Cisco AP541N-A-K9, AP 541N Administration Manual
Cisco Small Business Pro
AP 541N Dual-band Single-radio Access Point
OL-20285-01
ADMINISTRATION
GUIDE
Contents
Preface 3
Audience 3
Document Conventions 3
Online Help, Supported Browsers, and Limitations 5
Chapter 1: Getting Started 6
Administrator Computer Requirements 7
Administration PC IP Address 8
Connecting the Access Point to a PC 8
Connect the Access Point to an Administration PC 9
Connecting the Access Point to the PC by using a Direct Cable Connection9
Connecting the Access Point to the PC through a Network Connection 10
Launching the Access Point Configuration Utility 11
Display the Configuration Utility By Using the Default IP Address 11
Display the Configuration Utility by Using Cisco Configuration Assistant 2.1 or
higher 14
Display the Configuration Utility by Using Another IP Address 16
Troubleshooting Your Connection 18
Using the Ping Command to Test the Connection 18
Possible Cause of Failure 18
Resetting the Device by using the Reset Button 19
Configuring the Access Point by using the Getting Started Page 20
Access Point Configuration 20
Access Point Management Page 21
Wireless Configuration Page 21
Wireless Client Requirements 21
Verifying the Installation 23
Configuring Security on the Wireless Access Point 24
Chapter 2: Status 26
Device Information 27
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide i
Contents
Network Interfaces 28
Wired Settings 29
Wireless Settings 29
Traffic Statistics 29
Associated Clients 32
Link Integrity Monitoring 34
Rogue AP Detection 34
Save or Import a List of Known Access Points 39
Chapter 3: Setup 40
LAN Settings 40
Configuring 802.1X Authentication 43
Enabling the Network Time Protocol 46
Chapter 4: Wireless 52
Modifying Wireless Radio Settings 52
Modifying Virtual Access Point Settings 55
Security (Mode) 63
Client Connection Control 76
Configuring a MAC Filter and Station List on the Access Point 76
Configuring MAC Authentication on the RADIUS Server 79
Modifying Advanced Settings 79
Configuring the Wireless Distribution System 91
WEP on WDS Links 94
WPA/PSK on WDS Links 95
Bandwidth Utilization 96
Configuring Quality of Service (QoS) 97
Chapter 5: SNMP 104
Configuring SNMP on the Access Point 104
Configuring SNMP Views 108
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide ii
Configuring SNMP Groups 110
Configuring SNMP Users 113
Contents
SNMP Targets 115
Chapter 6: Administration 118
Administrator 118
Access Point Configuration 120
Resetting the Access Point to the Factory Default Configuration 121
Saving the Current Configuration to a Backup File 121
Saving the Current Configuration by using TFTP 121
Saving the Current Configuration by using HTTP 122
Restoring the Configuration from a Previously Saved File 122
Restoring the Current Configuration by using TFTP 122
Restoring the Current Configuration by Using HTTP 123
Rebooting the Access Point 124
Software Upgrade 124
Upgrading the Software by using TFTP 124
Upgrading the Software by Using HTTP 126
Event Logs 127
Configuring Persistent Logging Options 128
Configuring the Log Relay Host for Kernel Messages 130
Enabling or Disabling the Log Relay Host on the Events Page 131
Configuring the Web Server Settings 132
Creating an Administration Access Control List 134
Chapter 7: Clustering Multiple Access Points 136
Managing Access Points in the Cluster 136
Clustering Single and Dual Radio Access Points 137
Viewing and Configuring Cluster Members 137
Removing an Access Point from the Cluster 140
Adding an Access Point to a Cluster 140
Navigating to Configuration Information for a Specific Access Point 141
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide iii
Navigating to an Access Point by Using its IP Address in a URL 141
Contents
Managing Cluster Sessions 142
Sorting Session Information 144
Configuring and Viewing Channel Management Settings 145
Stopping/Starting Automatic Channel Assignment 146
Viewing Current Channel Assignments and Setting Locks 147
Viewing the Last Proposed Set of Changes 148
Configuring Advanced Settings 149
Viewing Wireless Neighborhood Information 150
Viewing Details for a Cluster Member 154
Chapter 8: Configuration Examples 156
Configuring a VAP 157
VAP Configuration from the Web Interface 158
VAP Configuration Using SNMP 159
Configuring Wireless Radio Settings 160
Wireless Radio Configuration from the Web Interface 160
Wireless Radio Configuration Using SNMP 162
Configuring the Wireless Distribution System 162
WDS Configuration from the Web Interface 163
WDS Configuration Using SNMP 164
Clustering Access Points 165
Clustering APs by Using the Web Interface 165
Clustering Access Points by Using SNMP 167
Appendix A:Default Settings 168
Appendix B:Where to Go From Here 172
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide iv
Preface
!
