HP Cloud Network Manager User Manual

HP Cloud Network Manager

User Guide

Document 5998-5742, edition 1 (July 2014)

The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.

Acknowledgments

Apple®, Bonjour®, AirPrint™, AirPlay®, iPad®, iPod Touch®, iTunes®, iChat®, iPhone®, OS X®, and Apple TV® are trademarks of Apple Inc. Java® is a registered trademark of Oracle and/or its affiliates. Microsoft®, Windows®, Windows® 7, Windows® XP, and Windows® Vista are U.S. registered trademarks of the Microsoft group of companies. Google™ and Google Chrome™ browsers are trademarks of Google Inc.

July2014 HP Cloud Network Manager | User Guide

Contents 3

About this guide 9

Intended audience 9

About this guide

This user guide describes the features supported by HP Cloud Network Manager and provides detailed instructions to setup and configure the Access Point (AP).

Intended audience

This guide is intended for customers who configure and use Cloud Network Manager.

Conventions

The following conventions are used throughout this guide to emphasize important concepts:

Table 1: Typographical conventions

Type style Description

Italics

System items

Bold

This style is used to emphasize important terms and to mark the titles of books.

This fixed-width font depicts the following:

l Sample screen output l System prompts

l Keys that are pressed l Text typed into a GUI element l GUI elements that are clicked or selected

The following informational icons are used throughout this guide:

Indicates a risk of damage to your hardware or loss of data.

Indicates helpful suggestions, pertinent information, and important things to remember.

HP websites

l www.hp.com/networking/support

l www.hp.com/networking

l www.hp.com/support/manuals

l www.hp.com

HP Cloud Network Manager | User Guide About thisguide | 9

About Cloud Network Manager

Cloud Network Manager overview

HP Cloud Network Manager is a cloud-based platform that enables you to manage your HP wireless network. Designed as a software-as-a-service (SAAS) subscription, Cloud Network Manager provides a standard webbased interface that allows you to configure and monitor multiple HP wireless networks from anywhere, provided you have an internet connection. Cloud Network Manager supports APs running HP 6.4.0.2-4.1.0.0 or later versions.

The key features of Cloud Network Manager are:

l Monitoring dashboard

l Device configuration

l Reporting

l Firmware maintenance

l Troubleshooting

l Location tracking

l Intrusion detection

Supported APs

l HP 350

l HP 355

l HP 365

Cloud Network Manager UI

Cloud Network Manager is accessible through a standard web browser from a remote management console or workstation and can be launched using any of the following browsers:

l Internet Explorer 9 or later

l Safari 6.0 or later

l Google Chrome 23.0.1271.95 or later

l Mozilla Firefox 17.0 or later

l Opera

To view the Cloud Network Manager UI, ensure that JavaScript is enabled on the web browser.

HP Cloud Network Manager | User Guide About Cloud Network Manager | 10

Cloud Network Manager user interface

The Cloud Network Manager User Interface (UI) provides a standard web-based interface that allows you to configure and monitor a Wi-Fi network.

This chapter provides the following information:

l Activating your Cloud Network Manager subscriptions on page 11

l User interface on page 13

l Notifications on page 15

l Help on page 15

l Search on page 14

l Tabs on page 14

l Support on page 16

l Feedback on page 16

Activating your Cloud Network Manager subscriptions

You must purchase and activate a subscription for each HP Cloud-Managed AP before the AP can be configured and managed by HP Cloud Network Manager.

Upon subscription purchase, your subscription licenses is delivered via email. You can activate the subscription and associate APs with it, using the HP My Networking portal.

Before proceeding, ensure that you have:

l The HP Sales Order confirmation email that contains the Sales Order Number and email addresses associated

with the order.

l The serial numbers and MAC addresses of the APs to be covered by the subscription(s).

To activate a subscription for the AP(s):

1. Log in to the My Networking portal at hp.com/networking/mynetworking/.

l If you do not have an HP Passport, you can register by selecting Create an account.

l If you are associated with more than one company, select the company where the APs are installed.

