Status Entry Description
Total entries Number of entries in the Remote APwhitelist.
Revoked entries Number of entries in the Remote AP whitelist that has been manually
revoked.
Marked for deletion entries Number of entries in the Remote AP whitelist that has been marked for
deletion, but not removed from the Remote APwhitelist.
Table 19: Whitelist Status Information
The Remote AP whitelist entries page displays only the information you manually configure. The campus AP
whitelist entries page displays both user-defined settings and additional information that is updated when the
status of a campus AP changes.
Parameter Description
Cert Type The type of certificate used by the campus AP.
n switch-cert: The campus AP is using a certificate signed by the switch.
n factory-cert: The campus AP is using a factory-installed certificate.
State The state of a campus AP.
n unapproved-no-cert: The campus AP has no certificate and is not
approved.
n unapproved-factory-cert: The campus AP has a pre-installed
certificate which is not approved.
n approved-ready-for-cert: The campus AP is approved as valid and is
ready to receive a certificate.
n certified-factory-cert: The campus AP already has a factory
certificate. If a campus AP has a factory-cert type of certificate and is
in certified-factory-cert state, then a new certificate is not reissued to
the campus AP when you enable automatic certificate provisioning.
n certified-switch-cert: The campus AP has an approved certificate
from the switch.
n certified-hold-factory-cert: The campus APis certified with a factory
certificate but requests to be certified again. Such APs are not
approved as secure until you manually change the status and verify
that it is not compromised.
NOTE: If an AP is in this state due to connectivity problems, then the AP
recovers and leaves this hold state as soon as connectivity is restored.
n certified-hold-switch-cert: An AP is put in this state when the switch
thinks the AP has been certified with a switch certificate but the AP
requests to be certified again. Because this is not a normal condition,
the AP is not approved as a secure AP until a network administrator
manually changes the status of the AP to verify that it is not
compromised.
NOTE: If an AP is in the hold state because of connectivity problems, then
the AP recovers and moves out of the hold state when connectivity is
restored.
Revoked Shows if the secure status of the AP is revoked.
Revoked Text Brief description for revoking the campus AP.
Last Update Time and date of the last AP status update.
Table 20: Additional Campus AP Status Information
To view information about the campus and remote AP whitelists using the CLI, use the following commands:
(host) #show whitelist-db cpsec
AOS-W 6.5.3.x | User Guide Control Plane Security | 62
To Next Page
Loading...