manualshive.com logo in svg

Dell PowerConnect W-AirWave 7.6, Руководство пользователя

У нас вы можете бесплатно скачать руководство пользователя Dell PowerConnect W-AirWave 7.6. Этот мануал поможет вам лучше понять наш продукт и использовать его эффективно. Посетите manualshive.com для скачивания.

Поделиться
Скачать
background image

PCI Auditing

PCI Auditing in AirWave allows you to monitor, audit, and demonstrate PCI compliance on the network. There are
five primary pages in which you establish, monitor, and access PCI auditing, as follows:

l

The

AMP Setup > PCI Compliance

page enables or disables PCI Compliance monitoring on the network, and

displays the current compliance status on the network. See

"Enabling or Disabling PCI Auditing" on page 56

.

l

The

Reports > Definitions

page allows you to create custom-configured and custom-scheduled PCI Compliance

reports. See

"Reports > Definitions Page Overview" on page 235

.

l

The

Reports > Generated

page lists PCI Compliance reports currently available, and allows you to generate the

latest daily version of the PCI Compliance Report with a single select. Refer to

"Reports > Generated Page

Overview" on page 237

.

l

The

APs/Devices > PCI Compliance

page enables you to analyze PCI Compliance for any specific device on the

network. This page is accessible when you select a specific device from the

APs/Devices > Monitor

page. First,

you must enable this function through

AMP Setup

. See

"Enabling or Disabling PCI Auditing" on page 56

.

l

The

PCI Compliance Report

offers additional information. Refer to

"Using the PCI Compliance Report" on

page 252

. This report not only contains

Pass

or

Fail

status for each PCI requirement, but cites the action

required to resolve a

Fail

status when sufficient information is available.

NOTE: When any PCI requirement is enabled on AirWave, then AirWave grades the network as pass or fail for the respective PCI

requirement. Whenever a PCI requirement is not enabled in AirWave, then AirWave does not monitor the network’s status in relation

to that requirement, and cannot designate Pass or Fail network status. AirWave users without RAPIDS visibility enabled will not see

the 11.1 PCI requirements in the PCI Compliance Report.

Requirement

Description

1.1

Monitoring configuration standards for network firewall devices
When Enabled: PCI Requirement 1.1 establishes firewall and router configuration standards.
A device fails Requirement 1.1 if there are mismatches between the desired configuration and the
configuration on the device.
When Disabled: firewall router and device configurations are not checked for PCI compliance, and
Pass or Fail status is not reported or monitored.

1.2.3

Monitoring firewall installation between any wireless networks and the cardholder data
environment
When Enabled: A device passes requirement 1.2.3 if it can function as a stateful firewall.
When Disabled: firewall router and device installation are not checked for PCI compliance.

2.1

Monitoring the presence of vendor-supplied default security settings
When Enabled: PCI Requirement 2 establishes the standard in which all vendor-supplied default
passwords are changed prior to a device’s presence and operation in the network.
A device fails requirement 2.1 if the username, passwords or SNMP credentials being used by
AirWave to communicate with the device are on a list of forbidden default credentials. The list
includes common vendor default passwords, for example.
When Disabled: device passwords and other vendor default settings are not checked for PCI
compliance.

2.1.1

Changing vendor-supplied defaults for wireless environments
When Enabled: A device fails requirement 2.1.1 if the passphrases, SSIDs, or other security-related
settings are on a list of forbidden values that AirWave establishes and tracks. The list includes
common vendor default passwords. The user can input new values to achieve compliance.
When Disabled: network devices are not checked for forbidden information and PCI Compliance is
not established.

Table 37:

PCI Requirements and Support in AirWave

Dell PowerConnect W-AirWave 7.6 | User Guide

Configuring AirWave | 55

Содержание PowerConnect W-AirWave 7.6

Страница 1: ...Dell PowerConnect W AirWave 7 6 User Guide ...

Страница 2: ...de subject to the GNU General Public License GPL GNU Lesser General Public License LGPL or other Open Source Licenses Includes software from Litech Systems Design The IF MAP client library copyright 2011 Infoblox Inc All rights reserved This product includes software developed by Lars Fenneberg et al The Open Source code used can be found at this site http www arubanetworks com open_source Legal N...

Страница 3: ...ing Export CSV for Lists and Reports 9 Defining Graph Display Preferences 10 Customizing the Dashboard 10 Adding Widgets 11 Available Widgets 11 Search Preferences 14 Setting Severe Alert Warning Behavior 15 Defining General AirWave Server Settings 16 AMP Setup General 16 General Settings 16 Automatic Authorization Settings 17 Top Header Settings 18 Search Method 18 Home Overview Preferences 18 Di...

Страница 4: ...ling AirWave to Manage Your Devices 40 Configuring Communication Settings for Discovered Devices 41 Loading Device Firmware Onto AirWave optional 43 Loading Firmware Files onto AirWave 44 Using Web Auth Bundles in AirWave 46 Setting Up Device Types 46 Configuring Cisco WLSE and WLSE Rogue Scanning 47 Introduction to Cisco WLSE 47 Initial WLSE Configuration 48 Adding an ACS Server for WLSE 48 Enabl...

Страница 5: ...ings 86 Configuring Wireless Parameters for Cisco Controllers 87 Configuring Cisco WLC Security Parameters and Functions 87 Configuring Management Settings for Cisco WLC 88 Configuring Group PTMP Settings 88 Configuring Proxim Mesh Radio Settings 89 Configuring Group MAC Access Control Lists 91 Specifying Minimum Firmware Versions for APs in a Group 91 Comparing Device Groups 92 Deleting a Group 9...

Страница 6: ...ng Device Configuration 129 Using Device Folders Optional 130 Configuring and Managing Devices 131 Moving a Device from Monitor Only to Manage Read Write Mode 132 Configuring AP Settings 133 Setting a Maintenance Window for a Device 138 Configuring Device Interfaces for Switches 139 Individual Device Support and Firmware Upgrades 142 Troubleshooting a Newly Discovered Down Device 144 Setting up Sp...

Страница 7: ...fication 169 Introduction to RAPIDS 169 Viewing Overall Network Health on RAPIDS Overview 170 Setting Up RAPIDS 171 RAPIDS Setup 171 Basic Configuration 171 Classification Options 173 Containment Options 173 Filtering Options 173 Additional Settings 174 Defining RAPIDS Rules 174 Controller Classification with WMS Offload 174 Device OUI Score 175 Rogue Device Threat Level 175 Viewing and Configurin...

Страница 8: ...09 Evaluating and Diagnosing User Status and Issues 210 Evaluating User Status with the Clients Client Detail Page 210 Mobile Device Access Control in Clients Client Detail and Clients Connected 211 Classifying Dell Devices in Client Detail 212 Quick Links for Clients on Dell Devices 212 Using the Deauthenticate Client Feature 213 Viewing a Client s Association History 213 Viewing the Rogue Associ...

Страница 9: ...ell PowerConnect W License Report 240 Using the Capacity Planning Report 240 Using the Client Session Report 242 Using the Configuration Audit Report 243 Using the Device Summary Report 244 Using the Device Uptime Report 246 Using the IDS Events Report 247 Using the Inventory Report 248 Using the Memory and CPU Utilization Report 248 Using the Network Usage Report 249 Using the New Clients Report ...

Страница 10: ...al Preferences 278 Increasing Location Accuracy 281 Adding Exterior Walls 282 Location Training for Stationary Devices 283 Adding Client Surveys 284 Adding Regions 285 Adding Location Probability Regions 285 Adding a Wiring Closet 286 Viewing Port Status on Deployed Switches 287 Fine Tuning Location Service in VisualRF Setup 288 Configuring Infrastructure 288 Deploying APs for Client Location Accu...

Страница 11: ...ing Region 304 Auto Matching Planned Devices 305 Printing a Bill of Materials Report 305 Importing and Exporting in VisualRF 306 Exporting a campus 306 Importing from CAD 306 Batch Importing CAD Files 307 Requirements 307 Pre Processing Steps 307 Upload Processing Steps 307 Post Processing Steps 308 Sample Upload Instruction XML File 308 Common Importation Problems 308 Importing from a Dell PowerC...

Страница 12: ...xii Dell PowerConnect W AirWave 7 6 User Guide ...

Страница 13: ...any questions or comments please contact Dell support at dell com support A Unified Wireless Network Command Center AirWave is the only network management software that offers you a single intelligent console from which to monitor analyze and configure wireless networks in automatic fashion Whether your wireless network is simple or a large complex multi vendor installation AirWave manages it all ...

Страница 14: ...s and channel maps for RF diagnostics n Adjusts for building materials n Supports multiple antenna types l Floor plan building and campus views l Visual display of errors and alerts l Easy import of existing floor plans and building maps l Planning of new floor plans and AP placement recommendations RAPIDS RAPIDS is a powerful and easy to use tool for monitoring and managing security on your wirel...

Страница 15: ...s LDAP servers routers switches network management servers wireless IDS solutions helpdesk systems indoor wireless access points mesh devices AirWave has the flexibility to manage devices on local networks remote networks and networks using Network Address Translation NAT AirWave communicates over the air or over the wire using a variety of protocols The power performance and usability of AirWave ...

Страница 16: ...ponsibility l A Help Desk user may be given read only access to monitoring data without being permitted to make configuration changes l A U S based network engineer may be given read write access to manage device configurations in North America but not to control devices in the rest of the world l A security auditor may be given read write access to configure security policies across the entire WL...

Страница 17: ... on page 33 l Enabling AirWave to Manage Your Devices on page 40 l Setting Up Device Types on page 46 l Configuring Cisco WLSE and WLSE Rogue Scanning on page 47 l Configuring ACS Servers on page 52 l Integrating AirWave with an Existing Network Management Solution NMS on page 53 l Auditing PCI Compliance on the Network on page 54 l Deploying WMS Offload on page 57 NOTE Additional configurations a...

Страница 18: ...ks that appear from the AMP Setup General page as described in Defining General AirWave Server Settings on page 16 Top Header Stats can also be customized for individual users on the Home User Info page There you can select the statistics to display for certain device types and override the AMP Setup page All possible display options for users are shown in Figure 2 and these fields are described i...

Страница 19: ...constitutes a severe alert see Setting Severe Alert Warning Behavior on page 15 Customizing Columns in Lists Customize the columns for any list table selecting Choose Columns as shown in the figure below Use the up down arrows to change the order in which the column heads appear Figure 3 Choose Columns Drop down List Dell PowerConnect W AirWave 7 6 User Guide Configuring AirWave 7 ...

Страница 20: ...gure 4 The first column shows the user roles that were customized if any The second column allows you to establish left to right columns and order them using the arrows Figure 4 Table with Choose Columns for Roles Menu Selected Resetting Pagination Records To control the number of records in any individual list select the link with Records Per Page mouseover text at the top left of the table as sh...

Страница 21: ...o any portion of the table Select the symbol to jump to the next page and to jump to the last page Using Export CSV for Lists and Reports Some tables have a Export CSV setting you can use export the data as a spreadsheet See Figure 8 for an example of a list with the Export CSV option selected Figure 8 List with CSV Export Selected AirWave also enables CSV exporting of all report types For more in...

Страница 22: ...he Show All link displays all of the available checkboxes supporting the Flash graphs Once a change to the slider bars has been made the same change can be applied to all other Flash graphs on that page with a Set time range button NOTE A non Flash version of the AirWave user page is available if desired Instead of Flash it uses the RRD graphs that were used in earlier versions of AirWave For non ...

Страница 23: ...mple limit the top folder that a user can view Widget Description Client Usage Graphs The Client graph is enabled by default and by default shows the maximum number of attached clients over the last two hours Select the Show All link to view more specific client information on the graph such as the total and average clients for a specific SSID the maximum VPN sessions etc The available check boxes...

Страница 24: ...APIDS Overview page RAPIDS Classification Pie The RAPIDS Classification Pie shows the percentage of devices classified as Valid Suspected Neighbor Suspected Valid Suspected Rogue Rogue and Neighbor that are attached to AirWave The RAPIDS information appears from the moment a rogue is discovered until it is deleted Ignored rogues however are not included in this chart This pie chart can also be vie...

Страница 25: ...ry hour Top Folders By A Radio Client Count This chart shows the folders and the number of A radios 5GHz in each folder whose client count is greater than the cutoff The cutoff represents 75 of the maximum where the maximum is the radio that has the highest client count regardless of the folder The cutoff value is displayed within the title and can vary This chart takes into account approved APs w...

Страница 26: ... the Search Method drop down This search type will be used when a user types an entry in the Search field and then clicks Enter without selecting a specific search type l Use System Defaults The Search Method will be based on the system wide configuration setting This method is configured on the AMP Setup General page l Active clients all devices This looks at all active clients not historical and...

Страница 27: ...n the list of Severe Alerts will include all Major and Critical alerts Similarly if this value is set to Normal which is the lowest threshold then the list of Severe Alerts will include all alerts When a Severe Alert exists a new component named Severe Alerts will appear at the right of the Status field in bold red font This field is hidden if there are no Severe Alerts In addition only users who ...

Страница 28: ...ave Network Settings on page 25 l AirWave User Roles on page 29 l Creating AirWave Users on page 27 l Configuring Login Message TACACS RADIUS and LDAP Authentication on page 33 l Enabling AirWave to Manage Your Devices on page 40 l Setting Up Device Types on page 46 AMP Setup General The first step in configuring AirWave is to specify the general settings for the AirWave server Figure 14 illustrat...

Страница 29: ... time of day AirWave should perform daily maintenance During maintenance AirWave cleans the database performs backups and completes a few other housekeeping tasks Such processes should not be performed during peak hours of demand Check for software updates Yes Enables AirWave to check automatically for multiple update types Check daily for AirWave updates to include enhancements device template fi...

Страница 30: ...categories This looks at all active clients not historical and all categories This search is not case sensitive l Active clients all categories exact match This looks at all active clients not historical and all categories This search returns only matches that are exactly as typed IP username device name etc This search is case sensitive for all searched fields l Active historical clients all cate...

Страница 31: ...ects the device types that use fully qualified domain names This field has three options as follows l All devices When selected AirWave displays all Group tabs and setting options l Only devices on this AMP When selected AirWave hides all options and tabs that do not apply to the APs and devices currently on AirWave l Selected device type When selected a new field appears listing many device types...

