Table Of Contents
Setting Up Discovery and Device Management
Device Management Quick Reference
Adding Device Credentials to the WLSE
Enter SNMP Community Strings for All Managed Devices
Enter HTTP Credentials for Non-IOS Access Points
Enter Telnet or SSH Credentials for IOS Access Points
Enter HTTP Port Settings for IOS Access Points
Enter WLCCP Credentials for Wireless Domain Services (WDS)
Configuring Discovery Options
Discovering Devices
Run CDP Discovery
Run CDP Discovery Now
Modify the CDP Discovery Schedule
Import Devices
Import Devices from a File
Import Devices from a CiscoWorks Server
Managing Devices
Adding AAA Servers to the WLSE
Next Step
Setting Up Discovery and Device Management
After setting up devices, you can discover and manage them. This section describes discovery and management configuration for WLSE 2.11.
Note 
If you have set up auto-configuration of the WLSE Express and included discovery and management in the auto-configuration process, you do not have to perform the steps in this chapter.
Device Management Quick Reference
Table 4-1 provides a high-level overview of the tasks for discovering and managing devices. Detailed procedures are provided in this chapter.
Note For IOS access points used within a Cisco Structured Wireless-Aware Network (SWAN), you can use Wireless Doman Services (WDS) and the WLSE's Deployment Wizard for device configuration and deployment, instead of performing Tasks 1 through 4 in Table 4-1. The Deployment Wizard is the prefered method for such deployments. The Deployment Wizard displays immediately after you log in to the WLSE's web interface. For more information on the Deployment Wizard, see the WLSE online help and the User Guide for the CiscoWorks Wireless LAN Solution Engine, 2.11 on Cisco.com at http://www.cisco.com/univercd/cc/td/doc/product/rtrmgmt/cwparent/cw_1105/wlse/2_11/index.htm.
Adding Device Credentials to the WLSE
Note If you are importing devices, instead of discovering them, you may not need to manually enter credentials. If you are importing devices from a file, the credentials can be included in the file. If you are importing devices from CiscoWorks RME, the credentials will be imported.
This section provides procedures for entering the following required device credentials on the WLSE:
•For all managed devices, enter SNMP credentials.
•For access points, the following additional credentials are required:
–For IOS-based access points, enter Telnet or SSH credentials and IOS HTTP port settings.
–For non-IOS access points, enter HTTP credentials.
•For radio management, enter WLCCP credentials.
Enter SNMP Community Strings for All Managed Devices
SNMP community strings are used for discovery and for enabling WLSE features, such as AP configuration jobs and radio management. The community string must be set on each device, as described in "Setting Up Devices—Overview." You can enter as many community strings on the WLSE as necessary.
Note If you are importing devices, you do not need to enter their community strings.The community strings will be imported along with the devices and will be listed in WLSE Communities screen, in which you can modify and delete strings as required. For more information, see Import Devices.
To configure community strings on the WLSE, perform the following steps:
Procedure
Step 1 Select Devices > Discover > Device Credentials > SNMP Communities.
Note This screen contains a default entry which can cover all devices, provided device community strings are set to the default (public).
Step 2 To add an entry:
a. Enter data in the individual text boxes: IP address, Read Community, Timeout, SNMP Retries, and Write Community.
b. Click Add to add the community string to the list.
Result: The community string appears in the list of entries.
Step 3 To modify an entry:
a. Select the entry in the list of entries.
Result: The individual text boxes are populated with the data from the entry.
b. Change the desired fields in the individual text boxes.
c. Click Modify.
Note The IP address field of an existing entry cannot be changed.
Step 4 To delete an entry:
a. Select the entry in the list of entries. To select a number of entries, use the Ctrl or Shift key.
b. Click Delete.
Note The default entry cannot be deleted.
Step 5 Click Save to apply your changes.
Enter HTTP Credentials for Non-IOS Access Points
HTTP credentials are required for downloading configuration files to non-IOS access points and for uploading configurations from such access points. The same password must be set on each access point. You can enter as many usernames and passwords as necessary.
To enter HTTP usernames and passwords:
Procedure
Step 1 Select Devices > Discover > Device Credentials > HTTP User/Password.
