EasyManua.ls Logo

Cisco Mesh Access Points User Manual

Cisco Mesh Access Points
276 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #201 background image
• Provisioning an LSC on an AP does not require an AP to turn off its radios, which is vital for mesh APs,
which may get provisioned over-the-air.
• Because mesh APs need a dot1x authentication, a CA and ID certificate is required to be installed on
the server in the controller.
• LSC provisioning can happen over Ethernet and over-the-air in case of MAPs.You have to connect the
mesh AP to the controller through Ethernet and get the LSC certificate provisioned. After the LSC
becomes the default, an AP can be connected over-the-air to the controller using the LSC certificate.
Differences Between LSCs for Mesh APs and Normal APs
CAPWAP APs use LSC for DTLS setup during a JOIN irrespective of the AP mode. Mesh APs also use the
certificate for mesh security, which involves a dot1x authentication with the controller through the parent AP.
After the mesh APs are provisioned with an LSC, they need to use the LSC for this purpose because MIC
will not be read in.
Mesh APs use a statically configured dot1x profile to authenticate.
This profile is hardcoded to use "cisco" as the certificate issuer. This profile needs to be made configurable
so that vendor certificates can be used for mesh authentication (enter the config local-auth eap-profile
cert-issuer vendor "prfMaP1500LlEAuth93" command).
You must enter the config mesh lsc enable/disable command to enable or disable an LSC for mesh APs.
This command will cause all the mesh APs to reboot.
An LSC on mesh is open for very specific Oil and Gas customers with the 7.0 release. Initially, it is a
hidden feature. The config mesh lsc enable/disable is a hidden command. Also, the config local-auth
eap-profile cert-issuer vendor "prfMaP1500LlEAuth93" command is a normal command, but the
"prfMaP1500LlEAuth93" profile is a hidden profile, and is not stored on the controller and is lost after
the controller reboot.
Note
Certificate Verification Process in LSC AP
LSC-provisioned APs have both LSC and MIC certificates, but the LSC certificate will be the default one.
The verification process consists of the following two steps:
1
The controller sends the AP the MIC device certificate, which the AP verifies with the MIC CA.
2
The AP sends the LSC device certificate to the controller, which the controller verifies with the LSC CA.
Getting Certificates for LSC Feature
To configure LSC, you must first gather and install the appropriate certificates on the controller. The following
steps show how to accomplish this using Microsoft 2003 Server as the CA server.
Cisco Mesh Access Points, Design and Deployment Guide, Release 7.3
OL-27593-01 185
Connecting the Cisco 1500 Series Mesh Access Points to the Network
Locally Significant Certificates for Mesh APs

Table of Contents

Question and Answer IconNeed help?

Do you have a question about the Cisco Mesh Access Points and is the answer not in the manual?

Cisco Mesh Access Points Specifications

General IconGeneral
BrandCisco
ModelMesh Access Points
CategoryWireless Access Point
LanguageEnglish

Summary

Preface

Audience

Describes the target audience for this guide, focusing on network administrators.

Organization

Outlines the chapter structure of the guide for easy navigation.

Conventions

Explains the document's formatting and typographical conventions.

Related Documentation

Lists supplementary Cisco documentation for further information.

Obtaining Documentation and Submitting a Service Request

Provides instructions on how to get Cisco documentation and request support.

CHAPTER 1 Mesh Network Components

Mesh Network Components

Details the core components of a Cisco wireless mesh network.

Mesh Access Points

Overview of Cisco mesh access point hardware and models.

Access Point Roles

Defines the Root Access Point (RAP) and Mesh Access Point (MAP) roles.

Network Access

Explains how mesh access points connect to the network and authentication methods.

Cisco Indoor Mesh Access Points

Details supported Cisco indoor mesh access point models.

Cisco Outdoor Mesh Access Points

Details supported Cisco outdoor mesh access point models.

CHAPTER 2 Mesh Deployment Modes

Mesh Deployment Modes

Describes the different ways Cisco mesh networks can be deployed.