Страница 32: ...obal to group follow these steps 1 Set all the devices to Monitor Only mode before setting the flag 2 Each device Group will need to have an import performed from the Audit page of a controller in the AMP group 3 All of the thin APs need to have their settings imported after the device group settings have finished importing 4 If the devices were set to Monitor Only mode set them back to Managed mo...

Страница 33: ...Locate the Historical Data Retention section and specify the number of days you want to keep client session records and rogue discovery events Table 10 describes the settings and default values of this section Many settings can be set to have no expiration date Setting Default Description Inactive Client and VPN User Data 0 1500 days zero disables 60 Defines the number of days AirWave stores basic...

Страница 34: ...r expire or be deleted from the AirWave database Inactive SSIDs 0 550 days zero disables 425 Sets the number of days AirWave retains historical information after AirWave last saw a client on a specific SSID Setting this value to 0 disables this function and inactive SSIDs will never expire or be deleted from the database Inactive Interfaces 0 550 days zero disables 425 Sets the number of days AirW...

Страница 35: ...itional AMP Services Locate the Additional AMP Services section and adjust settings as required Table 12 describes the settings and default values of this section Setting Default Description Enable FTP Server No Enables or disables the FTP server on AMP The FTP server is only used to manage Aruba AirMesh and Cisco Aironet 4800 APs Best practice is to disable the FTP server if you do not have any s...

Страница 36: ... server Optional setting configures the throughput of monitoring data Increasing this setting allows AirWave to process more data per second but it can take resources away from other AirWave processes Contact Dell support at dell com support if you think you might need to increase this setting for your network Also note that the value range varies based on the number of available process cores Max...

Страница 37: ... section describes configuring AMP network settings l Complete the required configurations in this section before proceeding Dell support remains available to you for any phase of AMP installation Defining AirWave Network Settings The next step in configuring AirWave is to confirm the AirWave network settings Define these settings by navigating to the AMP Setup Network page Figure 15 illustrates t...

Страница 38: ...dary network NOTE This address must be a static IP address Subnet Mask None Specify the subnet mask for the secondary network interface Table 15 Secondary Network Interface Fields and Default Values Network Time Protocol NTP Settings On the AMP Setup Network page locate the Network Time Protocol NTP section The Network Time Protocol is used to synchronize the time between AirWave and your network ...

Страница 39: ...quired if you configure AirWave to use RADIUS TACACS or LDAP authentication You do not need to add individual users to the AirWave server if you use RADIUS TACACS or LDAP authentication The user role defines the user type access level and the top folder for that user User roles are defined on the AMP Setup Roles page Refer to the previous procedure in this chapter for additional information Creati...

Страница 40: ...ord field NOTE Because the default user s password is identical to the name it is strongly recommended that you change this password Changing your password will log you out Name None Allows you to define an optional and alphanumeric text field that takes note of the user s actual name Email Address None Allows you to specify a specific email address that will propagate throughout many additional p...

Страница 41: ...eir assigned subset of folders User Roles and VisualRF VisualRF uses the same user roles as defined for AirWave Users can see floor plans that contain an AP to which they have access in AirWave although only visible APs appear on the floor plan VisualRF users can also see any building that contains a visible floor plan and any campus that contains a visible building NOTE In VisualRF Setup Server S...

Страница 42: ...lowing tables describe the available settings and default values for each role type Setting Default Description Name None Sets the administrator definable string that names the role The role name should indicate the devices and groups that are viewable as well as the privileges granted to that role Enabled Yes Disables or enables the role Disabling a role prevents all users of that role from loggi...

Страница 43: ...APs Devices Audit page which may contain sensitive information including AP passwords l Monitor Read Only Monitor users have read only access to devices and groups and VisualRF Monitor users cannot view the APs Devices Audit page which may contain sensitive information including passwords Top Folder Top Defines the highest viewable folder for the role The role is able to view all devices and group...

Страница 44: ... personnel supporting users on a wireless network Allow user to disable timeout No Whether a user can disable AirWave s timeout feature Allow creation of Guest Users Yes If this option is enabled users with an assigned role of Monitoring or Audit can be given access to guest user account creation along with the option to allow a sponsor to change its username NOTE This option is not available if t...

Страница 45: ... amount of time that can elapse before the access expires Allow sponsor to change sponsorship username No Specifies whether a sponsor can change the sponsorship user name Custom Message none A custom message can also be included What Next l Go to additional tabs in the AMP Setup section to continue additional setup configurations The next section describes how to set up AirWave users l Complete th...

Страница 46: ...istrators can set up single sign on SSO for users that have access to AirWave controllers This allows users to log in to AirWave and use the IP Address or Quick Links hypertext links across AirWave to access the controller s UI without having to enter credentials again The links the user can select to access a controller can be found on the APs Devices Monitor page in the Device Info section and o...

Страница 47: ...the next procedure to configure RADIUS TACACS and LDAP Authentication options Configuring RADIUS Authentication and Authorization For RADIUS capability you must configure the IP Hostname of the RADIUS server the TCP port and the server shared secret Perform these steps to configure RADIUS authentication 1 Go to the AMP Setup Authentication page This page displays current status of RADIUS Figure 21...

Страница 48: ... NOTE AirWave checks the local username and password before checking with the RADIUS server If the user is found locally the local password and role apply When using RADIUS it s not necessary or recommended to define users on the AirWave server The only recommended user is the backup admin in case the RADIUS server goes down Optionally you can configure RADIUS server accounting on AMP Setup RADIUS...

Страница 49: ...er Shared Secret Confirm None Sets the Shared Secret that is used to establish communication between AirWave and the RADIUS authentication server Table 23 AMP Setup Radius Accounting Fields and Default Values for LDAP Authentication Configuring TACACS Authentication For TACACS capability you must configure the IP Hostname of the TACACS server the TCP port and the server shared secret This TACACS c...

Страница 50: ...ice named AMP that uses https on the ACS server 1 The AMP https service is added to the TACACS Cisco interface under the Interface Configuration tab 2 Select a checkbox for a new service 3 Enter AMP in the service column and https in the protocol column 4 Select Save 5 Edit the existing groups or users in TACACS to use the AMP service and define a role for the group or user n The role defined on t...

Страница 51: ... in Table 25 Field Default Description Primary Server Hostname IP Address none Enter the IP address or the hostname of the primary LDAP server Primary Server Port 1 65535 389 Enter the port where the LDAP server is listening The default port is 389 Secondary Server Hostname IP Address none Optionally enter the IP address or hostname of the secondary LDAP server This server will be contacted in the...

Страница 52: ...ory the bind DN can also be in the administrator domain format for example adminstrator acme com Bind Password none Specify the bind DN account password Confirm Bind Password none Re enter the bind password Base DN none The DN of the node in your directory tree from which to start searching for records Generally this would be the node that contains all the users who may access AirWave for example ...

Страница 53: ...nd shared secrets must have read write access for AirWave to configure the devices Without read write access AirWave may be able to monitor the devices but cannot apply any configuration changes 2 Browse to the Device Setup Communication page locate the SNMP Settings section and enter or revise the following information Table 26 lists the settings and default values Setting Default Description SNM...

Страница 54: ...eriod in seconds used when performing Telnet and SSH commands Table 27 Device Setup Communication Telnet SSH Settings Fields and Default Values 5 Locate the HTTP Discovery Settings section and adjust the default value Table 28 shows the setting and default value Setting Default Description HTTP Timeout 3 120 sec 5 Sets the timeout period in seconds used when running an HTTP discovery scan Table 28...

Страница 55: ... l Use the AMP Setup page to configure AirWave wide default firmware options Table 31 below itemizes the contents settings and default values for the Upload Firmware Files page Setting Default Description Type Dell PowerConnect W Series Controller any model Displays a drop down list of the primary AP makes and models that AirWave supports with automated firmware distribution Owner Role None Displa...

Страница 56: ...e specified groups You cannot delete a firmware file that is set as the desired firmware version for a group Loading Firmware Files onto AirWave Perform the following steps to load a device firmware file onto AirWave 1 Go to the Device Setup Upload Firmware Files page 2 Select Add The Add Firmware File page appears Figure 27 illustrates this page Figure 27 Device Setup Upload Firmware and Files Ad...

Страница 57: ...n appears This setting instructs AirWave to use the server that is associated with the group instead of defining a server Firmware File Server IP Address None Provides the IP address of the External TFTP Server like SolarWinds used for the firmware upgrade This option displays when the user selects the Use an external firmware file option Firmware Filename None Enter the name of the firmware file ...

Страница 58: ... Add Web Auth Bundle Page Illustration 3 Enter a descriptive label in the description field This is the label used to identify and track Web Auth bundles on the page 4 Enter the path and filename of the Web Auth configuration file in the Web Auth Bundle field or select Choose File to locate the file 5 Select Add to complete the Web Auth bundle creation or Save if replacing a previous Web Auth conf...

Страница 59: ...sco WLSE Cisco WLSE functions as an integral part of the Cisco Structured Wireless Aware Network SWAN architecture which includes IOS Access Points a Wireless Domain Service an Access Control Server and a WLSE In order for AirWave to obtain Rogue AP information from the WLSE all SWAN components must be properly configured Table 33 describes these components SWAN Component Requirements WDS Wireless...

Страница 60: ...gue Alerts for Cisco WLSE 1 Go to the Faults Network Wide Settings Rogue AP Detection page 2 Select the Enable 3 Select Apply Additional information about rogue device detection is available in Configuring Cisco WLSE Rogue Scanning on page 50 Configuring WLSE to Communicate with APs 1 Go to the Device Setup Discover page 2 Configure SNMP Information 3 Configure HTTP Information 4 Configure Telnet ...

Страница 61: ...ventory reporting 1 Go to Devices Inventory Run Inventory 2 Run Inventory executes immediately between WLSE polling cycles Defining Access AirWave requires System Admin access to WLSE Use these pages to make these configurations 1 Go to Administration User Admin 2 Configure Role and User Grouping It s much easier to generate reports or faults if APs are grouped in WLSE Use these pages to make such...

Страница 62: ...ll components of the WDS and must be configured first Perform these steps to make this configuration 1 Login to the ACS 2 Go to the System Configuration ACS Certificate Setup page 3 Install a New Certificate by selecting the Install New Certificate button or skip to the next step if the certificate was previously installed 4 Select User Setup in the left frame 5 Enter the Username that will be use...

Страница 63: ...e The user needs permission to display faults to discover rogues and inventory API XML API to discover manageable APs As derived from a Cisco limitation only credentials with alphanumeric characters that have only letters and numbers not other symbols allow AirWave to pull the necessary XML APIs Password None Defines the password AirWave uses to communicate with the WLSE server The username and pa...

Страница 64: ...e to poll one or more Cisco ACS servers for wireless username information When you specify an ACS server AirWave gathers information about your wireless users Refer to Setting Up Device Types on page 46 if you want to use your ACS server to manage your AirWave users Perform these steps to configure ACS servers 1 Go to the AMP Setup ACS page This page displays current ACS setup as illustrated in Fi...

Страница 65: ...port AirWave These include the two columns AirWave requires User Name and Caller ID What Next l Go to additional tabs in the AMP Setup section to continue additional setup configurations l Complete the required configurations in this chapter before proceeding Dell support remains available to you for any phase of AirWave installation Integrating AirWave with an Existing Network Management Solution...

Страница 66: ...ect Add to finish creating the NMS server or Save to configure an existing NMS server What Next l Go to additional tabs in the AMP Setup section to continue additional setup configurations l Complete the required configurations in this chapter before proceeding Dell support remains available to you for any phase of AirWave installation Auditing PCI Compliance on the Network This section describes ...

Страница 67: ...enabled will not see the 11 1 PCI requirements in the PCI Compliance Report Requirement Description 1 1 Monitoring configuration standards for network firewall devices When Enabled PCI Requirement 1 1 establishes firewall and router configuration standards A device fails Requirement 1 1 if there are mismatches between the desired configuration and the configuration on the device When Disabled fire...

Страница 68: ...rt When Disabled AirWave does not monitor the presence of PCI compliant intrusion detection or prevention systems nor can it report Pass or Fail status with regard to IDS events Enabling or Disabling PCI Auditing Perform these steps to verify status and to enable or disable AirWave support for PCI 1 2 requirements enabling one or all PCI standards on AirWave enables real time information and gener...

Страница 69: ...nts l ArubaOS Version 2 5 4 or later l AirWave Version 6 0 or later The Dell PowerConnect W WMS feature is an enterprise level hardware device and server architecture with managing software for security and network policy There are three primary components of the WMS deployment l Air Monitor AP devices establish and monitor RF activity on the network l The WMS server manages devices and network ac...

Страница 70: ...vice classification a Set up rogue classification b Set up rogue classification override c Establish user classification override devices 4 Deploy ArubaOS specific monitoring features a Enable remote AP and wired network monitoring b View controller license information 5 Convert existing floor plans to VisualRF to include the following elements n Dell PowerConnect W Series ArubaOS n RF Plan 6 Use ...

Страница 71: ...ol and Trapeze devices in a given group using a configuration file Variables in such templates configure device specific properties such as name IP address and channel Variables also define group level properties For additional information about using the Templates page refer to Creating and Using Templates on page 151 l Security This page defines general security settings for device groups to inc...

Страница 72: ...outers and switches have hundreds of variable settings that must be configured precisely to achieve optimal performance and network security Configuring all settings on each device individually is time consuming and error prone AirWave addresses this challenge by automating the processes of device configuration and compliance auditing At the core of this approach is the concept of Device Groups wi...

Страница 73: ...p specific subtabs that would appear across the navigation section if this group is selected See Figure 38 in Configuring Basic Group Settings on page 62 Name Uniquely identifies the group by location vendor department or any other identifier such as Accounting APs Floor 1 APs Cisco devices 802 1x APs and so forth Up Down Status Polling Period The time between Up Down SNMP polling periods for each...

Страница 74: ...be manually added back NOTE When you first configure AirWave there is only one default group labeled Access Points If you have no other groups configured refer to Configuring Basic Group Settings on page 62 Configuring Basic Group Settings The first default device group that AirWave sets up is the Access Points group but you can use this procedure to add and configure any device group Perform thes...

