle.webcenter.collab.mail.view.backing.MessageHandler.sendMessage(MessageHandler.java:528)
         at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
         at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
         at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
         at java.lang.reflect.Method.invoke(Method.java:597)
         at com.sun.el.parser.AstValue.invoke(AstValue.java:157)
         at com.sun.el.MethodExpressionImpl.invoke(MethodExpressionImpl.java:283)
         at org.apache.myfaces.trinidadinternal.taglib.util.MethodExpressionMethodBinding.invoke(MethodExpressionMethodBinding.java:53)
         at org.apache.myfaces.trinidad.component.UIXComponentBase.broadcastToMethodBinding(UIXComponentBase.java:1245)
         at org.apache.myfaces.trinidad.component.UIXCommand.broadcast(UIXCommand.java:183)
         at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent$1.run(ContextSwitchingComponent.java:87)
         at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent._processPhase(ContextSwitchingComponent.java:298)
         at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent.broadcast(ContextSwitchingComponent.java:91)
         at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:87)
         at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent$1.run(ContextSwitchingComponent.java:87)
         at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent._processPhase(ContextSwitchingComponent.java:298)
         at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent.broadcast(ContextSwitchingComponent.java:91)
         at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:81)
         at javax.faces.component.UIViewRoot.broadcastEvents(UIViewRoot.java:475)
         at javax.faces.component.UIViewRoot.processApplication(UIViewRoot.java:756)
         at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._invokeApplication(LifecycleImpl.java:673)
         at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(LifecycleImpl.java:273)
         at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:165)
         at javax.faces.webapp.FacesServlet.service(FacesServlet.java:265)
         at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
         at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
         at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:292)
         at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.portlet.client.adapter.adf.ADFPortletFilter.doFilter(ADFPortletFilter.java:26)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.webcenter.webcenterapp.internal.view.webapp.WebCenterShellPageRedirectionFilter.doFilter(WebCenterShellPageRedirectionFilter.java:210)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.adf.model.servlet.ADFBindingFilter.doFilter(ADFBindingFilter.java:191)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.webcenter.webcenterapp.internal.view.webapp.WebCenterShellFilter.doFilter(WebCenterShellFilter.java:603)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.adf.view.page.editor.webapp.WebCenterComposerFilter.doFilter(WebCenterComposerFilter.java:92)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.adf.share.http.ServletADFFilter.doFilter(ServletADFFilter.java:65)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter(RegistrationFilter.java:85)
         at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:420)
         at oracle.adfinternal.view.faces.activedata.AdsFilter.doFilter(AdsFilter.java:54)
         at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:420)
         at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilterImpl(TrinidadFilterImpl.java:247)
         at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilter(TrinidadFilterImpl.java:157)
         at org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFilter.java:92)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.adf.library.webapp.LibraryFilter.doFilter(LibraryFilter.java:159)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.security.jps.wls.JpsWlsFilter$1.run(JpsWlsFilter.java:96)
         at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:313)
         at oracle.security.jps.wls.util.JpsWlsUtil.runJaasMode(JpsWlsUtil.java:146)
         at oracle.security.jps.wls.JpsWlsFilter.doFilter(JpsWlsFilter.java:140)
         at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:70)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.webcenter.webcenterapp.internal.view.webapp.WebCenterLocaleWrapperFilter.processFilters(WebCenterLocaleWrapperFilter.java:256)
         at oracle.webcenter.webcenterapp.internal.view.webapp.WebCenterLocaleWrapperFilter.doFilter(WebCenterLocaleWrapperFilter.java:215)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.dms.wls.DMSServletFilter.doFilter(DMSServletFilter.java:202)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3588)
         at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
         at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
         at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2200)
         at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2106)
         at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1428)
         at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
         at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
    Caused by: com.sun.mail.smtp.SMTPSendFailedException: 530 5.7.1 Client was not authenticated
         at com.sun.mail.smtp.SMTPTransport.issueSendCommand(SMTPTransport.java:1388)
         at com.sun.mail.smtp.SMTPTransport.mailFrom(SMTPTransport.java:959)
         at com.sun.mail.smtp.SMTPTransport.sendMessage(SMTPTransport.java:583)
         at oracle.webcenter.collab.mail.MailSession.sendMessage(MailSession.java:850)
    Edited by: indra_owc on Jan 9, 2010 6:14 PM

    The server probably wants you to use the STARTTLS command before you authenticate.
    See the com.sun.mail.smtp package javadocs for the property to set to enable that.