Wireless Mesh Network

Describes the basic architecture of a Cisco wireless outdoor mesh network.

Wireless Backhaul

Explains how traffic is bridged between mesh access points for backhaul.

Point-to-Multipoint Wireless Bridging

Details the scenario where a RAP connects multiple MAPs.

CHAPTER 3 Design Considerations

Design Considerations

Key factors and challenges for designing wireless mesh networks.

Wireless Mesh Constraints

Discusses system characteristics affecting mesh network design.

ClientLink Technology

Explains Cisco's ClientLink technology for optimizing 802.11a/g client performance.

Adaptive Wireless Path Protocol

Details the AWPP for determining optimal routes in mesh networks.

CHAPTER 4 Site Preparation and Planning

Site Preparation and Planning

Covers essential steps for preparing and planning mesh network deployments.

Site Survey

Recommends performing a radio site survey before installing mesh equipment.

Outdoor Site Survey

Covers considerations for outdoor wireless deployments like weather and security.

Determining a Line of Sight

Explains how to assess link suitability based on clear line of sight.

Fresnel Zone

Describes the Fresnel zone and its impact on signal propagation.

Hidden Nodes Interference

Discusses interference issues caused by hidden nodes in mesh backhaul.

Cell Planning and Distance

Offers recommendations for cell planning and distance in mesh networks.

CHAPTER 5 Connecting the Cisco 1500 Series Mesh Access Points to the Network

Connecting the Cisco 1500 Series Mesh Access Points to the Network

Guides on connecting Cisco mesh APs to the wired network.

Adding Mesh Access Points to the Mesh Network

Steps to add mesh APs to the network, assuming controller is active.

Defining Mesh Access Point Role

How to configure APs as RAP or MAP, with GUI and CLI methods.

Backup Controllers

Explains configuring primary, secondary, and tertiary backup controllers.

Configuring Global Mesh Parameters

Instructions for configuring global mesh parameters affecting AP connections.

Universal Client Access

Enables client association over the backhaul radio.

Configuring Ethernet VLAN Tagging

Details how to segment traffic using VLAN tags for Ethernet ports.

Workgroup Bridge Interoperability with Mesh Infrastructure

Covers WGB integration with mesh networks.

Configuring Voice Parameters in Indoor Mesh Networks

How to configure CAC and QoS for voice quality.

CHAPTER 6 Checking the Health of the Network

Show Mesh Commands

Lists commands to view mesh network health and status.

Viewing Mesh Statistics for a Mesh Access Point

Provides detailed statistics on mesh AP performance and health.

Viewing Neighbor Statistics for a Mesh Access Point

Shows statistics for mesh AP neighbors and link tests.

CHAPTER 7 Troubleshooting

Installation and Connections

Basic troubleshooting for initial setup and connectivity.

Debug Commands

Helpful commands to view messages between APs and controllers.

AP Console Access

How to access AP console for debugging and configuration.

Mesh Access Point CLI Commands

Lists direct CLI commands for mesh access points.

Dynamic Frequency Selection

Explains DFS functionality for RAPs and MAPs in radar environments.

Bridge Group Name Misconfiguration

Troubleshooting steps for incorrect BGN assignments leading to stranded APs.

CHAPTER 8 Managing Mesh Access Points with Cisco Prime Infrastructure

Managing Mesh Access Points with Cisco Prime Infrastructure

Overview of managing mesh APs using Cisco Prime Infrastructure.

Adding Campus Maps, Outdoor Areas, and Buildings with Cisco Prime Infrastructure

Steps to add geographical maps and buildings in Prime Infrastructure.

Monitoring Mesh Access Points Using Google Earth

How to launch and use Google Earth for mesh AP visualization.

Adding Indoor Mesh Access Points to Cisco Prime Infrastructure

Process for adding indoor APs to Prime Infrastructure after mesh configuration.

Monitoring Workgroup Bridges

How to monitor Workgroup Bridge (WGB) clients separately.

Viewing AP Last Reboot Reason

Explains how to check the cause of the last AP reboot.

Related product manuals