Страница 75: ... to uniquely identify the group by location vendor department or any other identifier such as Accounting APs Cisco devices 802 1x APs and so forth Missed SNMP Poll Threshold 1 100 1 Sets the number of Up Down SNMP polls that must be missed before AirWave considers a device to be down The number of SNMP retries and the SNMP timeout of a poll can be set on the Device Setup Communication page Table 3...

Страница 76: ...information in this section overrides default settings Table 40 describes the SNMP polling settings Setting Default Description Up Down Status Polling Period 5 minutes Sets time between Up Down SNMP polling for each device in the group The Group SNMP Polling Interval overrides the global parameter configured on the Device Setup Communication page An initial polling interval of 5 minutes is best fo...

Страница 77: ...5 seconds to 12 hours Interface Up Down Polling Period 5 minutes Sets the frequency in which network interfaces are polled for up down status This setting can be disabled or set to poll from switches in a range from every 15 seconds to 30 minutes Interface Bandwidth Polling Period 15 minutes Sets the frequency in which network interfaces are polled for bandwidth usage This setting can be disabled ...

Страница 78: ...ption Assign Static IP Addresses to Devices No Specify whether to enable AirWave to statically assign IP addresses from a specified range to all devices in the Group If this value is set to Yes then the additional configuration fields described in this table will become available Start IP Address none Sets the first address AirWave assigns to the devices in the Group Number of Addresses none Sets ...

Страница 79: ...scription SNMP Version 2c The version of SNMP used by AirWave to communicate to the AP Cisco IOS CLI Communication Telnet The protocol AirWave uses to communicate with Cisco IOS devices Selecting SSH uses the secure shell for command line page CLI communication and displays an SSH Version option Selecting Telnet sends the data in clear text via Telnet Cisco IOS Config File Communication TFTP The p...

Страница 80: ...S controller Table 48 Aruba Fields and Default Values 14 To configure settings for 3Com Enterasys Nortel or Trapeze devices locate the 3Com Enterasys Nortel Trapeze section and define the version of SNMP to be supported 15 To configure settings for universal devices on the network including routers and switches that support both wired and wireless networks locate the Universal Devices Routers and ...

Страница 81: ...p Save is a good option if you intend to make additional device changes in the group and you want to wait until all configurations are complete before you push all configurations at one time Select Save and Apply to make the changes permanent or select Revert to discard all unapplied changes What Next l Continue to additional sections in this chapter to create new groups or to edit existing groups...

Страница 82: ...ctions when enabled with Yes Accounting Port 1 65535 1813 Appears when Accounting is enabled Sets the port used for communication between the AP and the RADIUS server Timeout 0 86400 None Sets the time in seconds that the access point waits for a response from the RADIUS server Max Retries 0 20 None Sets the number of times a RADIUS request is resent to a RADIUS server before failing NOTE If a RAD...

Страница 83: ...on on configuring Encryption Management VLAN ID Untagged This setting sets the ID for the management VLAN when VLANs are enabled in AirWave This setting is supported only for the following devices l Proxim AP 600 AP 700 AP 2000 AP 4000 l Avaya AP 3 Avaya AP 7 AP 4 5 6 AP 8 l ProCurve520WL General Section Create Closed Network No If enabled the APs in the Group do not broadcast their SSIDs NOTE Cre...

Страница 84: ...eld sets the name of the accounting profile to be supported in this device group Authentication Profile Index 3 For Proxim devices only this field sets the name of the accounting profile index to be supported in this device group MAC Address Authentication Section MAC Address Authentication No If enabled only MAC addresses known to the RADIUS server are permitted to associate to APs in the Group M...

Страница 85: ...ncryption Mode WPA Unicast Cipher Cisco only AES Encryption Mode WPA PSK Unicast Cipher Cisco only AES TKI P WPA Preshared Key Alphanumeric None Encryption Mode WPA2 WPA2 WPA Compatibility Mode Yes WPA1 Cipher Cisco WLC Only TKIP NOTE This drop down is only available if WPA2 WPA Compatibility Mode is Yes Unicast Cipher Cisco Only AES TKI P Encryption Mode WPA2 PSK WPA2 WPA Compatibility Mode Yes T...

Страница 86: ...page allows you to create and edit SSIDs and VLANs that apply to a device group Perform these steps to create or edit VLANs and to set SSIDs NOTE WLANs that are supported from one or more Cisco WLC controllers can be configured on the Groups Cisco WLC Config page Figure 42 illustrates an example of the Groups SSIDs page Figure 42 Groups SSIDs Page Illustration NOTE AirWave reports users by radio a...

Страница 87: ... VLAN create a dummy VLAN disable it on both radio controls and ensure that it has the highest VLAN ID Table 54 Groups SSIDs Fields and Descriptions 3 Select Add to create a new SSID or VLAN or select the pencil icon next to an existing SSID VLAN to edit that existing SSID or VLAN The Add SSID VLAN configuration page appears as illustrated in Figure 43 and explained in Table 55 Figure 43 Groups SS...

Страница 88: ...nfiguration page Proxim devices support a maximum of four SSIDs NOTE This option should be enabled to ensure support of legacy users Partial Closed System Proxim only No For Proxim only this setting enables to AP to send its SSID in every beacon but it does not respond to any probe requests Unique Beacon Proxim only No For Proxim only if more than one SSID is enabled this option enables them to be...

Страница 89: ...ate how wireless clients authenticate onto the network Authentication Profile Name Proxim Only None Sets the Authentication Profile Name for Proxim AP 600 AP 700 AP 2000 AP 4000 Authentication Profile Index Proxim Only None Sets the Authentication Profile Index for Proxim AP 600 AP 700 AP 2000 AP 4000 Table 58 Groups SSIDs RADIUS Authentication Servers Fields and Default Values 8 Select Save when ...

Страница 90: ...e Groups Radio configuration page allows you to specify detailed RF related settings for devices in a particular group NOTE If you have existing deployed devices you may want to use the current RF settings on those devices as a guide for configuring the settings in your default Group Perform the following steps to define RF related radio settings for groups 1 Go to the Groups List page and select ...

Страница 91: ...tion disabled RTS CTS Threshold Value 0 2347 bytes 2338 If RTS CTS is enabled this specifies the size of the packet in bytes at which the AP sends the RTS before sending the packet RTS CTS Maximum Retries 1 255 32 If RTS CTS is enabled this specifies the maximum number of times the AP issues an RTS before stopping the attempt to send the packet through the radio Acceptable values range from 1 to 1...

Страница 92: ...ith the nearest access point 802 11g Operational Mode 802 11b 802 11g This setting sets the operational mode of all g radios in the group to either b only g only or b g 802 11abg Operational Mode 802 11b 802 11g This setting sets the operational mode of all a b g radios in the group to either a only b only g only or b g 802 11b Transmit Rate Auto Fallback This setting specifies the minimum transmi...

Страница 93: ...ault Values 8 Select Save when radio configurations as described above are complete select Save and Apply to make the changes permanent or select Revert to discard all unapplied changes Cisco WLC Group Configuration The Groups Cisco WLC Config page consolidates the settings for Cisco WLC devices from all group pages The Groups SSIDs subtab applies to all device types except for Cisco WLC which hav...

Страница 94: ... Configuring WLANs for Cisco WLC Devices In Cisco WLC Config WLANs are based on SSIDs or VLANs that are dedicated to Cisco WLC controllers Perform the following steps to define and configure WLANs for Cisco WLC controllers 1 Go to the Groups Cisco WLC Config page and select WLANs in the navigation pane at left This page displays the SSIDs or VLANs that are available for use with Cisco WLC devices ...

Страница 95: ...yption and RADIUS servers n QoS Defines quality of service QoS parameters for the Cisco WLC WLAN n Advanced Defines advanced settings that are available only with Cisco WLC devices for example AAA override coverage DHCP and DTIM period NOTE Refer to Cisco documentation for additional information about Cisco WLC devices and related features Figure 48 Groups Cisco WLC Config WLANs Add New SSID VLAN ...

Страница 96: ...ing Device Groups Dell PowerConnect W AirWave 7 6 User Guide Figure 49 Groups Cisco WLC Config WLANs Add New SSID VLAN Security Tab Illustration Figure 50 Groups Cisco WLC Config WLANs Add New SSID VLAN QoS Tab Illustration ...

Страница 97: ... on the Cisco WLC LWAPP AP Groups are used to limit the WLANs available on each AP Cisco thin APs are assigned to LWAPP AP Groups Viewing and Creating Cisco AP Groups 1 Go to the Groups Cisco WLC Config page and select WLANs Advanced AP Groups in the navigation pane on the left side This page displays the configured LWAPP APs Figure 52 illustrates this page Dell PowerConnect W AirWave 7 6 User Gui...

Страница 98: ... or more SSIDs and the interface VLAN ID mapping on the Add Edit page of the LWAPP AP Group 4 Select Save and Apply to make these changes permanent or select Save to retain these changes to be pushed to controllers at a later time Configuring Cisco Controller Settings The Groups Cisco WLC Config Controller page defines general Cisco WLC settings Multicast settings Cisco mobility groups to be suppo...

Страница 99: ...4 Groups Cisco WLC Config Wireless Navigation Illustration Configuring Cisco WLC Security Parameters and Functions AirWave enables you to configure many security settings that are specific to Cisco WLC controllers This section supports four overriding types of configuration as follows l AAA to cover both RADIUS and TACACS server configuration l Priority Order l Wireless Protection Policies l Web A...

Страница 100: ...ups Cisco WLC Config Management page illustrated in Figure 56 Figure 56 Groups Cisco WLC Config Management Navigation Illustration Configuring Group PTMP Settings The Groups PTMP configuration page configures Point to Multipoint PTMP for all subscriber and base stations in the device group Subscriber stations must be in the same group as all base stations with which they might connect Perform the ...

Страница 101: ...o 32 alphanumeric characters Network Secret None Sets a shared password to authenticate clients to the network Table 64 Groups PTMP Fields and Default Values 4 Select Save and Apply when configurations are complete to make them permanent or select Save to retain these settings prior to pushing to controllers at a later time Configuring Proxim Mesh Radio Settings 1 Go to the Groups Proxim Mesh conf...

Страница 102: ...ne Sets the SSID used by the Mesh Radio to connect to the mesh network Enable AES No Enable or disable AES encryption Shared Secret None Specify a shared secret if Enable AES is Yes Table 66 Groups Proxim Mesh Security Fields and Default Values 3 The Mesh Cost Matrix configuration section contains settings for hop factor and maximum hops to portal RSSI factor and cut off medium occupancy factor an...

Страница 103: ... the Groups MAC ACL configuration page Figure 59 illustrates this page Figure 59 Groups MAC ACL Page Illustration 2 Select Yes on the Use MAC ACL drop down menu Enter all authorized MAC addresses separated by white spaces 3 Select Save when configurations are complete to retain these settings Select Save and Apply to make the changes permanent or select Revert to discard all unapplied changes Spec...

Страница 104: ...ou can configure that group to be the default group on your network When AirWave discovers new devices that need to be assigned to a management group the default group appears at the top of all drop down menus and lists Newly discovered devices are place automatically in the default group if AirWave is set to Automatically Monitor Manage New Devices on the AirWave configuration page 7 Browse to th...

Страница 105: ...t setting of the Compare page is to highlight settings that differ between two groups n To display settings that are similar or identical between two device groups select Show Similar Fields at the top left of the page The result may be a high volume of information n Select Hide Similar Fields to return to the default display emphasizing configuration settings that differ between two groups n You ...

Страница 106: ... existing group s configuration 1 Browse to the Groups List configuration page 2 Select the Modify button the wrench icon for the group you wish to edit The Groups Basic configuration page appears 3 Select the fields to be edited on the Basic configuration page or go to Radio Security VLANs or MAC ACL configuration page and edit the fields Use the Save button to store the changes prior to applying...

Страница 107: ...d selecting Preview Modifying Multiple Devices AirWave provides a very powerful utility that modifies all APs or a subset of access points unrelated to the typical AirWave group construct This utility provides the ability to delete simultaneously multiple devices migrate multiple devices to another group and or folder update credentials and optimize channels Perform these steps to modify multiple ...

Страница 108: ...uld occur from the drop down menu one time is the default but you may select recurring options for many of the actions Scheduled jobs can be viewed and edited in the System Configuration Change Jobs tab 6 Using the neighbor lists AirWave is able to optimize channel selection for APs Select the APs to optimize and AirWave minimizes the channel interference while giving channel priority to the most ...

Страница 109: ...vices Update changes the credentials AirWave uses to communicate with the device It does not change the credentials on the AP Add Maintenance Window Automate the manual action of putting the selected devices into Manage mode at once so that changes can be applied and after the maintenance period is over the devices automatically revert to Monitor Only mode Maintenance windows can be set as a one t...

Страница 110: ...ing group l To have Global Group status a group must contain no devices accordingly access points can never be added to a Global Group Global groups are visible to users of all roles so they may not contain devices which can be made visible only to certain roles Figure 64 illustrates the Groups List page Figure 64 Groups List Page Illustration l To set a group as a Global Group go to the Groups Ba...

Страница 111: ...ushed the unchecked fields from the Global Group appears on the Subscriber Group as static values and settings Only fields that had the override checkbox selected in the Global Group appear as fields that can be set at the level of the Subscriber Group Any changes to a static field must be made on the Global Group l If a Global Group has Subscriber Groups it cannot be changed to a non Global Group...

Страница 112: ...100 Configuring and Using Device Groups Dell PowerConnect W AirWave 7 6 User Guide ...

Страница 113: ...ices on your network configured in the Device Setup Discover page See SNMP HTTP Scanning on page 102 l Cisco Discovery Protocol CDP AirWave enhances support for CDP by discovering a Cisco device s CDP neighbors See The Cisco Discovery Protocol CDP on page 106 l Manual device entry This admin supported method of discovery applies when you know of devices that are already on your network See the fol...

Страница 114: ... define the network segments to be scanned Perform these steps 1 Go to the Device Setup Discover page and scroll down to the Networks section 2 In the Networks section select the Add button to add a new scan network The Scan Network page appears as shown in Figure 67 Note that you may have to scroll down the page again to view this section Alternatively you can edit an existing scan network by sel...