To ensure your HP Cloud Network Manager account is set up properly, confirm that your company name and address

are correct. From My Profile, select Edit prof ile > Change company information.

2. Return to the My Networking home page, and under Licenses, select Register license.

3. Enter the Sales Order Number in the Order number or Registration ID box, and then click Next.

4. In the Email box, enter your email address from the Sales Order confirmation, and then click Next.

5. Select the subscription license you want to use, for example JL020AAE HP Cloud Network Manager One Year Subscription, and then in the Redeem box enter the number of subscriptions (at least 1, a maximum of

5) you want to activate at this time. Click Next.

6. Enter the MAC address and serial number of each AP, and then click Next.

7. On the Reminders page, accept the five suggested dates for expiration notices, and then click Next.

HP Cloud Network Manager | User Guide Cloud Network Manager user interface | 11

You can add, delete, or edit the reminders by clicking a date in the calendar. You can create up to ten reminders

including the initial five.

8. Read and accept the End User License agreement, and then click Finish.

a. Your subscription(s) is activated in the HP Cloud Network Manager.

b. You will receive a welcome email with instructions on how to create an HP Cloud Network Manager user

account.

If you are not a HP account administrator, forward the welcome email to the appropriate person.

Activating your HP Cloud Network Manager account

123

Do not proceed with this section until, as just described; you have activated a subscription for each of your HP Cloud-

Managed APs.

If you already have an HP Cloud Network Manager account, proceed to Wireless configuration on page 22.

To activate your HP Cloud Network Manager account:

1. Open the welcome email and click the HP Cloud Network Manager account activation link.

2. On the Registration page, enter your name and complete company address information, and then click Register. You will receive another email from HP with a temporary password, a password change link, and an HP Cloud Network Manager dashboard link.

3. Use the temporary password to log into the Cloud Network Manager.

4. Change your password.

12 | Cloud Network Manager user interface HP Cloud Network Manager | User Guide

User interface

The Monitoring > Overview data pane is displayed on logging into Cloud Network Manager, See Figure 1.

Figure 1: Cloud Network Manager main pane

The main pane consists of:

l Search

l Tabs

l Notifications

l Help

l Data pane

HP Cloud Network Manager | User Guide Cloud Network Manager user interface | 13

In addition, there are links to Support and Feedback on the right edge of the screen.

Search

The Search box allows administrators to search for an AP, client, or a network. When you enter text in the search box, the search function suggests matching keywords and allows you to automatically complete the search text entry.

Tabs

The left pane lists the Cloud Network Manager function tabs.

n Monitoring

n Wireless configuration

n Reports

n Maintenance

Each tab appears in a compressed view by default. The individual tabs can be expanded or collapsed by clicking on them.

For more information, see:

l Monitoring

l Wireless configuration

l Reports

l Maintenance

Monitoring

You can monitor the APs and their associated clients using the Overview, Access Points, Clients, WIDS, and Event Log panes in the Cloud Network Manager.

Wireless configuration

The Wireless Configuration tab allows you to configure the wireless or wired network, APs, intrusion, Radio Frequency (RF), security settings, Dynamic Host Control Protocol (DHCP), services, and system parameters.

Reports

The Reports tab provides network reports, security reports, and Peripheral Component Interconnect (PCI) compliance reports. You can export the report and send it to an email account.

Maintenance

The Maintenance tab allows you to maintain the network and provides details on the firmware version, license and so on.

Labels, variables, groups, and overrides

Labels are tags on APs that filter APs for monitoring and reporting purposes. An AP can have multiple labels. For example, consider an AP labeled as "Building 25" and "Lobby". These tags identify if the location of the AP is within the enterprise campus and the building. The APs in other buildings can also be tagged with “Lobby” to enable all the APs in the lobby of all these buildings in the campus. To filter and monitor APs in the lobbies of all the campus buildings, tag all the APs in the lobby with the label “Lobby”. Labels can also be used to determine the ownership, departments, and functions of APs.