Step 2 To add a username and password:
a. Enter the access point IP address or range of IP addresses that will use this username and password.
b. Enter the username.
c. Enter the password.
d. Click Save. The IP address and username are added to the Current Entries textbox.
Step 3 Repeat step 2 to add credentials for more devices.
Enter Telnet or SSH Credentials for IOS Access Points
Telnet/SSH credentials are used for downloading configuration files to IOS-based access points and for upgrading firmware on IOS access points.
Note When entering Telnet or SSH credentials, enter data only in the fields that correspond to the login sequence on the access point(s). For example, if the access point does not prompt for a username, do not enter a username.
To enter Telnet or SSH credentials, perform the following steps:
Procedure
Step 1 Select Devices > Discover > Device Credentials > Telnet/SSH User/Password.
Step 2 To add a username and password:
a. Enter the access point IP address or range of IP addresses that will use this username and these passwords.
b. Enter the username.
c. Enter the password and confirm it.
d. Enter the enable password and confirm it.
e. Click Save. The IP address, username, and passwords are added to the Current Entries textbox.
Step 3 Repeat step 2 to add credentials for more devices.
Enter HTTP Port Settings for IOS Access Points
HTTP or HTTPS port settings are required for reports on IOS-based access points; the port settings are used for the links from reports to access point Web interfaces. The port you should supply for each device is the port for the access point's Web interface.
To enter HTTP or HTTPS port settings, perform the following steps:
Procedure
Step 1 Select Devices > Discover > Device Credentials > IOS HTTP/HTTPS Port Settings.
Step 2 To add a port:
a. Enter the IP address or range of IP addresses that use this port number.
b. Enter the port number.
c. Click Save.
Step 3 Repeat Step 2 to add more IP addresses and ports.
Enter WLCCP Credentials for Wireless Domain Services (WDS)
To configure the WLSE to authenticate with WDS devices, perform the following steps:
Procedure
Step 1 Select Devices > Discover > Device Credentials > WLCCP Credentials.
Step 2 Enter the Radius User Name and Radius Password.
This is the username and password that you set for the WLSE on the AAA server.
Step 3 Click Save.
Configuring Discovery Options
Discovery options allow you to enable automatic management of all discovered devices, specify use of device names in displays, and use MAC address filtering for management of access points.
Note These procedures are optional.
To configure discovery options, perform the following steps:
Procedure
Step 1 Select Devices > Discover > DISCOVER > Advanced Options.
a. If you want device names in WLSE displays, instead of their IP addresses, select Use Reverse DNS lookup.
b. Configure the name format for devices in WLSE displays in the Name Format field.
c. To enable automatic management for all discovered devices, select Auto-Manage Devices. Otherwise, you must manually move devices to the managed state after they have been discovered.
d. To arrange temporary management of access points, configure MAC address filtering. For information, see the online help or the User Guide for the CiscoWorks Wireless LAN Solution Engine, Release 2.11.
e. Click Save.
Step 2 To set up IP filters for limiting discovery to certain devices, select Devices > Discover > DISCOVER > IP Filter Rules and follow the instructions in the online help or the User Guide for the CiscoWorks Wireless LAN Solution Engine, Release 2.11.
Discovering Devices
Use the procedures in this section to discover devices by using CDP or device import:
•Use the discovery wizard to run a CDP discovery—See Run CDP Discovery.
Note If you prefer not to use CDP, use the wizard and enter all of your devices as seeds, as indicated in Run CDP Discovery, or import devices.
•Import devices from a file or from a CiscoWorks server—See Import Devices.
Note If WDS is configured on the subnet, CDP discovery proceeds automatically via WLCCP for the infrastructure access points. The access points must be properly configured. All access points will be used as seeds. The WDS must also be configured and in the managed state. For device configuration information, see "Setting Up Devices—Overview."
Run CDP Discovery
Before CDP discovery can proceed, you must specify at least one initiating IP address (seed device), from which other devices can be discovered. Neighbors of the seed device are discovered according to the CDP distance that you specify. The seed device and discovered devices must be CDP-enabled.
Note By default, the WLSE runs a CDP discovery every 24 hours.
Use the procedures in this section to run an immediate or scheduled discovery:
•Run an immediate, one-time CDP discovery—See Run CDP Discovery Now.