Страница 115: ...and SNMP v2 differ between in their supported traps supported MIBs and network query elements used in device scanning l HTTP discovers devices using the HyperText Transfer Protocol in communications between servers and additional network components HTTP is not as robust in processing network events as is SNMP but HTTP may be sufficient simpler or preferable in certain scenarios a If you selected S...

Страница 116: ...o create the selected scans which then appear in a list at the top of the Device Setup Discover page 6 To edit an existing scan select the pencil icon next to the scan on the Device Setup Discover page 7 When ready proceed to the next task Running a Scan Set on page 104 NOTE Scheduling an HTTP scan to run daily on your network can help you to discover rogues Some consumer APs like most D Link Link...

Страница 117: ...ys the total number of APs detected during the scan that AirWave could not configure or monitor Total includes both APs that have been discovered in earlier scans as well as newly discovered APs from the most recent scan New Rogues Found Displays the number of rogue APs discovered on the most recent scan Start Displays the date and time the most recent scan was started Stop Displays the date and t...

Страница 118: ...ices you can begin to put the devices in Manage Read Write mode using the APs Devices Manage or the Modify these devices link on any list page Perform the following steps to add a newly discovered device to a group 1 Browse to the APs Devices New page The APs Devices New page displays all newly discovered devices the related controller when known applicable and the device vendor model LAN MAC Addr...

Страница 119: ...tion for adding all device types You only need to select device vendor information from a drop down menu for Cisco and Dell PowerConnect W Series devices and AirWave automatically finds and adds specific make and model information into its database Perform these steps to manually add devices to AirWave 1 The first step to add a device manually is to select the vendor and model Browse to the Device...

Страница 120: ...mmunication page Setting Default Description Name None User configurable name for the AP maximum of 20 characters IP Address None IP address of the device This field is required SNMP Port 161 Port AirWave uses to communicate with the AP using SNMP SSH Port 22 For devices that support SSH specify the SSH port number Community String Confirm Taken from Device Setup Communication Community string use...

Страница 121: ...aken from Device Setup Communication Telnet username for existing Cisco IOS APs AirWave uses the Telnet username password combination to manage the AP and to enable SNMP if desired NOTE New out of the box Cisco IOS based APs typically have SNMP disabled with a default telnet username of Cisco and default password of Cisco This value is required for management of any existing Cisco IOS based APs Te...

Страница 122: ...nformation AirWave will add the information provided in the CSV file as it did before It will not override what you have specified in this file in any way The CSV list must contain the following columns l IP Address l SNMP Community String l Name l Type l Auth Password l SNMPv3 Auth Protocol l Privacy Password l SNMPv3 Privacy Protocol l SNMPv3 Username l Telnet Username l Telnet Password l Enable...

Страница 123: ...ding brands and models of wireless infrastructure universal device support also enables basic monitoring of many of the less commonly used devices Perform the same steps to add universal devices to AirWave that were detailed in Adding Devices with the Device Setup Add Page on page 107 AirWave collects basic information about universal devices including name contact uptime and location Once you hav...

Страница 124: ...e to view all newly discovered devices See Figure 74 Figure 74 APs Devices New Page Illustration 2 Select the checkbox beside the device or devices that you want to ignore and then select the Ignore button Unignoring a Device Perform these steps to further process a device or to return an ignored device to a managed status 1 To view all devices that are ignored go to the APs Devices Ignored page i...

Страница 125: ...l device monitoring statistics in the APs Devices List page The APs Devices List page displays Clients and Usage interactive graphs formerly Users and Bandwidth prior to 7 4 and lists all devices that are managed or monitored by AirWave To see only the Up devices you can click the Up link in the Top Header Stats bar next to the green arrow This displays the APs Devices Up page with the same inform...

Страница 126: ...ding the APs Devices Monitor Pages for All Device Types You can quickly go to any device s monitoring page once you go to its specific folder or group on the APs Devices List page by selecting its hyperlinked name in the Device column All Monitor pages include a section at the top displaying information such as monitoring configuration status serial number total users firmware version and so on as...

Страница 127: ...mediately polls the individual AP or the controller for a thin AP this overrides the group s preset polling intervals to force an immediate update of all data except for rogue information Shows attempt status and last polling times Status Displays ability of AirWave to connect to the AP Up no issue means everything is working as it should Down SNMP get failed means AirWave can get to the device bu...

Страница 128: ...or APs Displays the controller for the associated AP device as a link Select the link to display the APs Devices Monitor page for that controller Mesh Gateway Specifies the mesh AP acting as the wired connection to the network Mesh Mode Specifies whether the AP is a portal device or a mesh node The portal device is connected to the network over a wired connection A node is a device downstream of t...

Страница 129: ...ring Data for Mesh Devices on page 125 Table 72 describes the information in the Radio table for APs Field Description Index The number of the radio used to distinguish radios that may be of the same type on a device Name The Radio type 802 11a b g n as a link to the Radio Statistics page for that radio MAC address The MAC address of the corresponding radio in the AP Clients The number of users as...

Страница 130: ...termined whether the port is on or off Operational Status Displays the current status of the interface If an interface is Up then AirWave is able to ping it and fetch SNMP information If the AP is listed as Down then AirWave is either unable to ping the interface or unable to read the necessary SNMP information from the device Duplex Duplex mode of the link full or half Dell Port Mode Either Activ...

Страница 131: ...Address Displays the Radio MAC address of the user associated to the AP Also provides a link that redirects to the Users Detail page Radio Displays the radio to which the user is associated Association Time Displays the first time AirWave recorded the MAC address as being associated Duration Displays the length of time the MAC address has been associated Auth Type Displays the type of authenticati...

Страница 132: ... by AirWave This column can accommodate multiple IP addresses for a client if it has both IPv4 and IPv6 LAN Hostnames The DNS hostname s broadcast by the client This column can accommodate multiple hostnames for a client if it has both IPv4 and IPv6 The Recent Events area lists the most recent events specific to the device This information also appears on the System Events Log page refer to Using ...

Страница 133: ... chapter in the Dell PowerConnect W Series ArubaOS User Guide at dell com support manuals Complete ARM statistics from Dell PowerConnect W Seriescontrollers can be retrieved from the Radio Statistics page by selecting the Run a command drop down menu and choosing button as illustrated in Figure 82 Figure 82 Fetch additional radio stats by running a show command When this button is selected a new b...

Страница 134: ... graphs for the radio are displayed across a tabbed dual pane interface to show changes recorded at every polling interval over time Clients and Usage data are polled based on the AP s group s User Data Polling Period Channel Noise and Power are based on AP Interface Polling Period 802 11 Counters data are based on the APs group s 802 11 Counters Polling Period You can adjust the attributes of the...

Страница 135: ...djust the power toward your acceptable Coverage Index as needed For more information see the Adaptive Radio Management chapter of the Dell PowerConnect W Series ArubaOS User Guide MAC Phy Errors A line graph displaying the frame reception rate physical layer error rate resulting from poor signal reception or broken antennas and the data link MAC layer corrupt frames driver decoding issues for the ...

Страница 136: ...change Previous Channel Old primary channel value before the Channel Change event took place Current Channel New primary channel value after the change Previous Secondary Channel Old secondary channel value for 40Mhz channels on 802 11n devices before the Channel Change event took place Current Secondary Channel New secondary channel value after the change Change Reason If the noise and interferen...

Страница 137: ...maps the BSSIDs on a radio with the SSID it broadcasts to the network as illustrated in Figure 88 This table appears only for Dell PowerConnect W Series AP radios Figure 88 Active BSSIDs Table Illustration Monitoring Data for Mesh Devices The monitoring page for mesh devices includes basic device information at the top two tables for Radios and Wired Interfaces and Clients Usage CPU Utilization an...

Страница 138: ...re described in detail in Viewing Device Monitoring Statistics on page 113 Monitoring Data for Wired Devices Routers and Switches The monitoring page for routers and switches includes basic device information at the top a bandwidth graph depicting the sum of all the physical interfaces and beneath that CPU Memory utilization graphs as shown in Figure 90 ...

Страница 139: ...evices Monitor Page for a Mobility Access Switch All managed wired devices also include an Interfaces subtab as shown in Figure 91 Dell PowerConnect W AirWave 7 6 User Guide Discovering Adding and Managing Devices 127 ...

Страница 140: ...ent interface If VLAN1 does not exist then ethernet 0 will be treated as the management interface AirWave monitors Up Down status and bandwidth information on all interfaces You can edit multiple interfaces concurrently by selecting one of the two Edit Interfaces hyperlinks Interface labels are used to group one or more interfaces for the purpose of defining interface bandwidth triggers Understand...

Страница 141: ...e 94 Connected Clients list in APs Devices Interface Monitoring for a selected interface What Next All device lists in AirWave act as portals to management pages if you have the proper read write privileges Selecting the wrench or pencil icon next to a device table entry or selecting Modify Devices where appropriate above a device table will take you to the appropriate Management page APs Devices ...

Страница 142: ...e of the device s current configuration settings does not match the group policy and will be changed when the device is shifted to Manage mode 5 If the device configuration is Mismatched select the Mismatched link to go to the APs Devices Audit page This page lists detailed information for all existing configuration parameters and settings for an individual device The group configuration settings ...

Страница 143: ...age 133 l Setting a Maintenance Window for a Device on page 138 l Configuring Device Interfaces for Switches on page 139 l Individual Device Support and Firmware Upgrades on page 142 While most device configuration settings can be efficiently managed by AirWave at a Group level certain settings must be managed at the individual device level For example because devices within a Group are often cont...

Страница 144: ...s List page and select the wrench icon next to the name of the AP to be shifted from Monitor Only mode to Manage Read Write mode This directs you to the APs Devices Manage page 2 Locate the General area as shown in Figure 97 Figure 97 APs Devices Manage General Section Illustration 3 Select Manage Read Write on the Management Mode field 4 Select Save and Apply then Confirm Edit on the confirmation...

Страница 145: ... changes are scheduled for this AP they appear in a Scheduled Changes section at the top of the page above the other fields The linked name of the job takes you to its System Configuration Change Job Detail page 2 Locate the General section for information about the AP s current status Table 80 describes the fields information and settings Field Description Name Displays the name currently set on ...

Страница 146: ...yed on these devices Users will not be able to delete folders that contain devices in Planned Maintenance The devices in Planned Maintenance will show the Up status but will not be tracked in historical graphs and logs as Up You can set multiple devices into Planned Maintenance Mode in the Modify Devices link on an AP list page Notes Provides a free form text field to describe device information 3...

Страница 147: ... down menu of upstream devices Automatically clear Down Status Message when device comes back up None All Whether the message entered in the Down Status Message field should be removed after the device returns to the Up status Down Status Message None All Enter a text message that provides information to be conveyed if the device goes down AP Group Installation Mesh Mode Administrative Status Enab...

Страница 148: ...as and you install a high gain antenna on the device s left connector use this setting for both receive and transmit Transmit Antenna Diversity Cisco See description in Receive Antenna above Antenna Diversity Primary Only Symbol 4131 Drop down menu provides the following options Full Diversity The AP receives information on the antenna with the best signal strength and quality The AP transmits on ...

Страница 149: ...ity and manageability disable DHCP and using static IP addresses LAN IP None All The IP Address of the AP Ethernet interface If One to One NAT is enabled AirWave will communicate with the AP on a different address the IP Address defined in the Device Communication section If DHCP is enabled the current assigned address will appear grayed out and the field cannot be updated in this area Subnet Mask...

Страница 150: ... Cisco WLC devices supported by AirWave refer to the Cisco WLC product documentation Field Default Description Name None The name of the interface on the controller VLAN ID None The VLAN ID for the interface on the controller Port None The port on the controller to access the interface IP Address None The IP address of the controller Subnet Mask None The subnet mask for the controller Gateway None...

Страница 151: ...value For example if you select monthly the you will be prompted to specify the day of the month for the recurrance 6 Set the desired start time and the duration in minutes of the maintenance window 7 Select Add Configuring Device Interfaces for Switches When you go to the APs Devices Interfaces page for a switch you can add a Virtual interface by selecting Add and entering the appropriate informa...

Страница 152: ...well For details see Understanding the APs Devices Interfaces Page on page 128 You can configure interface settings individually or in groups For individual settings select the pencil icon next the interface name in AP Devices Interfaces This takes you to the Interfaces Monitoring and Configuration window which has a slightly different appearance depending on whether you are configuring a physical...

Страница 153: ...ure 103 Virtual Individual Interfaces Configuration Section To configure interfaces as a group select Edit Interfaces above the Physical or Virtual Interfaces table as shown in Figure 104 Dell PowerConnect W AirWave 7 6 User Guide Discovering Adding and Managing Devices 141 ...

Страница 154: ...ion AirWave assembles the entire running configuration using templates and your modifications to these pages For a more detailed discussion on templates see Creating and Using Templates on page 151 Individual Device Support and Firmware Upgrades Perform the following steps to configure AP communication settings for individual Dell PowerConnect W Series device types 1 Locate the Device Communicatio...

Страница 155: ... Firmware button at the bottom right of the page to upgrade the device s firmware NOTE The Update Firmware button only appears if 1 the AirWave Administrator has enabled Allow firmware upgrades in monitor only mode in AMP Setup General or 2 if you are looking at an APs Devices Manage page for a controller or autonomous AP that supports firmware upgrades in AirWave See the Supported Wireless Firmwa...

Страница 156: ...e device to Pending in APs Devices List You can review the status of all recent firmware upgrade jobs in System Firmware Upgrade Jobs Troubleshooting a Newly Discovered Down Device If the device status on the APs Devices List page remains Down after it has been added to a group the most likely source of the problem is an error in the SNMP community string being used to manage the device Perform th...

Страница 157: ...P address If AirWave detects that the LAN MAC address of a device has changed this error message will appear This usually indicates that a physical hardware change has occurred while reusing the same IP Address without using the Replace Hardware feature in AirWave This error may also indicate an IP address conflict between two or more devices When an unexpected LAN MAC address is seen in a device ...

Страница 158: ...dot11g radio profiles of that AP or AP group or through a special spectrum override profile Each 802 11a and 802 11g radio profile references a spectrum profile which identifies the spectrum band the radio will monitor and analyze and defines the default ageout times for each monitored device type By default an 802 11a radio profile references a spectrum profile named default a which configures th...