14 | Cloud Network Manager user interface HP Cloud Network Manager | User Guide

Variables are AP parameters that can be configured, but cannot inherit values from the default group. These userdefined parameters are specific to an AP, for example, Virtual Controller (VC) name, IP address, and VLAN. Therefore, ensure that you set all parameters on all the APs in a cluster.

If one or more VCs are grouped together within a cluster of APs, you can configure the APs associated with each VC as a single unit from the Cloud Network Manager. These configuration parameters are assigned with the same default value. You can quickly configure a number of APs using a group.

The group configuration is shared across all the VCs and APs. Sometimes a specific VC may require configuration that is different from the rest of the configuration shared by the group. The configuration that is different from the rest of the group is known as Override. Override can be configured when the user clicks on the individual VCs on the left pane of the UI. Resolve Override refers to removing these configuration specific for a VC and making the configuration same for all the VCs in a group.

The following example displays how Wireless Intrusion Detection System (WIDS) parameters are resolved for overrides:

1. Click a Virtual Controller from a group level and change the WIDS parameters. The Override icon for the VC is displayed.

2. Using Resolve Override allows you to remove the existing configurations for a specific VC and ensuring the configurations are the same for all VCs in a group.

Notifications

The Notifications icon displays the unacknowledged notifications count at the top right edge of the main pane.

Help

Click the Help icon to view a short description of selected terms and fields in a pane or dialog box.

To activate online help:

1. Click (?) at the top right edge of the Cloud Network Manager main pane.

2. Place your cursor on any text or term displayed.

To disable help mode, click (?) again.

Data pane

Displays detailed information of the tabs and the selected features. The following figure displays the data pane for Wireless Configuration > Access Points pane.

Figure 2: Sample data pane

HP Cloud Network Manager | User Guide Cloud Network Manager user interface | 15

Support

You can contact HP support for troubleshooting Cloud Network Manager by clicking Support at the right edge of Cloud Network Manager.

Feedback

To help HPimprove the Cloud Network Manager UI, click Feedback and enter your comments.

16 | Cloud Network Manager user interface HP Cloud Network Manager | User Guide

Monitoring

The Monitoring tab displays the monitoring pane for Cloud Network Manager.

The monitoring tab consists of:

l Overview

l Access points

l Clients

l WIDS

l Event log

l Notifications

Overview

The Overview pane displays a summary of the networks, clients, and the geographical location of the AP.

Table 2: Contents of the monitoring overview pane

Data pane item Description

ACCESSPOINTS count Displays the total number of APs.

CLIENTS count Displays the total number of clients connected to an AP over a

specified period.

ALERTS count Displays the total number of APs or clients that have alerts.

QUICKLINKS Displays the links to the most frequently used pages in Cloud

Network Manager.

THROUGHPUT graph Displays the aggregate incoming and outgoing data traffic of all APs

over a specified period.

CLIENTS graph Displays the number of clients connected to an AP over a specified

period.

WLANS Displays the list of SSIDs configured.

TOP 5 APs BY USAGE Displays the list of top five APs that are most used on the network.

TOP 5 CLIENTS BY USAGE Displays the list of top five clients utilizing the maximum bandwidth

over the network.

CLIENTSTYPE Displays the different types of clients connected to the network.

Map Displays the geographic location of the APs, clients, and alerts.

You can view the THROUGHPUT graph and CLIENTS graph for a specific timeframe (1 Hour, 3 Hours, 1 Day, 1 Week,

1 Year) by clicking 1H, 3H, 1D, 1W, or 1Y.

HP Cloud Network Manager | User Guide Monitoring | 17

Access points

The Access Points pane displays information about the status and location of the APs.