Audience
Preface
This guide describes setup, configuration, administration and maintenance for the
®
Cisco
This guide is intended for System Administrators that are responsible for
configuring and operating a network by using Cisco software
To obtain the greatest benefit from this guide, you should also have basic
knowledge of Ethernet and wireless networking concepts.
AP 541N Dual-band Single-radio Access Point on a wireless network.
Document Conventions
This section describes the conventions this document uses.
NOTE A note provides more information about a feature or technology and cross-
references to related topics.
CAUTION A caution provides information about critical aspects of access point configuration,
combinations of settings, events, or procedures that can adversely affect network
connectivity, security, and so forth.
AP541N Dual-band Single-radio Access Point Administration Guide 3
Ta bl e 1 describes the typographical conventions used in this guide.
Table 1 Typographical Conventions
Symbol Example Description
Preface
Bold Click Apply to save
your settings.
Blue Text See Document
Conventions, page
3.
courier font WLAN-AP# show
network
courier font
value Command parameter, which might be a
italics
<> Angle
<value> Indicates a parameter is a variable. You
brackets
[ ] Square
[value] Indicates an optional fixed parameter.
brackets
[< >] Angle
[<value>] Indicates an optional variable.
brackets within
square
brackets
Menu titles, page names, and button
names
Hyperlinked text.
Screen text, file names, commands,
user-typed command-line entries
variable or fixed value.
must enter a value in place of the
brackets and text inside them.
{} curly braces {choice1 |
choice2}
| Vertical bars choice1 |
choice2
[{}] Braces
within square
[{choice1 |
choice2}]
Indicates that you must select a
parameter from the list of choices.
Separates the mutually exclusive
choices.
Indicate a choice within an optional
element.
brackets
AP541N Dual-band Single-radio Access Point Administration Guide 4
Online Help, Supported Browsers, and Limitations
Online help for the Access Point Configuration Utility pages provides information
about all fields and features available from the Access Point Configuration Utility.
The information in the online help is a subset of the information available in the
AP541N Dual-band Single-radio Access Point Administration Guide.
Online help information corresponds to each page on the Access Point
Configuration Utility.
For information about the settings on the current page, click the Help link on the
right side of a page.
Preface
AP541N Dual-band Single-radio Access Point Administration Guide 5
Getting Started
The Cisco Access Point provides continuous, high-speed access between
wireless devices and Ethernet devices. It is an advanced, standards-based
solution for wireless networking in businesses of any size. The access point
enables wireless local area network (WLAN) deployment while providing state-ofthe-art wireless networking features.
The access point operates in Standalone Mode. In Standalone Mode, the access
point acts as an individual access point in the network, and you manage it by using
the Access Point Configuration Utility, or SNMP.
1
This document describes how to perform the setup, management, and
maintenance of the access point in Standalone Mode. Before you power on a new
access point, review the following sections to check required hardware and
software components, client configurations, and compatibility issues. Make sure
you have everything you need for a successful launch and test of your new or
extended wireless network.
This chapter contains the following topics:
• Administrator Computer Requirements
• Connecting the Access Point to a PC
• Troubleshooting Your Connection
• Configuring the Access Point by using the Getting Started Page
• Verifying the Installation
• Configuring Security on the Wireless Access Point
To manage the access point by using the Web interface, the access point needs
an IP address. If you use VLANs or IEEE 802.1X Authentication (port security) on
your network, you might need to configure additional settings on the access point
before it can connect to the network.
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide 6
1
NOTE The WLAN AP is not designed to function as a gateway to the Internet. To connect
your WLAN to other LANs or the Internet, you need a gateway device.
Administrator Computer Requirements
Ta bl e 1 describes the minimum requirements for the personal computer for the
initial configuration and administration of the access point through a Access Point
Configuration Utility.