Страница 159: ...eated Dell PowerConnect W AP Group Perform these steps to set the AP group to use the default Spectrum profile settings 1 In Groups Dell PowerConnect W Config select Add New Dell PowerConnect W AP Group 2 Give the new Group a name such as Spectrum APs and select the plus sign next to the 802 11a Radio Profile to create a new radio profile 3 Enter a name under the General Settings section of Profil...

Страница 160: ... you want to be analyzed by this radio 5 Select Save and Apply and confirm your edit This overrides the current Mode setting for that AP ap mode or am mode After making this change you can view the Radio Role field that will appear in the Radios section of the APs Devices Monitor page The new role Spectrum Sensor is a link to the Spectrum Analysis page for the controller that manages this AP as il...

Страница 161: ...troller Override 3 In the Profile drop down menu select the Spectrum Profile type 4 In the Profile Instance drop down menu select the instance of the Spectrum profile used by the controller 5 In the Field drop down menu select the setting you would like to change such as an Age Out setting or a Spectrum Band and enter the overriding value below it 6 Select Add to save your changes 7 To create addi...

Страница 162: ...150 Discovering Adding and Managing Devices Dell PowerConnect W AirWave 7 6 User Guide ...

Страница 163: ...Controller HP WESM Templates on page 164 l Configuring a Global Template on page 166 Group Templates Supported Device Templates Templates are helpful configuration tools that allow AirWave to manage virtually all device settings A template uses variables to adjust for minor configuration differences between devices The Groups Templates configuration page allows you to create configuration template...

Страница 164: ...Devices Manage configuration page for the specific AP that is getting configured NOTE Changes made on the other Group pages Radio Security VLANs SSIDs and so forth are not applied to any APs that are configured by templates Viewing and Adding Templates Perform these steps to display add or edit templates 1 Go to the Groups List page and select a group for which to add or edit templates This can be...

Страница 165: ... Restriction Designates that the template only applies to APs running the version of firmware specified If the restriction is None then the template applies to all the devices of the specified type in the group If there are two templates that might apply to a device the template with the most restrictions takes precedence If there is a template that matches a devices firmware it will be used inste...

Страница 166: ...irmware Version field Template firmware version None Designates that the template only applies to APs running the version of firmware specified Fetch Template from Device None Selects an AP from which to fetch a configuration The configuration will be turned into a template with basic AP specific settings like channel and power turned into variables The variables are filled with the data on the AP...

Страница 167: ...able for all Device Types Configuring General Template Files and Variables This section describes the most general aspects of configuring AP device templates and the most common variables l Configuring General Templates on page 155 l Using Template Syntax on page 157 including the following sections n Using AP Specific Variables on page 157 n Using Directives to Eliminate Reporting of Configuratio...

Страница 168: ...option when there are changes requiring reboot to take effect for example removing a new SSID from a Cisco IOS device Copying the configuration from startup configuration file to running configuration file merges the two configurations and can cause undesired configuration lines to remain active on the AP 8 Restrict the template to apply only to the specified version of firmware If the template sh...

Страница 169: ...local ofdm OFDM_POWER channel CHANNEL The hostname line sets the AP hostname to the hostname stored in AirWave The power lines set the power local cck and ofdm values to the numerical values that are stored in AirWave Using Directives to Eliminate Reporting of Configuration Mismatches AirWave is designed to audit AP configurations to ensure that the actual configuration of the access point exactly...

Страница 170: ...xclude Command Instead of using the full tags you may use the parenthesis shorthand substring The push and exclude directive is used to push commands to the AP that will not appear in the running config file For example some no commands that are used to remove SSIDs or remove configuration parameters do not appear in the running config file of a device A command inside the push and exclude directi...

Страница 171: ...e running config file on the AP does not include the command for one of these variables because the value is set to the default For example when the transmission power is set to maximum the default the line power local maximum will not appear in the AP running config file although it will appear in the startup config file AirWave would typically detect and flag this variance between the running co...

Страница 172: ...through ap_ include_10 chassis id serial number of the device chassis_id domain dns domain of the device domain interfaces Interfaces of the device interfaces Configuring Templates for Dell PowerConnect W Instant The first Instant network that is added to AirWave automatically includes the default configuration that is used as a template to provision other Instant networks Refer to the documentati...

Страница 173: ...eed410e720a58eca75717ff714b opmode wpa2 psk aes rf band all captive portal disable dtim period 1 inactivity timeout 1000 broadcast filter none enet vlan guest wlan external captive portal server localhost port 80 url auth text venue ids classification ids wireless containment none Configuring Templates for AirMesh Introduced in 7 5 AirMesh devices can be configured using templates AirWave automati...

Страница 174: ...up config file from AirWave via TFTP or SCP l If the Reboot Devices after Configuration Changes option is selected then AirWave instructs the AP to copy the configuration from AirWave to the startup config file of the AP and reboot the AP l If the Reboot Devices after Configuration Changes option is not selected then AirWave instructs the AP to copy the configuration to the startup config file and...

Страница 175: ...onfiguration file username Cisco privilege 15 password 7 0802455D0A16 aaa authorization exec default local ip scp server enable The username line is a guideline and will vary based on the username being set in this case Cisco and the password and encoding type in this case 0802455D0A16 and 7 respectively These values can be set on a group wide level using Templates and TFTP Once these lines are se...

Страница 176: ...page 155 NOTE Just one template is used for any type of Cisco IOS device and another is used for any type of Catalyst Switch regardless of individual model Configuring Symbol Controller HP WESM Templates This section describes the configuration of templates for Symbol controllers and HP WESM devices Symbol controllers RFS x000 5100 and 2000 can be configured in AirWave using templates AirWave supp...

Страница 177: ...id netsnmp 6b8b45674b30f176 snmp server location location snmp server contact contact snmp server sysname hostname snmp server manager v2 snmp server manager v3 snmp server user snmptrap v3 encrypted auth md5 0x1aa491f4ca7c55df0f57801bece9044c snmp server user snmpmanager v3 encrypted auth md5 0x1aa491f4ca7c55df0f57801bece9044c snmp server user snmpoperator v3 encrypted auth md5 0xb03b1ebfa0e3d02f...

Страница 178: ...basic11 12 18 24 36 48 54 radio radio_index on channel scan radio radio_index adoption pref id 7 radio radio_index enhanced beacon table radio radio_index enhanced probe table endif if radio_type 11bgn radio radio_index speed basic11b2 6 9 12 18 24 36 48 54 mcs 0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 endif radio radio_index channel power indoor channel transmit_power channel_attribute detector adopt...

Страница 179: ...ariables by uploading a CSV file see below 5 Once you have configured your global template select Add You are taken to a confirmation configuration page where you can review your changes 6 If you want to add the global template select Apply Changes Now If you do not want to add the template select Cancel and Discard Changes Canceling from the confirmation configuration page causes the template and...

Страница 180: ...nfiguration page for the local group and select the pencil icon next to the global template in the list Figure 116 illustrates this page Figure 116 Groups Templates Edit Upper Portion 9 To make template changes go to the Groups Template configuration page for the global group and select the pencil icon next to the template you wish to edit Note that you cannot edit the template itself from the sub...

Страница 181: ...WLAN network in the following ways l Over the Air using your existing enterprise APs or the optional AMP Management Client AMC l On the Wire n Polling routers and switches to identify classify and locate unknown APs n Using the controller s wired discovery information n Using HTTP and SNMP scanning NOTE To set up a scan refer to Discovering and Adding Devices on page 101 Furthermore RAPIDS integra...

Страница 182: ...Wave 7 6 User Guide Viewing Overall Network Health on RAPIDS Overview The RAPIDS Overview page displays a page of RAPIDS summary information see Figure 117 Table 91 defines the summary information that appears on the page Figure 117 RAPIDS Overview Page Illustration ...

Страница 183: ...rogues list filtered by that classification OS scans can be run manually or enabled to run automatically on the RAPIDS Setup page Acknowledged RAPIDS Devices A color coded pie chart comparing the number of acknowledged devices to the unacknowledged devices RAPIDS Changes Tracks every change made to RAPIDS including changes to rules manual classification and components on the RAPIDS Setup page A li...

Страница 184: ...into one device when they fall within this bitmask Setting this value too high may result in identifying two different physical devices as the same rogue NOTE When you change this value RAPIDS will not immediately combine or un combine rogue records Changes will occur during subsequent processing of discovery events Delete Rogues not detected for 0 30 days zero disables N A This value cannot be la...

Страница 185: ...gue setting can be configured Similarly if this is enabled then the Contained Rogue option will appear in the classification drop down menu when you add a new classification rule See Viewing and Configuring RAPIDS Rules on page 176 for more information Manage rogue AP containment in monitor only mode No Specify whether rogue AP containment can be performed in monitor only mode Note that containmen...

Страница 186: ...ge 29 l Use the AMP Setup General Performance Tuning page to define the processing priority of RAPIDS in relation to AirWave as a whole See Table 13 in AMP Setup General on page 16 Defining RAPIDS Rules The RAPIDS Rules page is one of the core components of RAPIDS This feature allows you to define rules by which any detected device on the network is classified This section describes how to define ...

Страница 187: ...abase to derive the OUI score The OUI score of each device is viewable from each rogue s detail page Table 97 provides list the OUI scores definitions Score Description Score of 1 Indicates any device on the network this is the lowest threat level on the network Score of 2 Indicates any device in which the OUI belongs to a manufacturer that produces wireless 802 11 equipment Score of 3 Indicates t...

Страница 188: ...PIDS Classification Rule Select this button to create a RAPIDS classification rule Rule Name Displays the name of any rule that has been configured Rule names should be descriptive and should convey the core purpose for which it was created Classification Displays the classification that devices receive if they meeting the rule criteria Threat Level Displays the numeric threat level for the rogue ...

Страница 189: ...her Ad hoc or Infrastructure Signal Strength Rogue matches signal strength parameters Specify a minimum and maximum value in dBm SSID Classifies the rogue when it matches or does not match the specified string for the SSID or a specified regular expression NOTE For SSID matching functions AirWave processes only alpha numeric characters and the asterisk wildcard character AirWave ignores all other ...

Страница 190: ...D then Classify as Rogue The only devices broadcasting your corporate SSID should be devices that you are aware of and are managed by AirWave Rogue devices often broadcast your official SSID in an attempt to get access to your users or to trick your users into providing their authentication credentials Devices with your SSID generally pose a severe threat This rule helps to discover flag and empha...

Страница 191: ...re 121 For additional information about RAPIDS rules refer to Defining RAPIDS Rules on page 174 Column Description Ack Displays whether or not the rogue device has been acknowledged Devices can be acknowledged manually or you can configure RAPIDS so that manually classifying rogues will automatically acknowledges them Additionally devices can be acknowledged by using Modify Devices link at the top...

Страница 192: ...ard implies the device was heard over the air Location If the rogue has been placed in VisualRF this column will display the name of the floor plan the rogue is on as a link to the VisualRF Floor Plan View page SSID Displays the most recent SSID that was heard from the rogue device Signal Displays the strongest signal strength detected for the rogue device RSSI Displays Received Signal Strength In...

Страница 193: ...st Discovering AP Displays the most recent AP to discover the rogue device The device name in this column is taken from the device name in AirWave Click the linked device name to be redirected to the APs Devices Monitor page for that AP Switch Router Displays the switch or router where the device s LAN MAC address was last seen Port Indicates the physical port of the switch or router where the rog...

Страница 194: ...ering options on the RAPIDS Setup page to filter rogue devices according to signal strength ad hoc status and discovered by remote APs l VisualRF uses the heard signal information to calculate the physical location of the device l If the device is seen on the wire RAPIDS reports the switch and port for easy isolation l If you find that the rogue belongs to a neighboring business for example you ca...

Страница 195: ...which the device is located and shut down the port or follow wiring to the device l To manage the rogue remove it from the network and acknowledge the rogue record If you want to allow it on the network classify the device as valid and update with notes that describe it NOTE Not all rogue discovery methods will have all information required for resolution For example the switch router information ...

Страница 196: ...verride Page Fields 3 Enter in the six digit MAC prefix for which to define a score and select the desired score Once the new score has been saved all detected devices with that prefix receive the new score 4 Select Add to create the new override or select Save to retain changes to an existing override The new or revised override appears on the RAPIDS Score Override page 5 To remove any override s...

Страница 197: ...orts The New Rogue Devices Report displays summary and detail information about all rogues first discovered in a given time period For more information see Using the New Rogue Devices Report on page 250 For additional security related features and functions see the following topics in this guide l Configuring Group Security Settings on page 70 l Configuring Cisco WLC Security Parameters and Functi...

Страница 198: ...186 Using RAPIDS and Rogue Classification Dell PowerConnect W AirWave 7 6 User Guide ...

Страница 199: ...tion for system wide AirWave data and settings Apart from Triggers Alerts and Backups pages that are described elsewhere in this chapter the remaining pages of the System section are as follows System Page Description Refer to Status Displays status of all AirWave services and links to their log pages Using the System Status Page on page 188 Syslog Traps Displays all syslog messages and SNMP traps...

Страница 200: ...s a graceful way to power cycle your AirWave remotely when it is needed The Restart AirWave button will restart the AirWave services without power cycling the server or reloading the OS Figure 126 illustrates this page Figure 126 System Status Page Illustration The link diagnostics tar gz contains reports and logs that are helpful to Dell support in troubleshooting and solving problems Your Dell s...

Страница 201: ...mple of Important Status Logs Viewing Device Events in System Syslog Traps Admins can use the System Syslog Traps page to review all syslog messages and SNMP traps that AirWave receives from the trigger type Device Event These device events are listed by time type source device AP severity facility category and message Most columns can be filtered using the funnel icon and messages can be filtered...

Страница 202: ...categorization for traps and syslog messages only works for events from a Dell controller Message The raw trap message including the AP MAC Address time sent and other information For syslogs AirWave does not display the numbers at the beginning of the message that indicate the severity and facility For traps AirWave will attempt to translate them to human readable format when possible AirWave wil...

