dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
share rss forum feed

krock83

join:2010-03-02
reply to krock83

Re: Wireless 881 user Authentication via Radius

Thanks Da Geek Kid,

Below is what I got so far. I have followed the documentation on the document you have provided. The only thing is that I cant see the network being broadcasted anywhere

no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname 881W_AP
!
logging rate-limit console 9
enable secret 5 $$GFCVYUIHTRTYGVBF+__)()(&
!
aaa new-model
!
!
!
aaa session-id common
!
!
dot11 syslog
!
dot11 ssid Test1
   vlan 1
   accounting accounting-list-for-Test1
!
!
!
username test password 7 0000000000000
username admin privilege 15 secret 5 $1$()!@#$SFGKKghgDFGH
!
!
bridge irb
!
!
interface Dot11Radio0
 no ip address
 no ip route-cache
 !
 encryption vlan 1 mode ciphers tkip 
 !
 ssid Test1
 !
 antenna gain 0
 station-role root
!         
interface Dot11Radio0.1
 encapsulation dot1Q 1 native
 no ip route-cache
 bridge-group 1
 bridge-group 1 subscriber-loop-control
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
 bridge-group 1 spanning-disabled
!
interface GigabitEthernet0
 description the embedded AP GigabitEthernet 0 is an internal interface connecting AP with the host router
 no ip address
 no ip route-cache
!
interface GigabitEthernet0.1
 encapsulation dot1Q 1 native
 no ip route-cache
 bridge-group 1
 no bridge-group 1 source-learning
 bridge-group 1 spanning-disabled
!         
interface BVI1
 ip address 172.30.252.15 255.255.255.0
 no ip route-cache
!
ip default-gateway 172.30.252.1
ip http server
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
radius-server host 172.25.0.223 auth-port 1841 acct-port 1618 timeout 5 retransmit 3 key 7 0000000000000582255
bridge 1 route ip
!
!
!
line con 0
 no activation-character
line vty 0 4
 exec-timeout 60 0
!
end
 
881W_AP# 
 
881W_AP# sh ip int br
Interface                  IP-Address      OK? Method Status                Protocol
BVI1                       172.30.252.15   YES manual up                    up      
Dot11Radio0                unassigned      YES NVRAM  up                    up      
Dot11Radio0.1              unassigned      YES unset  up                    up      
GigabitEthernet0           unassigned      YES NVRAM  up                    up      
GigabitEthernet0.1         unassigned      YES unset  up                    up      
881W_AP#
 

If I add the followinf few commands I will get it to broadcast but, the local wireless users will be authenticating against the local database that is on the AP, not the RAdius Server

dot11 ssid My SSID Name
 Vlan 1
 authentication open
 authentication key-management wpa
 wpa-psk ascii 0 MyWirelessNetworkPassword
 guest-mode
 exit
 

Am I missing something easy here?