  • "peer not authenticated" - Connecting to ORDS with SQL Developer

    Background
    Configuring ORDS (2.0.7) to my database, with APEX_LISTENER and APEX_REST_PUBLIC_USER created via APEX 4.2.2 script.
    Listener is running as expected - and APEX works as expected.
    ORDS credential setup (as made evident by the credentials file with the user name inside)
    Addition of the line to the ords/default.xml:  <entry key="security.verifySSL">false</entry>
    To allow connection without using SSL.
    Current Status
    I am able to connect using SQL Developer "Restful Data Services" feature using the "HTTP" connection and the credentials that have been setup successfully.
    Problem
    Attempting to configure a SQL Developer (4.0.2.15) connection using the same account, but HTTPS with 443 - the connection results in the error message:
    Authentication Failure
    Cannot connect to S42
    peer not authenticated
    Additional
    I am using an installation of Tomcat and a version of Glassfish to test this feature.  I have received the same error on both test cases.
    I have also tested by removing the <entry key="security.verifySSL">false</entry>
    Is there a specific type of HTTPS certificate that is required to connect using HTTPS? 
    Did I miss a different setting?
    Regards,
    Tim St.

    Got this working, needed a change to the config file on weblogic server by our DBA.

  • Machine Authentication not happening with MAR

    ACS(SE)4.2
    WLC (4402)5.1.163
    AD 2003 Server
    Currently we are using ACS to authenticate VPN user for two domain.In the same ACS we want to configure machine authentication + PEAP + Self Signed Certificate.Now clients are authenticated with a valid username and password in any of the domain but machine authentication is not happening.
    Our Requirement :we want to acheive machine authentication and user authentication simultaneously. i.e. Computers which are added to particular group with a valid username and password can only access the network.If any one of above requirement is not fulfill then end host cannot access the network.
    Can anyone suggest what configuration required to acheive our requirement?
    Note: We are using same ACS for VPN authentication.

    Currently we are using WindowXP SP3.
    Client Configuration:
    1. network Authentication: WPA + TKIP
    2. EAP type: Protected EAP(PEAP)
    3. Authenticate as computer when computer information is available is (checked)
    4. Validated server certificate is (unchecked)
    5. Authentication Method is: EAP- MSCHAPv2
    ACS External Database Configuration:
    Tick "Enable PEAP machine authentication".
    Tick "Enable Machine Access Restrictions".
    Ensure that "Group map for successful user authentication without machine authentication:" is mapped to "No Access".
    We are using Windows AD database as external database.
    Currently we have created one wireless group in AD which is mapped to a group in ACS and the ACS group is mapped to the SSID in WLC. We are trying to authenticate the computer which are added to the Wireless AD group. But currently all users which are there in the AD are authenticate by their Username/password instead of machine authentication ( computer which are present in the group).
    In WLC, client details showing domain\username instead of host/computer name.
    Your quick response would be highly appreciated!!!!!!

  • Hi! I have problems with my calender. The diarise of dates is sometimes not authentic, dates dissapeare or were put on a wrong day. Who can help?

    Hi! I have problems with my calender. The diarise of dates is sometimes not authentic, dates dissapeare or were put on a wrong day. Who can help?

    Don't worry I've sorted it! I just had to turn off Reminders as well in iCloud. Calendar then worked fine, even when I turned Calendar and Reminders back on.

  • JAAS authentication is not working with IIOP and wlclient.jar

    Hi,
    I'm currently working on a remote client that requires authentication with JAAS.
    The Application server is Weblogic 9.2 MP1.
    The client is deployed with wlclient.jar and the used protocol is iiop.
    I'm also using the default UsernamePasswordLoginModule module for authentication.
    The LoginContext.login goes smoothly but the Principal Set in the obtained Subject object is empty!
    Using the same code with weblogic.jar and t3 protocol the principals are filled(i.e. I can see the groups where the involved user is member).
    Any suggestions ??
    regards,
    Luca

    So, when you execute this, where exactly does it crash/stop, or what is the output you get from those dbms_output lines? Do you know the output of memberOf and are you sure that things will match?

  • WNM Not Authenticated

    I am trying to setup WDS and have on an access point and get the message that the WNM is not Authenticated. On the ACS Server it appears that both the AP and WLSE have passed authentication, any ideas?

    I had this problem when I first configured the WLSE with an AP with WDS. After playing with it, I found that the WLSE needs to discover the WDS AP first. Make sure the username and password match on the WDS AP and on the WLSE. Here is what I have on my AP. It took a while, but after having it rediscover the AP a few times, it finally took. This was with v2.5. I have not set up any with v2.7 yet. Also, check the help on the WLSE. I don’t have an ACS in this design. Hope this helps.
    wlccp authentication-server infrastructure method_cisco
    wlccp wds priority 255 interface BVI1
    wlccp wnm ip address x.x.x.x
    wlccp ap username xxxx password 7 xxxxxxxxxxx
    (Fill in the information for the xxxxxx’s)

  • Wnm Not Authenticated on backup radius

    Hi,
    I have a WLSE with 2.12 version firmware and AP 1210 serie with 12.3(7)JA firmware. I have several site location with 2 radius server (a main and a backup).
    When I turn off the main radius server, to make test, all the AP go to the backup to register. But the WNm status stay on Not Authenticated. ow can I do to change the status to Security Keys Setup ?
    I hope you understand me. Thanks for helping me.