Table 3: Contents of the APs pane

Data pane item Description

FLAGGED AP Displays the APs that are experiencing potential issues with

utilization, noise, and so on. It consists of:

l ACCESS POINTS l UTIL(%) l NOISE(dBm) l ERRORS l CLIENTS l MEMORY l CPU

ACCESSPOINTS Displays the geographic location of the APs. It consists of:

l NAME l LOCATION l STATUS l CLIENTS l IP ADDRESS l MODE l TYPE l 2.4 GHz l 5.0 GHz l VIRTUAL CONTROLLER l UPTIME l LABELS

Utilization icon Displays the radio utilization rate of the APs. Depending on the

percentage of utilization, the color of the lines on the Utilization icon changes from Green > Orange > Red.

l Green— Utilization is less than 50 percent. l Orange— Utilization is between 50-75 percent. l Red— Utilization is more than 75 percent.

THROUGHPUT graph Displays the aggregate incoming and outgoing data traffic of all APs

over a specified period.

CLIENTS graph Displays the number of clients connected to an AP over a specified

period.

Map

Displays the geographic location of the APs.

You can view the THROUGHPUT graph and CLIENTS graph for a specific timeframe (1 Hour, 3 Hours, 1 Day, 1 Week,

1 Year) by clicking 1H, 3H, 1D, 1W, or 1Y.

AP details

To view the details of the AP:

Navigate to Monitoring > Access Points pane and click the AP for which you want to view the details under ACCESS POINTS or FLAGGED AP. The ACCESSPOINT details page is displayed.

18 | Monitoring HP Cloud Network Manager | User Guide

Table 4: Contents of the AP details pane

Section Description

DEVICESTATUS Displays the current status of the AP.

CONNECTEDCLIENTS Displays the number of clients that are connected to this AP.

UPLINKTYPE Displays the type of uplink used.

ALERTS Displays the number of alerts generated for this AP.

MAP Displays the geographical location of the AP.

General

GRAPH

l APNAME l SERIALNUMBER l MACADDRESS l IP ADDRESS l MODE l MESH ROLE l UPTIME l VC NAME l APMODELTYPE l FIRMWAREVERSION l CPUUTILIZATION l DEVICEMEMORYUSED l DEVICEMEMORY TYPE

Select a parameter from the drop-down to view their respective graphs:

l Number of Connected Clients l Throughput l RF Channel Utilization l Number of Neighboring Clients l Noise Floor l Errors/Retires/Drops Statistics

Remote Console System pane

On the Access Point details page, click Console Access to view the remote console for the VC.

Clients

The Clients tab displays a list of clients that are connected to the network. The client names are displayed as links.

Table 5: Contents of the clients pane

Data pane item Description

FLAGGED CLIENTS Displays the clients that are experiencing issues like utilization,

noise, and so on. It consists of the following fields:

l MAC ADDRESS l IP ADDRESS l SIGNAL l SPEED

CLIENTS Displays the geographic location of the APs. It consists of:

HP Cloud Network Manager | User Guide Monitoring | 19

Data pane item Description

l MAC ADDRESS l IP ADDRESS l USERNAME l HOSTNAME l DEVICE TYPE l ASSOCAP l SSID l CONNECTION l LABELS

THROUGHPUT graph Displays the aggregate incoming and outgoing data traffic of all

clients over a specified period.

DEVICETYPE Displays the type of the device connected to the AP.

Map Displays the geographic location of the clients.

WIDS

The WIDS pane provides an overview of the rogue APs, interfering APs, and the total number of wireless attacks on a client for a specified period.

Table 6: Contents of the WIDS pane

Data pane item Description

AP TYPE Displays the distribution of foreign AP types detected by the system.

CONFIGURATION Displays the configuration settings for wireless intrusion protection

and detection policies.

IDS ATTACK DETECTED Displays the distribution of IDS attacks detected by the system.

Event log

The Event Log pane displays the event details that occur in the network.

Table 7: Contents of the event log pane

Data pane item Description

DATE/TIME Displays the system date and time at which the event occurred.

AP Displays the MAC address of the AP.

VIRTUALCONTROLLER Displays the name of the AP.