Table 1 Requirements for Configuration
Getting Started
Administrator Computer Requirements
Required Software
or Component
Ethernet Connection
to the Access Point
Web Browser and
Operating System
Description
The computer used to configure the access point must
be connected to the access point by an Ethernet cable.
The IP address must be on the same subnet as the
access point. The subnet mask must match the subnet
mask of the access point. The Administration PC IP
Address section describes the procedure for changing
these parameters on a PC running Windows.
The following Web browsers can be used to display
the access point Configuration Utility Web pages:
®
• Microsoft
(with up-to-date patch level for either major
version) and Mozilla Firefox 3.x on Microsoft
Windows
• Mozilla Firefox 3.x on Redhat
or later
The Web browser must have JavaScript™ enabled to
support the interactive features of the Configuration
Utility interface.
Internet Explorer® version 6.x or 7.x
®
XP or Microsoft Windows 2000
®
Linux® version 2.4
Security Settings Ensure that security is disabled on the wireless client
7 Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide
used initially to configure the access point. Once the
device has been configured, security can be enabled.
Getting Started
Connecting the Access Point to a PC
Administration PC IP Address
We recommend that if you are starting from the default configuration or this is the
first time the device will be configured that you configure the device before you
deploy it in the network by using the access point default static IP address
(192.168.10.10). To do so, the PC IP address must be on the same subnet as the
access point.
Verify that your PC IP address is set to an address on the same subnet as the
access point:
STEP 1 From the Windows Start menu, choose Settings > Control Panel.
STEP 2 On the Control Panel dialog box, click Network.
STEP 3 In the Network dialog box select TCP/IP for your PC Ethernet card, then click
Properties.
1
STEP 4 In the IP Address window, click Specify an IP address.
STEP 5 In the IP Address field, enter an IP address that is in the same subnet as the access
point IP address. (The default access point IP address is 192.168.10.10. The
default subnet mask is 255.255.255.0.) For example, you can set the:
PC IP address to 192.168.10.250
PC IP subnet mask to 255.255.255.0
STEP 6 In the Subnet Mask field, type 255.255.255.0.
STEP 7 Click OK.
STEP 8 If you are prompted to restart your PC, click Yes .
Connecting the Access Point to a PC
To configure the access point, you can connect the access point directly to an
administration PC or through the network to an administration PC.
If you are not using CCA to configure the access point, we recommend that you configure
the device before deploying it in the network by following the instructions in the “Connect
the Access Point to an Administration PC” section. Otherwise, follow the instructions in
the “Connecting the Access Point to the PC through a Network Connection”
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide 8
1
195057
192.168.10.10
255.255.255.0
192.168.10.250
255.255.255.0
Getting Started
Connecting the Access Point to a PC
Connect the Access Point to an Administration PC
You can connect the access point to a administration PC directly or through the
network. We recommend that you connect the access point directly to the PC
unless you are using CCA to configure the access point.
Connecting the Access Point to the PC by using a Direct Cable
Connection
To connect the access point to an administration PC, use a direct-cable
connection:
STEP 1 Connect one end of an Ethernet straight-through or crossover cable to the network
port on the access point, as shown in Figure 1.
STEP 2 Connect the other end of the cable to the Ethernet port on the PC.
Figure1 Connecting the Access Point Using a Direct-Cable Connection
If you use this method, you will need to reconfigure the cabling for subsequent
startup and deployment of the access point so that the access point is no longer
connected directly to the PC but instead is connected to the LAN (either by using a
hub or a switch).
STEP 3 Connect the power adapter to the power port on the back of the access point.
STEP 4 Plug the other end of the power cord into a power outlet.
STEP 5 Configure the access point by following the instructions in the “Display the
Configuration Utility By Using the Default IP Address” section.
9 Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide
Getting Started
Connecting the Access Point to a PC
Connecting the Access Point to the PC through a Network Connection
To connect the access point to an administration PC through the network:
STEP 1 Connect one end of an Ethernet straight-through or crossover cable to the network
port on the access point, as shown in Figure 2.
STEP 2 Connect the other end to the same hub or switch where your PC is connected.
Figure 2 Connecting the Access Point Using a LAN Connection
1
The hub or switch you use must permit broadcast signals from the access point to
reach the other devices on the network.