    Step 1 Browse to the Wireless Services Summary page
    Step 2 Click WDS to browse to the WDS/WNM Summary page.
    Step 3 On the WDS/WNM Summary page, click Settings to browse to the WDS/WNM Settings page
    Step 4 Check the Use this AP as Wireless Domain Services check box.
    Step 5 In the Wireless Domain Services Priority field, enter a priority number from 1 to 255 to set the priority of this WDS candidate. The WDS access point candidate with the highest priority number becomes the acting WDS access point.
    Step 6 (Optional) If you use a Wireless LAN Solutions Engine (WLSE) on your network, check the Configure Wireless Network Manager check box and enter the IP address of the WLSE device in the Wireless Network Manager IP Address field. The WDS access point collects radio measurement information from access points and client devices and sends the aggregated data to the WLSE device.
    Step 7 Click Apply.
    Step 8 Click Server Groups to browse to the WDS Server Groups page
    Step 9 Create a group of servers to be used for 802.1x authentication for the infrastructure devices (access points) that use the WDS access point. Enter a group name in the Server Group Name field.
    Step 10 Select the primary server from the Priority 1 drop-down menu. (If a server that you need to add to the group does not appear in the Priority drop-down menus, click Define Servers to browse to the Server Manager page. Configure the server there, and then return to the WDS Server Groups page.)
    Step 11 (Optional) Select backup servers from the Priority 2 and 3 drop-down menus.
    Step 12 Click Apply.
    Step 13 Configure the list of servers to be used for 802.1x authentication for CCKM-enabled client devices. You can specify a separate list for clients using a certain type of authentication, such as EAP, LEAP, or MAC-based, or specify a list for client devices using any type of authentication. Enter a group name for the server or servers in the Server Group Name field.
    Step 14 Select the primary server from the Priority 1 drop-down menu. (If a server that you need to add to the group does not appear in the Priority drop-down menus, click Define Servers to browse to the Server Manager page. Configure the server there, and then return to the WDS Server Groups page.)
    Step 15 (Optional) Select backup servers from the Priority 2 and 3 drop-down menus.
    Step 16 (Optional) Select Restrict SSIDs to limit use of the server group to client devices using specific SSIDs. Enter an SSID in the SSID field and click Add. To remove an SSID, highlight it in the SSID list and click Remove.
    Step 17 Click Apply.
    Step 18 Configure the WDS access point for EAP authentication

  • WDS: Keys managment with PEAP

    Hi
    I have to install a WLAN in my company
    I have to make 4 Vlan (1 for the wired managment equipments and 3 SSID)
    I have 30 1231AP with 12.3 JA version, 4 2950-24XL and 4 PIX 506E (1/vlan)
    I have Windows XP SP2 stations, and I want to use the native PEAP option ( without vendors supplicants)
    Questions
    Does the WDS AP cache the user session key when using WPA/PEAP methods or does it cache keys only with CCKM methods?
    If it's not working with WPA/PEAP methods, does it usefull to implement WDS Infrastructure?
    Best regards
    Julien

    WDS caches the Master key as used in CCKM authentication for fast re-authentication for roaming clients. As a client roams to new AP, it will re-authenticate with WDS using this Master key & CCKM key authentication protocol.
    If clients are not CCKM-capable, the WDS merely passes a session key to the AP.

Maybe you are looking for

  • Thread problem on windows xp

    Hi, all I have thread code looks like below. Under linux, I will see 'thread offline!' message when invoke offline method in myTask class. Under windows xp, I didn't see any output message. Does this mean thead still alive? Is it ok to controll a thr

  • FiOS On Demand in need of a complete overhaul! Won't you agree?

    Might be nice for fellow members to tag onto this thread if you are in agreement.  Verizon might then take notice and action. I'm new to FiOS at my home, and have TV (Preferred HD, whole house DVR), Internet (50/50, Quantum Gateway), and Phone servic

  • Compressor Batch - will NOT open batch monitor

    i had to reinstall my friends FCP/Compressor/DVDSP (he didn't want the other stuff) but now when we try to export a file from compressor to a dvd file such as dolby audio we get an error saying "unable to connect to background process" any ideas? may

  • Front Row alternative

    Hey all, For anyone interested, Equinux has an alternative to Front Row called Media Central. Click here to download. Jrsy

  • Question on Numbers Formula:

    Hello Guys, Thanks in Advance for all those who attempt to solve my question. I am preparing a numbers file that helps me track my expenses. I would like to know a formula that i should apply on a table that basically sorts and populates all the enti