CLIENT Displays the number of clients connected to the AP.

SSID Displays the name of the network.

LEVEL Displays the severity level of the event occurred.

TYPE Displays the type of event log. Example, Security

DESCRIPTION Displays the description of the event that occurred.

Search icon Use this icon to search for a particular event.

20 | Monitoring HP Cloud Network Manager | User Guide

Notifications

The Notifications pane displays all types of notification alerts that are detected and unacknowledged by the Cloud Network Manager.

Table 8: Contents of the notifications pane

Data pane item Description

Notifications

Acknowledge All Acknowledges all the notifications in one click.

Displays all types of notification alerts.

Setting notification alerts

To configure a notification alert:

1. At the top right edge of the main pane, click Notifications icon > Settings icon. The Notification Settings pane is displayed.

2. Select the notification type from TYPE.

3. Select the event type from EVENT.

4. Select the group type from GROUP.

5. To receive email notifications, select Email and enter the email address.

6. Click Save.

HP Cloud Network Manager | User Guide Monitoring | 21

Wireless configuration

The Wireless Configuration tab displays the configuration pane for Cloud Network Manager.

This chapter provides the following information:

l Initial AP configuration on page 22

l Wireless network profiles on page 22

Initial AP configuration

Before connecting to Cloud Network Manager:

l If an AP is shipped with factory default settings, the Cloud Network Manager applies the default configuration

parameters on the AP when it connects to the Cloud Network Manager. The user can change the values in the default group and the AP inherits this automatically.

l If the AP is operational in subscriber networks, the configuration parameters of an AP were already changed

from factory default settings. When the AP connects to Cloud Network Manager, no configuration is required.

Importing existing configuration from AP

When a preconfigured AP is included in Cloud Network Manager, it is initially listed under unprovisioned group.

To import a configuration to AP:

1. Go to https://portal.hpcloudnetworkmanager.com and log in with your user credentials.

2. Ensure that the AP is connected to the wired network.

3. Click an AP. The Import New Group and Overwrite Existing Config options are displayed.

4. To create a new group, click Import to New Group tab and then click Save.

To overwrite an existing configuration, click Overwrite Existing Config.

5. Click Save.

Cloud Network Manager deletes the existing configuration and applied the group configuration.

The Wireless Configuration tab provides an overall view of your AP configuration. This section provides configuration information on the following major tabs of the Cloud Network Manager UI:

l Networks

l Access points

l RF

l Wireless IDS/IPS

l Security

l DHCP

l Services

l System

Wireless network profiles

This section provides the following information:

l Understanding wireless network profiles on page 23

HP Cloud Network Manager | User Guide Wirelessconfiguration | 22

l Configuring WLAN settings on page 23

l Configuring VLAN settings for a WLAN SSID profile on page 26

l Configuring security settings for a WLAN SSID profile on page 27

l Configuring access rules for a WLAN SSID profile

l Editing a WLAN SSID profile on page 30

l Deleting a WLAN SSID profile on page 30

Understanding wireless network profiles

During start up, a wireless client searches for radio signals or beacon frames that originate from the nearest AP. After locating the AP, the following transactions occur between the client and the AP:

1. Authentication — The AP communicates with a RADIUS server to validate or authenticate the client.

2. Connection — After successful authentication, the client establishes a connection with the AP.

Network types

Cloud Network Manager wireless networks are categorized as:

l Employee network — An Employee network is a classic Wi-Fi network. This network type is used by the

employees in an organization and it supports passphrase-based or 802.1X based authentication methods. Employees can access the protected data of an enterprise through the employee network after successful authentication. The employee network is selected by default during a network profile configuration.

l Voice network —This Voice network type allows you to configure a network profile for devices that provide only

voice services such as handsets or applications that require voice traffic prioritization.

l Guest network —The Guest wireless network is created for guests, visitors, contractors, and any non-

employee users who use the enterprise Wi-Fi network. The VC assigns the IP address for the guest clients. Captive portal or passphrase based authentication methods can be set for this wireless network. Typically, a guest network is an un-encrypted network. However, you can specify the encryption settings when configuring a guest network.