STEP 3 If you are not using PoE, connect the power adapter to the power port on the back
of the access point, then plug the other end of the power cord into a power outlet.
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide 10
1
Getting Started
Connecting the Access Point to a PC
Launching the Access Point Configuration Utility
This section contains information for the for launching the Access Point
Configuration Utility:
• Using the default static IP address of the switch. Follow the instructions in the
“Display the Configuration Utility By Using the Default IP Address”
section.
• Using Cisco Configuration Assistant (CCA). Follow the instructions in the
“Display the Configuration Utility by Using Cisco Configuration Assistant
2.1 or higher” section.
• Using the an IP address assigned to the switch through DHCP. Follow the
instructions in the “Display the Configuration Utility by Using Another IP
Address” section.
Display the Configuration Utility By Using the Default IP
Address
To a c ce s s t he Access Point Configuration Utility, enter the default static IP
address of the access point into a Web browser, do the following:
STEP 1 Enter the Cisco AP 541N default static IP address in the address bar and press Enter. For
example, http://
The Login window displays, as shown in Figure 3.
192.168.10.10.
11 Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide
Getting Started
Connecting the Access Point to a PC
Figure 3 Login Window
1
STEP 2 Enter the login information:
Username = cisco
Default password cisco. (Passwords are case sensitive.)
When you log in, the Getting Started page for the access point Configuration
Utility is displayed, as shown in Figure 4.
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide 12
1
Getting Started
Connecting the Access Point to a PC
Figure 4 Getting Started Page
STEP 3 Update the Cisco AP 541N software with the latest version by clicking the Software
Upgrade link,
Next, we recommend that you:
• Change the password by clicking Change Administrator Password.
• Configure the SSID and enable wireless security, by clicking Configure
• Enable the wireless radio, by clicking Enable Wireless Radio.
• Assign a new static IP address to the access point if your network devices
as shown in Figure 4.
Wireless Networks (SSIDs).
are configured with static IP addresses, by clicking Set LAN IP Address.
13 Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide
Getting Started
195058
Internet
DHCP client
Connecting the Access Point to a PC
Display the Configuration Utility by Using
Cisco Configuration Assistant 2.1 or higher
Use Cisco Configuration Assistant 2.1 or higher (CCA) to configure the access
point when it is deployed in a Cisco Smart Business Communications System
(SBCS) network with a UC520 or SR520.
1
This procedure assumes you are familiar with CCA. You can find additional
information about CCA at http://www.cisco.com/en/US/products/ps7287/
tsd_products_support_series_home.html
To configure the access point by using CCA:
STEP 1 Connect the Ethernet port on the access point to a switch port on a SBCS device.
STEP 2 Power on the Cisco AP541N.
STEP 3 Connect a PC with CCA installed to any access switch port on the UC520 or
SR520.
STEP 4 Create a new CCA site by entering a name and the IP address of the UC520 or
SR520.
STEP 5 Connect to the CCA site by using the appropriate login credentials.
STEP 6 Click Window > Top olo gy Vi ew.
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide 14
1
Getting Started
Connecting the Access Point to a PC
When you have connected to the CCA site and the devices have been discovered,
the Topology Map includes the Cisco AP541N.
NOTE Non-Cisco devices connected to the switch are not shown in the Topology
map.
STEP 7 Right-click the access point to display the options: Configuration Utility,
Properties, and Annotation.
STEP 8 Click Configuration Utility.
The Access Point Configuration Utility
Figure 4.
Next, we recommend that you:
• Change the password by clicking Change Administrator Password.
• Configure the SSID and enable wireless security, by clicking Configure
Wireless Networks (SSIDs).
• Enable the wireless radio, by clicking Enable Wireless Radio.
• Assign a new static IP address to the access point if your network devices
are configured with static IP addresses, by clicking Set LAN IP Address.
displays in a new window, as shown in
15 Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide
Getting Started
!
Connecting the Access Point to a PC
Display the Configuration Utility by Using Another IP Address
You can display the Access Point Configuration Utility by using an IP address
assigned to the access point during a previous configuration or by a DHCP server.
When you power on the access point, the built-in DHCP client searches for a
DHCP server on the network to obtain an IP address and other network
information. If the access point does not find a DHCP server on the network, the
access point uses its default static IP address (192.168.10.10) unless you have
assigned it a static IP address (and specified a static IP addressing policy) or until
the access point successfully receives network information from a DHCP server.