Страница 203: ... parameters or conditions arise that are outside normal bounds AirWave generates or triggers alerts that enable you to address problems frequently before users have a chance to report them Viewing Triggers To view defined system triggers navigate to the System Triggers page Figure 129 illustrates this page Figure 129 System Triggers Page Illustration partial view Refer to Creating New Triggers on ...

Страница 204: ...Trigger section choose the desired trigger Type and Severity Figure 131 illustrates some of the supported trigger types NOTE The alert summary information at the top of the AirWave screen can be configured to separately display severe alerts Refer to Configuring Your Own User Information with the Home User Info Page on page 222 for more details ...

Страница 205: ...re the Trigger Restrictions and Alert Notifications This configuration is consistent regardless of the trigger type to be defined a The Trigger Restrictions settings establishes how widely or how narrowly the trigger applies Define the folder subfolder and Group covered by this trigger Table 105 describes the options for trigger restrictions Notification Option Description Folder Sets the trigger ...

Страница 206: ...r Interfaces and Radios on page 195 l Setting Triggers for Discovery on page 196 l Setting Triggers for Clients on page 196 l Setting Triggers for RADIUS Authentication Issues on page 197 l Setting Triggers for IDS Events on page 198 l Setting Triggers for AirWave Health on page 198 Setting Triggers for Devices Perform the following steps to configure device related triggers a Choose a device type...

Страница 207: ...t Contents case insensitive substring matches on message content l Event Type syslog or trap l Syslog Severity Emergency Alert Critical Bug Error Warning Notice or Info l Syslog Category l SNMP Trap Category Hardware IDS Client Security AP Security AP Status Software or Rogue Detection l Syslog Category NOTE During the process of upgrading or installation for non Master Console Failover AirWaves A...

Страница 208: ...ation has crossed particular thresholds Available conditions are Interference Radio Type Time Busy Time Receiving and Time Transmitting Radio Noise Floor Indicates that the Noise Floor dBM has exceeded a certain value for aspecified period of time Setting Triggers for Discovery Perform the following steps to configure triggers related to device discovery a Choose a trigger type from the Discovery ...

Страница 209: ...n an individual VPN session has exceeded a predefined threshold for more than a specified period in seconds such as more than 1500 Kbps for more than 120 seconds Once you choose this trigger type select Add New Trigger Condition to specify the bandwidth characteristics that triggers an alert You can apply multiple conditions to this type of trigger The Value field requires that you input a numeric...

Страница 210: ... type is based on the number of IDS events has exceeded the threshold specified as Count in the Condition within the period of time specified in seconds in Duration Alerts can also be generated for traps based on name category or severity Select Add New Trigger Conditionto specify the count characteristics that trigger an IDS alert Rogue Device Classified This trigger type indicates that a device ...

Страница 211: ...enting it from sending email directly to a specified recipient use the following procedures to forward email to a smarthost 1 Add the following line to etc postfix main cf relayhost mail example com where mail example com is the IP address or hostname of your smarthost 2 Run service postfix restart 3 Send a test message to an email address Mail v user example com Subject test mail CC 4 Press Enter...

Страница 212: ...each new alert the System Alerts page displays the items listed in Table 113 Field Description Trigger Type Displays and sorts triggers by the type of trigger Trigger Summary Provides an additional summary information related to the trigger Triggering Agent Lists the name of the AP that generated the trigger Select the name to display its APs Devices Manage page Time Displays the date and time the...

Страница 213: ...sers that are currently connected to the WLAN Refer to Monitoring WLAN Users in the Clients Connected and Clients All Pages on page 202 l Clients All Displays all users of which AirWave is aware with related information Non active users are listed in gray text For a description of the information supported on this page refer to Monitoring WLAN Users in the Clients Connected and Clients All Pages o...

Страница 214: ...s for each Total Devices redirects to the APs Devices List for that folder Mismatched redirects to the list in APs Devices Mismatched for that folder and selecting Clients refreshes the page but expands to include users in the subfolders l Interactive graphs display average and max Clients over time and Usage in and out for the selected folder over time l Below the Clients and Usage graphs is the ...

Страница 215: ...pports 802 11n users Cipher Displays WEP with keys This data is also displayed in the Client Session report in the Session Data By Client section Connection Mode The Radio mode used by the user to associate to the AP for 802 11n clients Device Type The type of device determined by AMP Setup Device Type Setup rules Duration The length of time the MAC address has been associated EAP Supplicant The p...

Страница 216: ...a Dell controller assigned to the connected user such as employee Serial Number Serial number of the device Service End Ending timestamp of the device usage Service Start Beginning timestamp of the device usage Sig Qual The average signal quality the user experienced SSID The SSID with which the user is associated Speed The packet and byte counts of data frames successfully transmitted to and rece...

Страница 217: ...ogue AP Click on this to jump to the RAPIDS Detail page for this AP Device Type The type of device such as iPhone Windows 7 etc SSID The SSID of this client BSSID The BSSID of this client First Heard The date and time when this rogue client was first noticed Last Heard The date and time when this rogue client was last noticed Location If a location is available you can click on this link to open t...

Страница 218: ...AMP Setup Roles page and select the Read Only Monitoring Auditing role type Under Guest User Preferences enable Allow creation of Guest Users 2 Next navigate to the AMP Setup Users page and create a new user with the role that was just created Figure 137 illustrates this page Figure 137 AMP Setup Users Page Illustration 3 The newly created login information should be provided to the person or peop...

Страница 219: ...e SSID that the guest user can access This setting applies to Cisco WLC only Status Reports current status by the controller If error messages appear in this column select the user with the checkbox at left and select the Repair guest user errors button Table 116 Clients Guest Users Fields Guest users associated to the wireless network appear on the same list as other wireless users but are identi...

Страница 220: ...te The anonymous and secure Username and Password appear in the respective fields 6 Select Add to complete the new guest user or select Cancel to back out of new user creation The Clients Guest Users page appears and displays results as applicable Supporting VPN Users with the Clients VPN Sessions Page The Clients VPN Sessions page shows active VPN Sessions along with device type and HTTP fingerpr...

Страница 221: ...escribes fields and information displayed NOTE The Vendor Battery Level and Chirp Interval columns can be filtered using the funnel icon Figure 141 Clients Tags Page Illustration Field Description Name Displays the user editable name associated with the tag MAC Address Displays the MAC address of the AP that reported the tag Vendor Displays the vendor of the tag Aeroscout PanGo and Newbury display...

Страница 222: ...tion from the Client Detail and Diagnostic pages This section describes these two pages l Evaluating User Status with the Clients Client Detail Page on page 210 l Evaluating Client Status with the Clients Diagnostics Page on page 214 Evaluating User Status with the Clients Client Detail Page The Clients Client Detail page is a focused subtab that becomes visible when you select a specific WLAN use...

Страница 223: ...other employee owned mobile devices by enabling device fingerprinting device registration and increased device visibility Use the checkbox next to these fields to enable them in Clients Client Detail l Device Type l OS l OS Detail l Manufacturer To see more options select the Show additional properties link The results are illustrated in Figure 143 Dell PowerConnect W AirWave 7 6 User Guide Perfor...

Страница 224: ...tting prevents valid stations from connecting to a non valid AP l Contained When this status is pushed to the device Dell PowerConnect W Seriescontrollers will attempt to keep it contained from the network You can classify the user regardless of whether WMS Offload is enabled If WMS Offload is enabled the classification will get pushed up to the controller Quick Links for Clients on Dell Devices I...

Страница 225: ...ssociation History Past association details of a client are tracked in the Association History table which is located under the VRF QuickView illustration if available and the Alert Summary in Clients Client Detail The columns in this table shown in Figure 146 are the same as the fields in the Current Association section for this user Figure 146 Association History in Clients Client Detail Viewing...

Страница 226: ...ntrol SOTI MobiControl the mobile device management platform for Windows Mobile Apple and Android devices has been integrated into AirWave to provide direct access to the MobiControl Web Console MobiControl runs on your Mobile Device Manager MDM server This server provisions mobile devices to configure connectivity settings enforce security policies restore lost data and other administrative servi...

Страница 227: ...ls for accessing the web console of the MobiControl system Polling Period The frequency in which AirWave polls the MDM server The default is 5 minutes Table 118 AMP Setup MDM Server Add Fields and Descriptions 2 When finished select Add The list page for the MDM server also displays l Last Contacted The last time AirWave was able to contact the MDM server l Errors Issues if any encountered during ...

Страница 228: ...yed an additional drill down to a folder level is available to view a specific client Note that the Speed and Goodput graphs are only populated with information from Aruba devices that support AMON Refer to Viewing the RF Performance Page on page 218 l The Home Search page provides a simple way to find users managed devices groups and rogues Refer to The Home Search Page on page 220 l The Home Doc...

Страница 229: ...ummary chart To view historical graphs in a new window select the three bar icon on the upper right of the chart Monitoring Status This pie chart shows the percentage of all devices that are up and down on the network To review devices that are down select Down in the legend or the chart and the APs Devices Down page displays Configuration Compliance The pie chart displays all known device configu...

Страница 230: ... you to the System Triggers page See Viewing Triggers on page 191 n Configure Default Credentials This link takes you to the Device Setup Communication page See Configuring Communication Settings for Discovered Devices on page 41 n Discover New Devices on Your Network This link takes you to the Device Setup Discover page See Discovering Adding and Managing Devices on page 101 n Supported Devices a...

Страница 231: ...es you to the Clients Diagnostics page Navigate to the Clients Client Details page for additional detailed information about the selected client Viewing and Updating License Information Navigate to the Home License page using the standard AirWave menu Figure 152 illustrates this page and Table 120 describes the contents Please be aware that you cannot enter multiple licenses To combine multiple li...

Страница 232: ... static IP address assigned to AirWave The IP Address can be configured from the AMP Setup Network page Time Displays the current date and time set on AirWave Uptime Displays the amount of time since the operating system was last booted Version Displays the version number of AirWave code currently running OS Displays the version of Linux installed on the server Table 120 Home License Static Fields...

Страница 233: ...al number device serial number LAN MAC radio MAC and apparent IP address of all the APs as well as the client MAC VPN user Client LAN IP and VPN IP fields Figure 153 illustrates this page Figure 153 Home Search Page Illustration with Sample Hits on 00 Dell PowerConnect W AirWave 7 6 User Guide Performing Daily Administration in AirWave 221 ...

Страница 234: ...l Rogues and Rogue Clients l Tags l Folders and Groups Accessing AirWave Documentation The Home Documentation page provides easy access to all relevant AirWave documentation All of the documents on this page are hosted locally by your AirWave server The PDF files can be viewed by any PDF viewer and the HTML files can be viewed in any supported browser If you have any questions that are not answere...

Страница 235: ...ith WMS Offload on page 174 Customize Header Columns Enables disables the ability to control which statistics hyperlinks also known as Top Header Stats are displayed at the top of every AirWave screen Stats Select the specific data you would like to see in the Top Header Stats Refer to Status Section Note This field only appears if you selected Yes in the previous field Table 121 Home User Info Fi...

Страница 236: ...tly as typed IP username device name etc This search is case sensitive for all searched fields l Active historical clients all categories This looks at all active and historical clients and all categories This search is not case sensitive l Active historical clients all categories exact match This looks at all active and historical clients and all categories This search returns only matches that a...

Страница 237: ...s Now to reschedule the job by selecting Schedule Delete the job or Cancel the job edit 2 Select the linked AP or group name under the Subject column to go to its monitoring page 3 Select the linked group and folder names under Folder or Group to go to the AP s folder or group page 4 Scheduled configuration change jobs will also appear on the Manage page for an AP or the Monitoring page for a grou...

Страница 238: ...mn to go to the System Firmware Upgrade Job Detail page illustrated in Figure 157 From here you can click the device name to go to its APs Devices Monitor page or the link under Firmware File column to go to the Device Setup Upload Firmware Files page Figure 157 System Firmware Upgrade Job Detail Page Illustration Refer also to Loading Device Firmware Onto AirWave optional on page 43 Using the Sys...

Страница 239: ...ernel running on the box Architecture The AirWave s architecture information Device Polling Displays some AP Device polling statistics Performance Graphs System Load Average The number of jobs currently waiting to be processed Load is a rough metric that will tell you how busy a server is A typical AirWave load is around 2 3 times the number of CPU cores you have in your system A constant load of ...

Страница 240: ...nt that was idle I O Throughput by Worker by Service Displays reads and writes for workers AirWave services database VisualRF web server RRD tool and AWRRD tool and for services AirWave VisualRF and web server CPU Utilization by Worker by Service Displays reads and writes for workers AirWave services database VisualRF web server RRD tool and AWRRD tool and for services AirWave VisualRF and web ser...

Страница 241: ...izing information in the latest edition of the Dell PowerConnect W AirWave Server Sizing Guide or contact Dell support at dell com support for the latest recommendations Supporting AirWave Servers with the Master Console The Master Console MC is used to monitor multiple AirWave stations from one central location The Master Console is designed for customers running multiple AirWave servers Once an ...

Страница 242: ...ach managed AirWave This feature is disabled by default for security reasons no AirWave or Master Console login is required to view the public portal The Public Portal can be enabled in AMP Setup General in the Master Console section Once enabled a new Portal tab will appear to the right of the Groups tab refer to the navigation section in Figure 159 in Supporting AirWave Servers with the Master C...

Страница 243: ...ed based on user role 4 Selecting the name of an existing group on the Master Console loads the subtabs for Basic Security SSIDs AAA Servers Templates Radio Cisco WLC Config Proxim Mesh and MAC ACL pages if such pages and configurations are active for the devices in that group These subtabs contain the same fields as the group subtabs on a monitored AMP but each field also has a checkbox The Maste...

Страница 244: ...e for more extensive backup strategies AirWave creates one data backup file each night The data backup file contains all of the device and group information as well as historical data and system files including IP address NTP information mail relay hosts and other AirWave settings Viewing and Downloading Backups To view current AirWave backup files go to the System Backups page Figure 161 illustra...

Страница 245: ...ilover The Navigation section displays tabs to all main GUI pages within AirWave Failover The top bar is a static navigation bar containing tabs for the main components of AirWave while the lower bar is context sensitive and displays the subtabs for the highlighted tab Table 124 describes the contents of this page Main Tab Description Subtabs Home The Home page provides basic AirWave Failover info...