When a client is associated to the voice network, all data traffic is marked and placed into the high priority queue in QoS

(Quality of Service).

To configure a new wireless network profile, complete the following procedures:

1. Configuring WLAN Settings

2. Configuring VLAN Settings

3. Configuring Security Settings

4. Configuring Access Rules for a Network

Configuring WLAN settings

To configure WLAN settings:

1. Select Wireless Configuration > Networks and then click Create New. The CREATE A NEW NETWORK pane is displayed.

23 | Wireless configuration HP Cloud Network Manager | User Guide

Figure 3: WLAN settings pane

2. For TYPE, select Wireless.

3. Enter a name that is used to identify the network in the Name (SSID) box.

4. Based on the type of network profile, select any of the following options under PRIMARY USAGE:

l Employee

l Voice

l Guest

5. Click SHOW ADVANCED OPTIONS. The advanced options for configuration are displayed. Specify the following parameters as required.

Table 9: WLAN configuration parameters

Data pane item Description

BROADCAST FILTERING

Select any of the following values:

l All — The AP drops all broadcast and multicast frames except DHCP and ARP. l ARP — The AP converts ARP requests to unicast and sends frames directly to

the associated client.

l Disabled — The AP forwards all broadcast and multicast traffic.

DTIM INTERVAL

The period in beacons, which can be configured for every WLAN SSIDprofile. The DTIMinterval determines how often the AP delivers the buffered broadcast and multicast frames to associated clients in the powersave mode. The default value is 1, which means the client checks for buffered data on the AP at every beacon. You can also configure a higher DTIM value for power saving.

MULTICAST TRANSMISSION OPTIMIZATION

Enabled

Select and multicast frames based on the lowest of unicast rates across all associated clients. When this option is enabled, multicast traffic can be sent up to 24 Mbps. The default rate for sending frames for 2.4 GHz is 1 Mbps and 5.0 GHz is 6 Mbps. This option is disabled by default.

DYNAMIC MULTICAST

Select Enabled to allow AP to convert multicast streams into unicast streams over the wireless link. Enabling Dynamic Multicast Optimization (DMO) enhances the

indicates the Delivery Traffic Indication Message (DTIM)

if you want the AP to select the optimal rate for sending broadcast

HP Cloud Network Manager | User Guide Wirelessconfiguration | 24

Data pane item Description

OPTIMIZATION quality and reliability of streaming video, while preserving the bandwidth available

to the non-video clients. NOTE: When you enable DMO on multicast SSID profiles, ensure that the DMO feature is enabled on all SSIDs configured in the same VLAN.

DMO CHANNEL UTILIZATION THRESHOLD

TRANSMIT RATES

BANDWIDTH LIMITS

Wi-Fi MULTIMEDIA (WMM) TRAFFIC MANAGEMENT

Specify a value to set a threshold for DMO channel utilization. With DMO, the AP converts multicast streams into unicast streams as long as the channel utilization does not exceed this threshold. The default value is 90% and the maximum threshold value is 100%. When the threshold is reached or exceeds the maximum value, the AP sends multicast traffic over the wireless link.

Specify the following parameters:

l 2.4 GHz — If the 2.4 GHz band is configured on the AP, specify the minimum

and maximum transmission rate. The default value for minimum transmission rate is 1 Mbps and maximum transmission rate is 54 Mbps.

l 5 GHz — If the 5 GHz band is configured on the AP, specify the minimum and

maximum transmission rate. The default value for minimum transmission rate is 6 Mbps and maximum transmission rate is 54 Mbps.

Under BANDWI DTH LIMITS:

l AIRTIME — Select this to specify an aggregate amount of airtime that all clients

in this network can use for sending and receiving data. Specify the airtime percentage.

l EACH RADIO — Select this to specify an aggregate amount of throughput that

each radio is allowed to provide for the connected clients.