CAUTION If the acce ss p oint IP addres s is chan ged, eithe r by a DHCP s erver or manually, your
link to the access point will be lost and you must enter the new IP address to use
the Access Point Configuration Utility.
1
To configure the access point by using an IP address other than the default static
IP address:
STEP 1 Power on the Cisco AP541N.
STEP 2 If you used a DHCP server on your network to automatically configure network
information for the access point, enter the IP address assigned to the access point
by the DHCP server into the Web browser.
If you have access to the DHCP server on your network and know the MAC
address of your access point, you can view the new IP address associated with
the MAC address of the access point. Otherwise, we recommend that you
disconnect the access point from the network, reset it to the default configuration
by using the procedure in the “Resetting the Device by using the Reset Button”
section, and configuring the device by using the procedure in the “Display the
Configuration Utility By Using the Default IP Address” section.
If you replaced the default static IP address with a new static IP address, enter the
new IP address of the access point into the Web browser
The Login window displays, as shown in Figure 3.
STEP 3 Enter the login information:
Username is cisco
Default password is cisco (passwords are case sensitive)
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide 16
1
Getting Started
Connecting the Access Point to a PC
When you log in, the Getting Started page for the access point Configuration
Utility is displayed, as shown in Figure 4.
STEP 4 Update the Cisco AP 541N software with the latest version by clicking the Software
Upgrade link,
Next, we recommend that you:
• Change the password by clicking Change Administrator Password.
• Configure the SSID and enable wireless security, by clicking Configure
• Enable the wireless radio, by clicking Enable Wireless Radio.
• Assign a new static IP address to the access point if your network devices
as shown in Figure 4.
Wireless Networks (SSIDs).
are configured with static IP addresses, by clicking Set LAN IP Address.
!
CAUTION If you do not have a DHCP server on your internal network, and do not plan to use
one, we recommend assigning a new static IP address so that if you bring up
another WLAN Cisco AP541N on the same network, the IP address for each access
point is unique. If the IP address is not unique, a conflict results causing
unpredictable results.
To change the connection type and assign a static IP address by using the Access
Point Configuration Utility, see LAN Settings, page 40.
17 Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide
Getting Started
Troubleshooting Your Connection
Troubleshooting Your Connection
If you cannot display the login window, you can test the IP address by using the
ping command. If you do not know the IP address, you can configure the device by
resetting the device to the factory defaults and accessing the Access Point
Configuration Utility by using the factory default static IP address.
Using the Ping Command to Test the Connection
If you cannot display the configuration utility, you can test the ability of the PC to
communicate with the access point by using ping. To use ping on a PC running
Windows:
STEP 1 Verify that the Cisco AP 541N is powered on and the LEDs indicate the
appropriate links.
1
STEP 2 Open a command window by using Start > Run and enter cmd.
STEP 3 At the Command window prompt enter ping and the access point IP
address. For example ping 192.168.10.10 (the default static IP address of the
access point).
If successful, you should get a reply similar to the following:
Pinging 192.168.10.10 with 32 bytes of data:
Reply from 192.168.10.10: bytes=32 time<1ms TTL=128
Reply from 192.168.10.10: bytes=32 time<1ms TTL=128
Reply from 192.168.10.10: bytes=32 time<1ms TTL=128
If it fails, likely you are using the wrong access point IP address and you will get a
reply similar to the following:
Pinging 192.168.10.10 with 32 bytes of data:
Request timed out.
Possible Cause of Failure
The most likely cause of connectivity failure is an incorrect IP address.
The Web browser is pointed to the wrong IP address. Or, your PC might be
configured with an IP address that is not in the same subnet as the access point.
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide 18
1
Getting Started
Troubleshooting Your Connection
DHCP is enabled on the Cisco AP 541N by default. When a DHCP server is
enabled on your network and the access point is connected to the network, the
DHCP server replaces the default static IP address with a DHCP server–assigned
IP address. If this happens before you display the Access Point Configuration
Utility window, you must use the assigned IP address to display the utility. If this
happens during configuration, the Access Point Configuration Utility will lose
connectivity.