Страница 246: ...restores can be found in Backing Up AirWave on page 232 Setting Default Description IP Hostname None The IP address or Hostname of the watched AMP The Failover AMP needs HTTPS access to the watched AMPs Username None A username with management rights on the watched AMP Password None The password for the username with management rights specified above HTTP Timeout 5 1000 Sec 60 The amount of time b...

Страница 247: ...d network monitoring on multiple levels Among their benefits reports provide an interface for multiple configurations AirWave reports have the following general parameters l AirWave runs daily versions of all reports during predefined windows of time All reports can be scheduled to run in the background l The daily version of any report is available instantly in the Reports Generated page l The In...

Страница 248: ... title and drop down menu shown in Figure 163 displaying all possible report types Report Restrictions Displays dynamic fields that include spaces for selecting attributes and entering data relevant to your selected report type scope such as groups folders SSID Device Search filter report start and end times Scheduling Options Reveals options for one time or regularly scheduled reporting by select...

Страница 249: ...rts that have been run as well as the most recent daily version of any report An Admin user can see and edit all report definitions in AirWave Users with Monitor Only roles can see reports and definitions only if they have access to all devices in the reports The Reports Generated page contains three primary sections as follows l Generated reports configured for the current role and for additional...

Страница 250: ... The Reports Generated page supports the following general viewing options l By default the reports on the Reports Generated page are sorted by Generation Time You can sort reports by any other column header in sequential or reverse sequential order You can also choose columns export the Generated Reports list in CSV and modify the pagination of this list l The Reports Detail page launches when yo...

Страница 251: ...port End Displays the end of the time period covered in the report Role In the Reports definitions for other roles section this column indicates the roles for which additional reports are defined Table 127 Reports Generated Page Fields and Descriptions Using Custom Reports Custom reports allow users to specify the data that should be included in a report Perform these steps to create a Custom Repo...

Страница 252: ...inished select Add and Run to add the report to your list and run it immediately Run Now to run without being added to the list Add to add but not run the report or Cancel to exit this page Using the Dell PowerConnect W License Report The Dell PowerConnect W License Report tracks licenses on Dell devices in your network This report includes information on the type quantity percent used installatio...

Страница 253: ...or in relation to user needs Capacity Combined b s Displays the combined capacity in and out of the device in bits per second Usage While Threshold Combined Displays the time in which a device has functioned above defined threshold capacity both in and out Overall Usage Combined Displays the overall usage of the device both combined in and out traffic Usage While Threshold in Displays device usage...

Страница 254: ...ID List or Chart l Session Data by VLAN List or Chart l Top Clients by Total MB Used l Session Data by AOS Device Type List or Chart l Session Data by Asset Category List or Chart l Session Data by Asset Group List or Chart l Session Data by Device Type List or Chart l Session Data by EAP Supplicant List or Chart l Session Data by Manufacturer List or Chart l Session Data by Model List or Chart l ...

Страница 255: ...le links to additional device configuration or information display pages 3 You can display device specific configuration to reduce report size and to focus on a specific device When viewing configured devices on the Detail page select a device in the Name column The device specific configuration appears 4 You can create or assign a template for a given device from the Detail page Select Add a Temp...

Страница 256: ...ion mismatch information When a device configuration does not match ideal configuration this field displays the ideal device settings compared to current settings Table 129 Daily Configuration Audit Report Using the Device Summary Report The Device Summary Report identifies devices that are the most or least used devices and a comprehensive list of all devices One potential use of this report is t...

Страница 257: ... not provide you with sufficient detail you can specify a Group or Folder in the report Definition of a custom report If you create a separate Group or Folder for each set of master and local controllers you can generate a separate report for each Group or Folder With this method the summary sections of each report contain only devices from that Group or Folder Figure 171 and Table 130 illustrate ...

Страница 258: ... device groups or other groupings within a network can be identified as needing attention or can be proven to have superior performance when using this report The Device Uptime Report contains columns that track bootstrap count number of times the device has gone down for a firmware change reboot count downtime duration and downtime duration percent As mentioned above you can optionally ignore dev...

Страница 259: ...or IDS Events on page 198 for additional information Selecting the AP device or controller name takes you to the APs Devices List page Figure 173 and Table 132 illustrate and describe the Reports Generated IDS Events Detail page Figure 173 Reports Generated IDS Events Report Illustration Field Description Attack Displays the name or label for the IDS event Controllers This column lists the control...

Страница 260: ...ndor Summary Lists the vendors for all devices or firmware on the network l Firmware Version Summary Lists the firmware version for all firmware used on the network l Model Summary Lists the model numbers for all devices or firmware on the network See Figure 174 for an illustration of a sample report Figure 174 Reports Generated Inventory Report Illustration Edited View Using the Memory and CPU Ut...

Страница 261: ...formation in two categories l Usage maximum and average bandwidth l Clients average bandwidth in and out This information can be broken down by Groups and Folders It can also be summarized by Usage Client Count and by both for folders Figure 176 illustrates the Reports Detail page for the Network Usage Figure 176 Reports Generated Network Usage Report Illustration Dell PowerConnect W AirWave 7 6 U...

Страница 262: ...DS and Rogue Classification on page 169 l Top rogue devices by number of discovering APs l Top rogue devices by signal strength l Graphical summary of rogue devices by LAN MAC address vendor l Graphical summary of rogue devices by radio MAC address vendor l Text based table summary of rogue device counts l Detailed and text based table of rogue devices discovered only wirelessly with extensive dev...

Страница 263: ... Ack Displays whether the device has been acknowledged with the network First Discovered Displays the date and time that the rogue device was first discovered on the network First Discovery Method Displays the method by which the rogue device was discovered First Discovery Agent Displays the network device that first discovered the rogue device Last Discovering AP Displays the network device that ...

Страница 264: ...at detected the rogue device Total Diszcovery Events Displays the total number of instances in which the rogue device was discovered Using the PCI Compliance Report AirWave supports PCI requirements in accordance with the Payment Card Industry PCI Data Security Standard DSS The PCI Compliance Report displays current PCI configurations and status as enabled on the network Verify that AirWave is ena...

Страница 265: ... switches and ports in your network by folder l List of unused ports l List of access and distribution ports l Histogram displaying unused ports vs unused switches by type access or distribution l List of most used switches l List of most used ports A sample of the types of information used to generate in a Port Usage Report appears in Figure 180 Dell PowerConnect W AirWave 7 6 User Guide Creating...

Страница 266: ...Generated Port Usage Report Detail Page partial view Using the RADIUS Authentication Issues Report The RADIUS Authentication Issues Report contains issues that may appear with controllers RADIUS servers and users Figure 181 illustrates the fields and information in the RADIUS Authentication Issues Report ...

Страница 267: ...evice will make it into the list if it violates two or more thresholds For more on the thresholds that indicate problems refer to Evaluating Radio Statistics for an AP on page 120 Other lists grouped by radio frequency include Most Noise Most Interfering Most Least Utilized by Channel Usage Most MAC Phy Errors Most Channel Changes Most Transmit Power Changes Clients with Least Goodput Clients with...

Страница 268: ...the list where it would otherwise l Note that sometimes the sorted column is not one of those common ones such as the Interfering Devices section AirWave limits data storage to 183 days approximately six months per radio If you create an RF Health Report with a date range longer than 183 days it will only include Channel Changes Transmit Power Changes Average Utilization Mac Phy Errors and Average...

Страница 269: ...to show devices or clients users including those that match a certain search criteria You can also specify device types to include in the report Finally you can specify to include summary or detailed information about VPN sessions and users In list and chart form this report tracks and display session information that can include any or all of the following l Session Data by AOS Device Type List o...

Страница 270: ...is and on the Reports Generated page once defined 1 To create or edit a report browse to the Reports Definition page and select the Add button or select the pencil icon to edit an existing report definition Figure 186 illustrates one view of the Reports Definition page Figure 186 Defining a Report with Reports Definitions Add Button 2 Complete the fields described in Table 134 and any additional R...

Страница 271: ...e report provides a snapshot of current status rather than information covering a period of time Times can be entered in relative or absolute form A start date of 6 months 3 weeks 5 days 9 hours ago and an end time of 4 months 2 weeks 1 day ago is valid as is a start date of 5 5 2008 13 00 and an end date of 6 6 2008 9 00 Absolute times must be entered in a 24 hour format Other reports like the In...

Страница 272: ...data will be included Deselect the checkbox to hide specific information The list can also be reordered by dragging and dropping the separate lines The order displayed here will match the column order in the report 3 Do one of the following l Select Add and Run to generate the report immediately in addition to saving report settings l Select Run Now to generate the report immediately without creat...

Страница 273: ...sing the Device Uptime Report on page 246 Yes Yes Summarizes device uptime within defined groups or folders Using the IDS Events Report on page 247 Yes Yes Summarizes IDS events can be limited to a summary of a certain number of events Using the Inventory Report on page 248 No Yes Provides an audit of vendors models and firmware versions of devices in AirWave Using the Memory and CPU Utilization R...

Страница 274: ...es Identifies discrepancies between access point containment status specified in AirWave compared to containment status identified by the controller at report run time Using the VPN Session Report on page 257 Yes Yes Summarizes connected VPN sessions over a specified period of time This report can be based on clients users or devices and can be filtered by folder and device type It can also includ...

Страница 275: ...name of your smarthost 2 Run service postfix restart 3 Send a test message to an email address Mail v xxx xxx com Subject test mail CC 4 Press Enter 5 Check the mail log to ensure mail was sent by running this command tail f var log maillog Exporting Reports to XML CSV or PDF AirWave allows you to export individual reports in XML xhtml CSV or PDF You can also export all reports at once and a zip f...

Страница 276: ...264 Creating Running and Emailing Reports Dell PowerConnect W AirWave 7 6 User Guide ...

Страница 277: ...RF Plan on page 310 The VisualRF module provides a real time picture of the actual radio environment of your wireless network and the ability to plan the wireless coverage of new sites To understand what is happening on your wireless network you need to know where your users and devices are located and you need to monitor the RF environment in those areas VisualRF puts this information at your fin...

Страница 278: ...th loss and device locations based on real time data from your wireless LAN for increased location accuracy l Calibrates RF data from multiple vendors APs and across different product lines from the same vendor for accurate display even in multi vendor and multi architecture environments Refer to the Supported Infrastructure Devices document for a list of vendors and supported devices l Full plann...

Страница 279: ... on in VisualRF Setup Both of these pages are visible to logged in administrators only By default l Display VisualRF is enabled in AMP Setup General l Enable VisualRF Engine is disabled in VisualRF Setup To enable VisualRF follow these instructions while logged in as an administrator 1 Navigate to VisualRF Setup 2 In the Server Settings section select Yes in the Enable VisualRF Engine field and th...

Страница 280: ...Bm energy level for all areas of a floor plan When this option is selected the Signal Cutoff drop down menu displays From this drop down you can select a common cutoff value or you can specify a custom value l Speed Evaluate coverage based on transmit power of client by providing the highest data rate a user will receive for all areas of a floor plan When this option is selected the Client Transmi...

Страница 281: ... the floor plan are indicated by the icon l Sensors Toggle sensors on or off Sensors on the floor plan are indicated by the icon l Interferers Toggle interferers on or off Interferers on the floor plan are indicated by the icon NOTE Interferer indicators works for AOS customers running 6 1 or newer that have run the mgmt server type AirWave command and have APs performing Spectrum analysis through...

Страница 282: ...s who leverage external APIs this option enables you to retrieve device location using longitude and latitude coordinates for two GPS points rather than x y coordinates relative to the floor plan image NOTE This option can be ignored for customers who do not leverage the external APIs Set Origin Set a single origination point per floor The origination point is used for multi floor buildings so tha...

Страница 283: ... Screen Navigation Options Mesh View Navigation Mesh view provides a visual Mesh monitoring page specially for viewing DellAirMesh devices It automatically renders Mesh APs based on GPS coordinates Figure 197 displays an example of a Mesh Network view with a mouseover above a network icon Figure 197 Viewing Mesh Networks in VisualRF You can mouse over each mesh network icon to view the number of A...

Страница 284: ...ties for a Mesh Gateway Illustration For radio level status information on an AirMesh device in your network select the menus in the AP s popup window for each radio 11na Radio Access 11na Radio Mesh and so forth Using the Settings in the VisualRF Setup Page The VisualRF Setup page illustrated in Figure 200 configures advanced settings for VisualRF Please reconfigure these settings very carefully ...

Страница 285: ...lly recalculate the path loss of each radio to every grid cell on the floor plan increasing coverage and location accuracy Use Metric Units No Instructs the VisualRF engine to display all units of measurements in metric Memory Allocation 512 MB The amount of memory dedicate to VisualRF It is not dynamically allocated and all the memory is consumed upon starting the service Be sure to check the mem...

Страница 286: ...ttings To tune location accuracy go to the Location Settings section on this page as described in Location Settings Section in VisualRF Setup on page 274 Setting Default Description Allowed deviation for client placement 4 dB When VisualRF locates a client or rogue it utilizes signal metrics from all the APs that hear the client or rogue device VisualRF builds a fingerprint location for all client...

Страница 287: ...question above then recalculate the client device s location based on the samples received l If not No to the question above then wait until the number of sample setting is met before recalculating If the number of samples is never met wait until the maximum timer default is 360 seconds and then recalculate Laptop Number of Samples 3 See definition above Phone Min Max sec 60 240 This timer determi...

Страница 288: ...er of samples is never met wait until the maximum timer default is 480 seconds and then recalculate Printer Number of Samples 3 See definition above Rogue Min Max sec 500 2000 This timer determines how often to calculate the location of rogues Taken with the data samples the calculation acts as follows l After the minimum timer default is 500 seconds check to see if the number of data samples rece...

Страница 289: ...fy a new wall attenuation Figure 201 Add a New Wall Attenuation Update the fields as described in Table 142 Click the Add button on the form when you are finished Setting Description Material Specify the type of material for the new wall Attenuation 0 100 dB Specify the attenuation decibel value Color Select a color for the new wall Table 142 New Wall Attenuation in VisualRF Setup VisualRF Resourc...