Configure the following options for WMM traffic management. WMM supports voice, video, best effort, and background access categories. You can allocate a higher bandwidth for voice and video traffic than other types of traffic based on the network profile. Specify a percentage value for the following parameters:

l BACKGROUND WMM SHARE — Allocates bandwidth for background traffic

such as file downloads or print jobs.

l BEST EFFORT WMM SHARE — Allocates bandwidth or best effort traffic such

as traffic from legacy devices or traffic from applications or devices that do not support QoS.

l VIDEO WMM SHARE — Allocates bandwidth for video traffic generated from

video streaming.

l VOICE WMM SHARE — Allocates bandwidth for voice traffic generated from the

incoming and outgoing voice communication. In a non-WMM or hybrid environment, where some clients are not WMM-capable, you can allocate higher values for BEST EFF ORT WMMshare and VOICE WMM SHARE to allocate a higher bandwidth to clients transmitting best effort and voice traffic.

CONTENTFI LTERING

Select Enabled to route all DNS requests for the non-corporate domains to OpenDNS on this network.

BAND Select a value to specify the band at which the network transmits radio signals. You

can set the band to 2. 4 GHz, 5 GHz, or All. The All option is selected by default.

INACTIVITYTIMEOUT

Specify an interval for session timeout. If a client session is inactive for the specified duration, the session expires and the users are required to log in again. The minimum value is set to 60 seconds and the default value is 1000 seconds.

HIDE SSI D Select this if you do not want the SSID (network name) to be visible to users.

DISABLE SSI D Select this if you want to disable the SSID. On selecting this, the SSID will be

disabled, but will not be removed from the network. By default, all SSIDs are enabled.

25 | Wireless configuration HP Cloud Network Manager | User Guide

Data pane item Description

CAN BE USED WITHOUT UPLINK

MAXCLIENTS THRESHOLD

LOCALPROBE REQUEST THRESHOLD

Select this if you do not want SSID profile to use uplink.

Specify the maximum number of clients that can be configured for each BSSID on a WLAN. You can specify a value within the range of 0 to 255. The default value is

64.

Specify a threshold value to limit the number of incoming probe requests. When a client sends a broadcast probe request frame to search for all available SSIDs, this option controls system response for this network profile and ignores probe requests if required. You can specify a Received Signal Strength Indication (RSSI) value within range of 0 to 100 dB.

6. Click Next to configure VLAN settings. For more information, see Configuring VLAN settings for a WLAN SSID

profile on page 26.

Configuring VLAN settings for a WLAN SSID profile

If you are creating a new SSID profile, complete the WLANsettings procedure before configuring VLAN. For information, see Configuring WLAN settings on page 23.

To configure VLAN settings for an SSID:

1. In VLAN, select any of the following options for CLIENT IP ASSIGNMENT:

l Virtual Controller Assigned — On selecting this option, the client obtains the IP address from the VC. The

VC creates a private subnet and VLAN on the AP for the wireless clients. The network address translation for all client traffic that goes out of this interface is carried out at the source. This setup eliminates the need for complex VLAN and IP address management for a multi-site wireless network. For more information on DHCP scopes and server configuration, see DHCP configuration on page 65.

l Network Assigned — Select this option to obtain the IP address from the network.

2. If Network Assigned is selected, specify any of the following options for the CLIENT VLAN ASSIGNMENT.

l Default — On selecting this option, the client obtains the IP address in the same subnet as the APs. By

default, the client VLAN is assigned to the native VLAN on the wired network.

l Static — On selecting this option, you need to specify a single VLAN, a comma separated list of VLANS, or

a range of VLANs for all clients on this network. Select this option for configuring VLAN pooling.

l Dynamic — On selecting this option, you can assign the VLANs dynamically from a DHCP server. To create

VLAN assignment rules:

a. Click New to assign the user to a VLAN. The NEW VLAN ASSIGNMENT RULE pane is

displayed.

b. Enter the following information:

l ATTRIBUTE — Select an attribute returned by the RADIUS server during authentication.

l OPERATOR — Select an operator for matching the string.

l STRING — Enter the string to match.

l VLAN — Enter the VLAN to be assigned.