•Modify the default CDP discovery schedule—See Modify the CDP Discovery Schedule.
Run CDP Discovery Now
To run an immediate discovery, perform the following steps:
Procedure
Step 1 Select Devices > Discover > DISCOVER > Discovery Wizard.
Step 2 Select Automatic Device Discovery based on Cisco Discovery Protocol, and click Next.
Step 3 Select Run Now and click Next.
Step 4 Add community strings for all of the devices to be discovered if you have not already done so. For details on adding community strings, see Enter SNMP Community Strings for All Managed Devices. After adding community strings, click Next.
Step 5 Add one or more initiating IP addresses (seeds) to be used for this one-time discovery only:
Note If CDP is not enabled, you still can discover devices by entering each of their IP addresses as seeds. In that case, however, the connectivity between switches and access points will not be discovered.
a. Enter the IP addresses or device names in the Add Seed Values text box and click >>.
b. Set the CDP distance. If the distance is set to 1, only the immediate neighbors of the seed devices are discovered. Set the distance appropriately to discover the entire wireless network. Set the distance to 1 if you are adding all devices as seeds.
Note Routers and switches that do not have access points attached to them are used when computing CDP distance. However, such devices will not appear in the discovered devices list.
c. Click Next.
Step 6 (Optional) Enter a name for the discovery job.
Step 7 If the discovery summary is correct, click Finish to run the discovery. The discovery will begin within 2 minutes.
If the summary is not correct, click Back to make changes in any of your settings.
Step 8 A popup message displays the name of the discovery and the Discovery Run Details window appears. Click Refresh to update the Job Run Log.
Modify the CDP Discovery Schedule
To modify the default discovery schedule, perform the following steps:
Procedure
Step 1 Select Devices > Discover > Discover > Discovery Wizard.
Step 2 Select Automatic Device Discovery based on Cisco Discovery Protocol, and click Next.
Step 3 Select Modify Periodic and click Next.
Step 4 To modify the schedule:
a. Select the Start Date and Start Time from the pull-down lists.
b. To repeat discovery at a specified interval, select Enable. Then enter a number for the interval and select Minutes, Hours, Days, Weeks or Months from the pull-down list.
c. Click Next.
Step 5 If you already added community strings, click Next.
If you have not added community strings, you must add them now. For details on adding community strings, see Enter SNMP Community Strings for All Managed Devices. After adding community strings, click Next.
Step 6 Add one or more initiating IP addresses (seeds):
Note If CDP is not enabled, you still can discover devices by entering each of their IP addresses as seeds in this window, however the connectivity between switches and access points will not be discovered.
a. Enter the IP addresses or device names in the Add Seed Values text box and click >>.
b. Set the CDP distance. If the distance is set to 1, only the immediate neighbors of the seed devices are discovered. Set the distance appropriately to discover the entire wireless network.
Note Routers and switches that do not have access points attached to them are used when computing CDP distance. However, such devices will not appear in the discovered devices list.
Step 7 Click Next.
Step 8 Click Finish to submit your changes. Discovery will begin at the scheduled time.
Click Back to make changes before submitting, or click Cancel to cancel all changes.
For more information about scheduled discoveries, see the WLSE online help.
Import Devices
After you import devices, a one-time discovery job starts immediately. All of the WLSE-supported devices in the file or found on the CiscoWorks server are used as seed devices with a CDP distance of 1. After importing devices, ensure that they are managed.
Note If CDP is not enabled and you import devices, only the imported access points and wireless bridges will be discovered. Routers and switches will not be discovered.
Import Devices from a File
Devices can be imported from a comma-separated values (CSV) file. You can create the file by exporting devices from CiscoWorks RME or by creating a file with a text editor. After you import the file, a one-time discovery begins immediately.
Procedure
Step 1 Select Devices > Discover > Discover > Discovery Wizard.
Step 2 Select Import From File and click Next.
Step 3 Enter the pathname of the file or click Browse to find it. If you do not have a file, click See sample CSV file for the correct format.
Step 4 Only the hostnames, IP addresses, and read and write community strings are imported automatically.