You can query the DHCP server for the new IP address or disconnect the access
point from the network and reset the device to use the static default access point
IP address by using the Resetting the Access Point to the Factory Default
Configuration, page 121 procedure.
Resetting the Device by using the Reset Button
To use the Reset button to reboot or reset the access point, do the following:
• To reboot the access point, press the Reset button. Do not hold it for more
than 10 seconds.
• To restore the access point to the factory default settings:
1. Disconnect the access point from the network or disable all DHCP
servers on your network.
2. With the power on, press-and-hold the Reset button for more than 10
seconds.
19 Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide
Getting Started
Configuring the Access Point by using the Getting Started Page
Configuring the Access Point by using the Getting Started
Page
From the Getting Started page, you can use the following links to quickly configure
your access point:
• Access Point Configuration
• Access Point Management Page
• Wireless Configuration Page
Access Point Configuration
To change the access point IP address, password, and VLAN configuration, do the
following:
1
STEP 1 Click Change Administrator Password to provide a new administration password
for the access point. (The username is cisco and it cannot be changed. The default
password is cisco.)
STEP 2 If you do not have a DHCP server on the network and do not plan to use one, click
Change IP Address to change the connection type from DHCP to static IP and set
a static IP address and subnet mask.
NOTE We recommend that you assign a new static IP address. Otherwise, if you
bring up another Cisco AP 541N on the same network, the IP address for
each access point will not be unique; duplicating an IP address on a network
will create a conflict.
Also, if you change the static IP address, you will lose connectivity. To
reestablish connectivity, enter the new IP address into your Web browser
and log into the Configuration Utility.
To change the connection type and assign a static IP address, see LAN
Settings, page 40.
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide 20
1
Getting Started
Wireless Client Requirements
STEP 3 If your network uses VLANs, you might need to configure the management VLAN
ID or untagged VLAN ID on the access point for it to work with your network.
For information about how to configure VLAN information, see LAN Settings, page
40.
STEP 4 If your network uses Dynamic WEP port security for network access control, you
must configure the 802.1X supplicant information on the access point. For
information about how to configure the 802.1X user name and password, see
Configuring 802.1X Authentication, page 43.
Access Point Management Page
Click System Information to view the device information. For more information, see
Device Information, page 27.
As new versions of the Access Point software become available, you can upgrade
the software on your devices to take advantage of new features and
enhancements. For more information, see Software Upgrade, page 124.
For information on how to backup and restore the configuration, go to Access
Point Configuration, page 120.
Wireless Configuration Page
For information about the wireless radio settings, see Configuring Wireless Radio
Settings, page 160.
To configure the SSID, Guest Access, and Security Configuration, see Modifying
Virtual Access Point Settings, page 55.
Wireless Client Requirements
The access point provides wireless access to any client with a properly
configured Wi-Fi client adapter for the 802.11 mode in which the access point is
running. The access point supports multiple client operating systems. Clients can
be laptop or desktop computers, personal digital assistants (PDAs), or any other
hand-held, portable or stationary device equipped with a Wi-Fi adapter and
supporting drivers.
21 Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide
Getting Started
Wireless Client Requirements
1
To connect to the access point, wireless clients need the software and hardware
described in Ta b le 2 .
Table 2 Requirements for Wireless Clients
Required Component Description
Wi-Fi Client Adapter Portable or built-in Wi-Fi client adapter that supports
one or more of the IEEE 802.11 modes in which you
plan to run the access point. (IEEE 802.11a, 802.11b,
802.11g, and 802.11n modes are supported.)
Wireless Client
Software
Client Security
Settings
Client software, such as Microsoft Windows
Supplicant, configured to associate with the access
point.
Security should be disabled on the client used to do
initial configuration of the access point.
If the Security mode on the access point is set to
anything other than plain text, wireless clients must
have a profile set to the same authentication mode
used by the access point and provide a valid username
and password, certificate, or user identity required by
the authentication server. Security modes are Static
WEP, IEEE 802.1X, WPA with RADIUS server, and WPA-
PSK.
For information about configuring security on the
access point, see Configuring the Wireless
Distribution System, page 91.
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide 22
1
Verifying the Installation
Make sure the access point is connected to the LAN and associating with wireless
clients on the network. Once you have tested the basics of your wireless network,
you can enable more security and fine-tune the access point by modifying the
advanced configuration features.