3. Click Next to configure security settings for the employee network. For more information, see Configuring

security settings for a WLAN SSID profile on page 27.

HP Cloud Network Manager | User Guide Wirelessconfiguration | 26

Configuring security settings for a WLAN SSID profile

This section describes the procedure for configuring security settings for employee and voice network only. For information on guest network configuration, see Captive portal for guest access on page 56 .

If you are creating a new SSID profile, configure the WLANand VLAN settings before defining security settings. For

more information, see Configuring WLAN settings on page 23 and Configuring VLAN settings for a WLAN SSID profile

on page 26.

Configuring security settings for an employee or voice network

To configure security settings for an employee or voice network:

1. In Security, specify any of the following for SECURITY LEVEL:

l Enterprise —On selecting enterprise security level, the authentication options applicable to the enterprise

network is displayed.

l Personal — On selecting personal security level, the authentication options applicable to the personalized

network is displayed.

l Open — On selecting Open security level, the authentication options applicable to an open network is

displayed:

The default security setting for a network profile is Personal.

2. Based on the security level specified, specify the following parameters:

Table 10: Configuration parameters for WLAN security settings

Data pane item Description

KEY MANAGEMENT

For Enterprise security level, select any of the following options from KEYMANAGEMENT:

l WPA-2 Enterprise l Both (WPA-2 & WPA) l WPA Enterprise l Dynamic WEP with 802.1X — If you do not want to use a session key from the

RADIUS Server to derive pairwise unicast keys, set SESSION KEY FOR LEAP to Enabled. This is required for old printers that use dynamic WEP through Lightweight Extensible Authentication Protocol (LEAP)

authentication. The SESSION KEY FOR LEAP feature is Disabled by default. NOTE: When W PA-2 Enterprise and Both (W PA2-WPA) encryption types are selected and if 802.1x authentication method is configured, the OPPURTUNISTIC KEY CACHING (OKC) is enabled by default. If OKC is enabled, a cached Pairwise Master Key (PMK) is used when the client roams to a new AP. This allows faster roaming of clients without the need for a complete

802.1x authentication. OKC roaming can be configured only for the Enterprise security level.

For Personal security level, select an encryption key from KEY MANAGEMENT.

l For WPA-2 Personal, WPA Personal, and Both (WPA-2&WPA) keys, specify

the following parameters:

l PASSPHRASE FORMAT : Select a passphrase.format. The

options are available are 8-63 alphanumeric characters and 64 hexadecimal characters.

l Enter a passphrase in PASSPHRASE and reconfirm.

l For ST ATI C WEP, specify the following parameters:

l Select an appropriate value for WEP KEY SIZE from the WEP

key size. You can specify 64-bit or 128-bit .

27 | Wireless configuration HP Cloud Network Manager | User Guide

+ 62 hidden pages

HP Cloud Network Manager User Manual

Contents

About this guide

Intended audience

Related documents

Conventions

HP websites

About Cloud Network Manager

Cloud Network Manager overview

Supported APs

Cloud Network Manager UI

Cloud Network Manager user interface

Activating your Cloud Network Manager subscriptions

Activating your HP Cloud Network Manager account

User interface

Search

Tabs

Monitoring

Wireless configuration

Reports

Maintenance

Notifications

Help

Data pane

Support

Feedback

Monitoring

Overview

Access points

AP details

Clients

WIDS

Event log

Notifications

Setting notification alerts

Wireless configuration

Initial AP configuration

Importing existing configuration from AP

Wireless network profiles

Understanding wireless network profiles

Network types

Configuring WLAN settings

Configuring VLAN settings for a WLAN SSID profile

Configuring security settings for a WLAN SSID profile

Configuring security settings for an employee or voice network