•If you want to specify timeout and retry values, enter them in the SNMP Timeout and SNMP Retry fields. Otherwise, the default values of a 10-second timeout and 1 retry will be assigned to the imported devices.
•Click Next, or click Cancel to cancel the import.
•Click Check Last Status to see the results of the last discovery.
Step 5 Click Finish to import the devices listed in the file. A one-time discovery begins immediately.
Step 6 Click Check Last Status to see the results of the import.
See the online help for more detailed information on importing devices from a file.
Import Devices from a CiscoWorks Server
You can import devices from a CiscoWorks server that is running Resource Manager Essentials. This import can be immediate or scheduled, and you can schedule repeat imports. A discovery runs after the import.
Procedure
Step 1 Select Devices > Discover > Discover > Discovery Wizard.
Step 2 Select Import From CiscoWorks and click Next.
Step 3 Complete the Schedule Import from CiscoWorks dialog.
a. Enter the following data. All fields are required.
Text Box
|
Description
|
Host
|
The CiscoWorks server's IP address.
|
Server Port
|
The port number on which the CiscoWorks server listens for HTTP requests. You may have to contact the administrator of the CiscoWorks server for this information.
|
Username
|
Any user who has the authority to export and import device credentials on the CiscoWorks server.
|
Password
|
b. For an immediate, one-time import, select Run Now.
c. To schedule a one-time import for a later time or schedule repeated imports:
•Select the start date and start time from the pulldown lists.
•To schedule repeated imports, select Enable Repeat. Then set the interval by entering a number after Every and selecting Minutes, hours, Days, Weeks, or Months.
d. Click Cancel to cancel the import.
e. Click Check Last Status to see the results of the last discovery.
Step 4 Click Finish to import devices.
•If you selected Run Now, discovery begins immediately.
•If you scheduled the discovery for a later time, the list of scheduled and completed discoveries appears.
Managing Devices
After discovering or importing devices and verifying the results, make sure that all the devices you want to manage or monitor are in the Managed folder.
Note If you specified auto-management when configuring advanced options, the newly discovered devices will be in the Managed folder. For information on setting the auto-manage option, see Configuring Discovery Options.
To move devices to the Managed folder (if necessary):
Procedure
Step 1 Select Devices > Discover > Managed Devices.
The Discovered Devices tree appears.
If you specified auto-manage, all discovered devices will already be in the Managed folder. An inventory will automatically run for these devices
Step 2 If you did not specify auto-manage, you must move the newly discovered devices to the managed state:
a. Expand the New folder. All of the devices in the folder will be listed in the New Devices box in the Group Change Status pane.
b. Select one or more devices in the New Devices box, and click Manage.
The selected devices move to the appropriate group in the Managed folder. For example, if you select a switch and click Manage, it will move to the Switch folder.
Note Inventory will run automatically after you move devices to the managed state.
Step 3 To view information about a device, select the device from the Discovered Devices tree. The Device Details pane displays details about the device.
From the Device Details pane, you can change a device's management status or delete the device from Discovered Devices.
Adding AAA Servers to the WLSE
Use the following procedure to add information about all AAA servers to be monitored by the WLSE. For information about configuring an ACS server for monitoring, see Adding AAA Servers to the WLSE.
Procedure
Step 1 Select Devices > Discover > AAA Server.
Step 2 Select the server type: EAP-MD5, LEAP, PEAP, RADIUS, or EAP-FAST.
Step 3 Complete the following:
Text Box
|
Description
|
Server Name
|
Hostname or IP address of an AAA server to be added.
Note Depending on how your network is set up, the AAA server can be a Cisco Secure Access Control Server, a Cisco Access Registrar RADIUS server, or an access point configured as an AAA server.
|
Server Port
|
Port on the server used for authentication; use port 1812.
|
Username
|
Client username that you entered on the AAA server.
|
Password
|
Client password that you entered on the AAA server.
|
Secret
|
Shared secret key that you entered on the AAA server.
|
Step 4 Click Save.
Step 5 Repeat Steps 2-4 for each AAA server you want to add.
For more information on AAA servers, see the WLSE online help.
Next Step
For information on advanced configuration and day-to-day operation of the WLSE, see the User Guide for the CiscoWorks Wireless LAN Solution Engine, Release 2.11 or the WLSE online help.
