Cisco CiscoWorks Wireless LAN Solution Engine Manuel d'utilisateur Page 5
- Page / 10
- Table des matières
- MARQUE LIVRES
Noté. / 5. Basé sur avis des utilisateurs
All contents are Copyright © 1992–2005 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information. Page 5 of 10
that scan the RF environment. Optionally, Cisco client cards and Cisco compatible client devices provide additional information about the RF
environment. Rogue access point detection, unauthorized ad-hoc WLAN detection, and Excess Management Frame detection are supported
using the integrated WLAN IDS.
●
Dedicated WLAN IDS—A dedicated access point-only WLAN is deployed with the access point radio (802.11a, b, or g) placed in radio scan
mode to support WLAN intrusion monitoring. Access points configured for dedicated IDS do not support clients. This solution provides
continuous monitoring of the RF environment. Active-but-unassociated client device monitoring is supported to minimize the risk of clients
associating to rogue access points and to protect the network from malicious intruders probing the RF environment for weaknesses.
Other security features of CiscoWorks WLSE Express include:
●
Integrated Authentication and Authorization server—CiscoWorks WLSE Express provides an embedded User authentication and
authorization server. For remote and branch-office locations, this provides WAN link survivability by providing local user-authentication
services for both wired and wireless users. It supports popular EAP types including LEAP, PEAP, EAP-FAST, and EAP-TLS for up to
500-1000 users. CiscoWorks WLSE Express also supports Lightweight Directory Access Protocol (LDAP) and Active Directory user
directories for user authentication.
●
Security policy monitoring—All access points on the network are monitored for consistent application of security policies. Alerts are
generated for violations and can be delivered by e-mail, syslog, or SNMP trap notifications. Several policies including SSIDs, security
schemes (Open, EAP), encryption, telnet, and HTTP settings can be monitored for enforcement.
●
Secure user interface—CiscoWorks WLSE Express provides a secure HTML-based user interface that may be accessed anywhere, even
through firewalls. In addition to the Web-based GUI, a command-line interface (CLI) like that in Cisco IOS Software provides direct console,
Telnet, or SSH access for basic configuration and troubleshooting. CiscoWorks WLSE Express communicates with access points using HTTP
Secure Sockets Layer (SSL) sessions for management.
●
Role-based access model—CiscoWorks WLSE has a flexible, role-based user access model. For example, help desk personnel can be limited
to viewing reports and faults. Several common authentication modules are supported, including TACACS+, and RADIUS. WLSE also
enables centralized user administration by integrating with Cisco Secure ACS. Users can be defined and mapped to a user role centrally on
Cisco Secure ACS.
●
Management Frame Protection—CiscoWorks WLSE Express also provides Management Frame Protection (MFP), by which management
frames between Access Points are authenticated, eliminating several WLAN attacks that arise due to spoofing of authorized devices.
CiscoWorks WLSE Express enables MFP in the network and provides visibility into network events associated with MFP
detection/protection.
Performance Optimization and High Availability
Interference detection and location is critical to maintaining a reliable WLAN. RF measurements sent to CiscoWorks WLSE Express include
measurements for both 802.11 and non-802.11 interference. If the interference exceeds an administrator-defined threshold, a fault is generated
so that the administrator can quickly locate and suppress the source of the interference.
●
Air/RF scanning and monitoring—Cisco Aironet access points are multifunctional, with built-in RF scanning and measurement capabilities.
CiscoWorks WLSE Express analyzes these RF measurements, provides notification if performance degrades, and displays air/RF coverage
(Figure 2). It also analyzes RF measurements from Cisco Aironet and Cisco compatible client devices. Client air scanning and monitoring
provide 10 to 20 times more RF measurement data than access-point RF measurements alone. Because WLAN clients can freely move about
all areas of a building, the addition of client scanning and monitoring extends RF monitoring into areas most likely to contain rogue access
points while allowing for more accurate detection.
Produits connexes et manuels pour Mise en réseau Cisco CiscoWorks Wireless LAN Solution Engine
Mise en réseau Cisco WS-X6708-10G-3CXL= - 10 Gigabit Ethernet Module Manuel d'utilisateur
(62 pages)
(62 pages)
Mise en réseau Cisco PA-5EFL= Spécifications
(40 pages)
(40 pages)
(56 pages)
Mise en réseau Cisco RSP4+ Bootflash Memory Upgrade to 16MB MEM-16F-RSP4+= Spécifications
(232 pages)
(232 pages)
Mise en réseau Cisco 7609 Spécifications
(572 pages)
(572 pages)
© 2020, manymanuals.fr. Tous droits réservés | 0.031 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commentaires sur ces manuels