CertExams.com Simulator Lab Exercises Answers
Description : The lab exercise explains WLAN configured without authentication.
Authentication on WLCs
The Cisco Unified Wireless Network (UWN) security solution bundles potentially complicated Layer 1, Layer 2, and Layer 3 802.11 Access Point (AP) security components into a simple policy manager that customizes system-wide security policies on a per-wireless LAN (WLAN) basis. The Cisco UWN security solution provides simple, unified, and systematic security management tools.
Layer 1 Solutions: Restrict client access based on the number of consecutive failed attempts.
1. None authentication: No Layer 2 authentication is performed on the WLAN
2. Static WEP: With Static Wired Equivalent Privacy (WEP), all APs and client radio NICs on a particular WLAN must use the same encryption key. Each sending station encrypts the body of each frame with a WEP key before transmission, and the receiving station decrypts it using an identical key upon reception.
3. 802.1x: Configures the WLAN to use the 802.1x based authentication. The use of IEEE 802.1X offers an effective framework in order to authenticate and control user traffic to a protected network, as well as dynamically vary encryption keys. 802.1X ties a protocol called Extensible Authentication Protocol (EAP) to both the wired and WLAN media and supports multiple authentication methods.
4. Static WEP + 802.1x: This Layer 2 security setting enables both 802.1x and Static WEP. Clients can either use Static WEP or 802.1x authentication in order to connect to the network.
None: When this option is selected from the Layer 3 security drop-down list, no Layer 3 authentication is performed on the WLAN.
Web Policy (Web Authentication and Web Passthrough):Web authentication is typically used by customers who want to deploy a guest-access network. In a guest-access network, there is initial username and password authentication, but security is not required for the subsequent traffic.
Web passthrough is a solution through which wireless users are redirected to an acceptable usage policy page without having to authenticate when they connect to the Internet. This redirection is taken care of by the WLC itself. The only requirement is to configure the WLC for web passthrough, which is basically web authentication without having to enter any credentials.
1. Click WLAN tab from the menu at the top of the window in order to create a WLAN.
2. The WLANs window appears. This window lists the WLANs configured on the controller.
3. Select Create New from the drop down and click Go button in order to configure a new WLAN.
4. Enter the parameters for the WLAN as shown in the below fig. And then click Apply button.
5. In the WLAN > Edit window, define the parameters specific to the WLAN.
6. For a WLAN to become active, the status should be enabled. To enable it , click General tab and select Status checkbox.
Please refer to the CertExams.com Network Simulator software for complete lab with commands.