STEP 1 Connect the access point to the LAN.
If you configured the access point by using a direct cable connection from your
computer to the access point, do the following:
a. Disconnect the cable from the computer and the access point.
b. Mount the access point in the desired location.
Getting Started
Verifying the Installation
c. Connect an Ethernet cable from the access point to the LAN.
d. Power on the access point.
e. Connect your computer to the LAN by using an Ethernet cable or a wireless
card.
If you configured the access point and an administrator PC by connecting both to
a network hub or switch, your access point is already connected to the LAN. The
next step is to test some wireless clients.
STEP 2 Test the access point by trying to detect it and associate with it from a wireless
client. For information about requirements for the client devices, see Wireless
Client Requirements, page 21.
NOTE The access point is not designed for multiple, simultaneous configuration
changes. If more than one administrator is logged onto the Configuration
Utility and is making changes to the configuration, there is no guarantee that
all configuration changes specified by multiple users will be applied.
23 Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide
Getting Started
!
Configuring Security on the Wireless Access Point
CAUTION By default, no security is in place on the access point, so any wireless client can
associate with it and access your LAN, including unauthorized devices. An
important next step is to configure security. Continue with Configuring Security on
the Wireless Access Point, page 24 for more information.
Configuring Security on the Wireless Access Point
You configure secure wireless client access by configuring security for each
virtual access point (VAP) that you enable. You can configure up to 16 VAPs per
wireless radio that simulate multiple access points in one physical access point.
For each VAP, you can configure a unique security mode to control wireless client
access.
1
Ea ch w irel es s r adi o h as 1 6 VA Ps , wi t h VA P I D s f ro m 0-15 . VA P 0, VAP 1, a nd VA P 2
have di f fer en t d e fa ul t s e t ti ng s th an VA Ps 3-15 . B y d e fa ul t , VAP 0 , VA P 1, a nd VA P 2
are enabled.
VAP0 has the following default settings:
• VLAN ID: 1
• SSID: cisco-data
• Broadcast SSID: Enabled
• Security: None
• MAC Authentication Type: Disabled
• Station Isolation: Disabled
• HTTP Redirect: Disable
VAP1 has the following default settings:
• VLAN ID: 100
• SSID: cisco-voice
• Broadcast SSID: Enabled
• Security: None
• MAC Authentication Type: Disabled
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide 24
1
Getting Started
Configuring Security on the Wireless Access Point
• Station Isolation: Disabled
• HTTP Redirect: Disable
VAP2 has the following default settings:
• VLAN ID: 1
• SSID: cisco-scan
• Broadcast SSID: Enabled
• Security: WPA Personal
• WPA Versions: WPA2
• Cipher Suites: CCMP (AES)
• Key: intermec
• MAC Authentication Type: Disabled
• Station Isolation: Disabled
• HTTP Redirect: Disable
VAP3-15 are disabeld by default, but when they are enabled they will have the
following default settings:
• VLAN ID: 1
• SSID: Virtual Access Point x ( where x is the VAP ID)
• Broadcast SSID: Enabled
• Security: None
• MAC Authentication Type: Disabled
• Station Isolation: Disabled
• HTTP Redirect: Disable
To prevent unauthorized access to the access point, we recommend that you
select and configure a security option other than None for the default VAP and for
each VAP that you enable.
For information about how to configure the security settings on each VAP, see
Configuring the Wireless Distribution System, page 91.
25 Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide
Status
2
The Status page provides information on the following:
• Device Information
• Network Interfaces
• Traffic Statistics
• Associated Clients
• Rogue AP Detection
Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide 26
2
Device Information
From the Device Information page, you can view hardware and product
information.
Figure 5 Device Information
Status
Device Information
Ta bl e 3 describes the fields shown on the Device Information page.
Tab le 3 D e vi ce In fo rm ati on Pa ge
Field Description
Product Identifier
Hardware Version
Software Version
Serial Number
Device Name
Device Description
27 Cisco AP 541N Dual-band Single-radio Access Point Quick Start Guide
Identifies the AP hardware model.
Identifies the AP hardware version.
Shows version information for the software installed on the
AP. As new versions of the WLAN AP software become
available, you can upgrade the software.
Shows the AP serial number.
Generic name to identify the type of hardware.
Provides information about the product hardware.
Loading...