Страница 290: ...rop down menu as shown in Figure 202 Figure 202 QuickView Preferences Page Illustration General preferences selected n Enable auto refresh toggle If enabled specify the Refresh Interval in n Show Scale n Hide neighbor lines ignored in location calculation n High Quality Background Image you can disable to increase rendering speed n Label Transparency specify the transparancy level for labels in th...

Страница 291: ...cation within a floor plan n Radio Status specify whether to display red or green depending on the status of the radios within the AP n AP Status specify whether to display red or green in relation to up down status of AP n Icon Size select the size of the AP icon display on the floor plan n Show Channel in Label view the channel info within the AP label n Show Transmit Power in Label view transmi...

Страница 292: ...eed Sensor Voice and Ch Utilization Figure 205 QuickView Preferences Page Illustration Overlays preferences selected n Grid non vector overlay n Vector provides a smoother overlay with mouse over capabilities l Grid Lines Toggle grid lines on or off Figure 206 QuickView Preferences Page Illustration Grid Lines preferences selected n Show Grid Lines if enabled specify the number of feet between gri...

Страница 293: ...Service will use all RF information available to increase location accuracy of clients tags and rogue devices Understanding your infrastructure s inherent capabilities helps you learn the extra effort required to ensure location accuracy There are three key elements read from controllers or access points that increase location accuracy l Signal strength of a client as heard by the AP of associatio...

Страница 294: ...devices reduces the CPU load on your server because VisualRF does not evaluate any signal metrics for this MAC address when associated with an AP on the floor plan See Location Training for Stationary Devices on page 283 l Remote Client Surveys provides additional attenuation inputs for corners and low coverage areas without the burden of actually carrying a laptop to the physical location See Add...

Страница 295: ...r NOTE Drawing only outside walls is recommended If you are seeing inaccurate client locations or heat maps after entering exterior walls proceed to Client Surveys If you still experience problems then you can proceed to adding interior walls Location Training for Stationary Devices QuickView provides the ability to statically assign a permanent x y coordinate to stationary devices like PCs Scales...

Страница 296: ... of AirWave s client surveys are 1 They take readings from the access points and not the client 2 They take numerous samples This produces a more accurate representation because signals obtained from the client s card the signal level at which a client hears the AP can vary from vendor to vendor The signal levels at which APs can hear a client are already normalized Using multiple samples alleviat...

Страница 297: ... mW iPhone 20 mW Desktop 100 mW Cisco Cards 100 mW Table 144 Auto assigned Client Type and Transmit Power Adding Regions You can specify regions for areas designated as Wiring Closets and for Location Testing Location Probability and Planning Adding Location Probability Regions Location probability regions are optional regions that can be used to increase the accuracy of device location in VisualR...

Страница 298: ...inside of the selected region No device will ever be placed outside of the probability region when 100 attenuation is selected 100 attenuation is only recommended for tall buildings where it is extremely unlikely that any user is located outside of the building No heat map or attenuation grid is calculated for devices outside of the 100 attenuation region Adding a Wiring Closet To add a Wiring Clo...

Страница 299: ... 3 To add a wired device that is currently being monitored by AirWave select Add Deployed Device 4 Locate the device to be added 5 Drag the device to the appropriate location in the rack as shown in Figure 214 Figure 214 Provisioning Devices Wired devices that are added to a wired closet are included in any BOM report covering that floor Viewing Port Status on Deployed Switches Deployed switches o...

Страница 300: ...g Infrastructure Ensure that the hardware is configured to retrieve the RF information and that it provides this information on a timely basis There are three unique timing mechanisms which impact location accuracy how often the infrastructure collects and correlates RF statistics in their MIB how often the AirWave queries those MIB entries and how often VisualRF service queries AirWave for this R...

Страница 301: ...oints for capacity Follow these guidelines for best results l Ensure that at least 3 radios can hear each client devices at 85 dBm or below l Ensure that you deploy an access point approximately every 3 500 square feet l For square or rectangular floor plans ensure access points are deployed on the exterior walls of each floor with access points in the middle as well Refer to Figure 219 for an exa...

Страница 302: ...on page 293 l Viewing Campuses Buildings or Floors from a Tree View on page 294 Viewing a Wireless User s RF Environment 1 Navigate to Users List in AirWave 2 Click the link under the Location column for the user of interest as shown in Figure 220 A QuickView window of that location opens and indicates the client with a Username label as shown in Figure 221 Figure 220 Link to user s thumbnail the ...

Страница 303: ...ayed l Lines client to AP of association l Labels all labels are disabled Tracking Location History Select a client icon in the floor plan and select Display from the pop up menu shown in Figure 223 Figure 223 Show Location History A location history player illustrated in Figure 224 appears at the bottom of the QuickView window Figure 224 Location History Player Checking Signal Strength to Client ...

Страница 304: ...ickView display opens below the thumbnail on the same page not in a new window as shown in Figure 227 Figure 227 Full QuickView in APs Devices Monitor page for an AP partial view This view is focused on enabling quick resolution of AP issues and therefore disables many RF objects by default as follows n Clients only clients associated with radios within access point of focus are displayed n APs on...

Страница 305: ...th access points on the floor NOTE Locating users consumes significant VisualRF resources A floor with hundreds or thousands of clients can take a long time to process of Rogues The number of rogue devices heard by access points on the floor This number reflects the filters configured on the VisualRF Setup This means that while APs on the floor might hear more rogue devices they are being filtered...

Страница 306: ...ampus Building or Floor Select the folder or floor plan icon to open the view you have selected The Network Tree View window will remain on the screen until you close it NOTE If you prefer not to use background maps for your campus or building placements click a background and select Auto Arrange to move the campuses buildings from their placements into an alphabetically sorted list Planning and P...

Страница 307: ...sed in auto placement of access points onto floors within this campus The range is 6 to 200 mbps NOTE Buildings and floors inherit transmit power and speed from the campus Figure 230 Create New Campus window 4 Select OK to save You will see a new Campus icon appear on the campus canvas 5 Add appropriate network geographical background or upload a personalized image by right clicking on the backgro...

Страница 308: ...tenuation between floors Enter the attenuation loss in decibels between floors This value can be overridden as each floor is created but this is the default value for every new floor added to the system This data element can be imported or exported to external planning tools like Ekahau It is not currently utilized by AirWave Client Transmit Power This value is used when auto provisioning access p...

Страница 309: ...n Importing a Floor Plan The following steps show how to import a floor plan background image file NOTE When importing RF plans be sure that the devices to be included are also available in the device catalog 1 In VisualRF Floor Plans click the Add Floorplan icon displays when viewing a Building or use the Add button above the floor plan list at the bottom of the page 2 Select Choose File to locat...

Страница 310: ... Floor Plan Image on page 298 l Sizing a Non CAD Floor Plan on page 299 l Removing Color from a Floor Plan Image on page 299 l Assigning Campus Building and Floor Numbers on page 299 l Assigning Optional Planner Owner or Installer Information for the Floor Plan on page 300 l Controlling the Layers in the Uploaded Floor Plan CAD only on page 300 l Error Checking of CAD Images on page 300 l Last Ste...

Страница 311: ...or plans can result in blank QuickView thumbnails Sizing a Non CAD Floor Plan You should not have to resize a CAD drawing unless you see nonsensical dimensions To resize a non CAD image if you already know the dimensions follow these steps 1 Select the Manually Measure Floor button in the Dimensions section The pointer changes to a cross hair icon 2 Locate two points within the floor plan that you...

Страница 312: ...ng Floor Info for the Uploaded Floor Plan Image Assigning Optional Planner Owner or Installer Information for the Floor Plan Locate the Optional Information section and enter the following information in Table 148 Setting Default Description Owner N A The owner of the floor used in diagnostics and alerts Planner N A The person in charge of planning the RF layout for the floor Installer N A The per...

Страница 313: ...in the Edit menu A pop up window list of devices in your AirWave appears as shown on Figure 236 4 Select whether to navigate by Group or by Folder in the View By field NOTE Wired only access device such as RAP 5 do not have any radios and therefore should not be included on a floor plan 5 Select whether to navigate by Group or by Folder in the View By field NOTE Alternatively you can use the Searc...

Страница 314: ...oor is submitted to one of the core threads to recalculate path loss and then to one of the location caching threads to recalculate client locations All changes may not be visible on a refresh until this process complete Automatically Provisioning APs onto a Floor Plan To automatically provision your access points onto your floor plan 1 Select Draw Region from the Edit menu A new provisioning popu...

Страница 315: ...area n Complete the polygon by double clicking 3 Once you have finished drawing the region enter a name for the region and select a Region Type of Planning Then select OK The following image displays Figure 238 Autoprovisioning APs 4 Enter the following information into the Autoprovision APs window as described in Table 149 Dell PowerConnect W AirWave 7 6 User Guide Using VisualRF 303 ...

Страница 316: ...anning region Client Info Section Enable Whether to enable planning by user capacity Total clients in region Set the anticipated number of clients that will be stationed in a region Max clients per radio The maximum number of clients supported by each radio Plan Sensors Section Enable Whether to enable to plan sensors into the region AP to Sensor Ratio Specify the number of sensors per AP to use w...

Страница 317: ...ually refresh page and your is redirected to the VisualRF Floor Plan page The Building view will reflect the new floors NOTE You should see all replicate floors with matching number of access points Auto Matching Planned Devices You can right click a campus building or network icon and select the Auto Match Planned Devices option to efficiently match planned APs to managed APs If you select this o...

Страница 318: ... from your CAD file if you follow this procedure 1 Determine UNITS all modern CAD versions 2001 and newer support UNITS 2 Determine MEASURE Legacy CAD versions 2000 and older used a Imperial or Metric system n If UNITS are 0 or undefined then the standard dictates defaulting to MEASURE value n If MEASURE is 0 or undefined then the standard dictates defaulting to English and inches 3 Find MODEL VIE...

Страница 319: ...AD XML files which contain drawing filename dimensions and optional information like device manufacture and model device coordinates wall coordinates and building material This step is usually performed by your facilities or CAD department The output of AutoCAD will not be properly formed XML so you may need to massage the output data 2 Copy all CAD drawings and corresponding XML files into a sing...

Страница 320: ...ber 44 building name Library campus name University image filename blueprint2 dwg access points access point name ART 2 12 x 196 31 y 92 19 access point name ART 2 11 x 204 82 y 55 78 access point name ART 2 10 x 133 08 y 55 81 access point name ART 2 9 x 73 79 y 55 78 access point name ART 2 8 x 73 72 y 104 26 access point name ART 2 7 x 73 91 y 134 88 access point name ART 2 6 x 73 83 y 162 72 a...

Страница 321: ... VisualRF Location APIs VisualRF provides the following location APIs Site Inventory https amp_host visualrf site xml site_id l You can find the site_id from the Floor Plan List query defined on the XML API page l This interface provides floor details including access points walls regions surveys etc l The corresponding example XML and schema are attached in visualrf_site_inventory Device Location...

Страница 322: ...andwidth total clients 0 total clients status down status uptime 0 0 uptime radio index 1 phy g mac 00 20 A6 5A 63 66 beamwidth 0 0 gain 1 5 antenna orientation 0 0 mount Ceiling valid false discovering radio id 11276 index 1 dBm 85 discovering radio id 11828 index 1 dBm 93 radio ap site amp amp_site_inventory About VisualRF Plan Overview VisualRF Plan is a standalone Windows client that can be us...

Страница 323: ... installation screen Differences between VisualRF and VisualRF Plan Feature VisualRF VisualRF Plan Hardware sizing X Installation required X How to plan a site X X Navigation X X Track users X Track interferers X VisualRF APIs X Location accuracy X QuickView preferences X Resource utilization X Add external walls X X Client surveys X Wiring Closet X X View deployed switches X View signal strength ...

Страница 324: ...312 Using VisualRF Dell PowerConnect W AirWave 7 6 User Guide ...

Страница 325: ... Settings VisualRF Setup 276 audit Configuring Iintervals 17 device configuration 129 PCI Compliance 54 Audit Read Only 31 authentication priority 35 Auto Detect Upstream Device setting 135 Automatic Authorization 17 68 104 available widgets 11 B Backups 232 Restoring from a Backup 232 Running on Demand 232 Using Failover 233 C CDP polling interval for device discovery 106 Channel Busy Threshold 1...

Страница 326: ...al logging 20 F Failover 3 230 233 firmware MD5 Checksum 43 314 Index Dell PowerConnect W AirWave 7 6 User Guide specifying minimum versions for APs 91 uploading 43 45 firmware upgrade jobs viewing 225 firmware upgrades in monitor only mode 23 Folders 130 FTP Server enabling 23 fully qualified domain names 19 G Global Dell PowerConnect W Configuration 147 Global Groups with Master Console 231 Glob...

Страница 327: ... Device Link Polling 64 Gateway 116 in VisualRF 271 Mode 116 Monitoring 125 Proxim 89 Dell PowerConnect W AirWave 7 6 User Guide Index 315 message of the day 34 Modify Devices link 129 Monitor Read Only 31 monitoring mesh devices 125 wired devices 126 wireless devices 115 N navigation understanding the UI 5 Network integration with AMP 3 network settings defining 25 Nightly Maintenance Time settin...

Страница 328: ...ing from Backup 232 RF Health Report 255 RFprotect license 146 Rogue AP Discovery Events 21 316 Index Dell PowerConnect W AirWave 7 6 User Guide Rogue Association History table 213 rogue classification 169 Rogue Client Associations table 182 rogue clients 182 198 256 rogue scanning enabling in Groups Radio 80 288 Roles 4 routers and switches 126 Adding with a CSV File 110 RTLS Collector 23 Run a c...

Страница 329: ...ide Index 317 User Idle Timeout 34 user interface AMP Setup Device Type Setup 46 AMP Setup General 16 147 AMP Setup Network 25 AMP Setup NMS 53 54 AMP Setup Roles 27 29 AMP Setup Users 27 28 APs Devices Audit 106 116 130 132 156 APs Devices Ignored 112 APs Devices Interfaces 127 128 139 APs Devices List 113 APs Devices New 105 106 112 Clients Clients Detail 215 Clients Connected 202 Clients Diagno...

Страница 330: ... Planned Devices 305 Autoprovisioning 302 Checking Signal Strength 291 Client Transmit Power 268 Cllient Surveys 284 318 Index Dell PowerConnect W AirWave 7 6 User Guide Data Set menu 268 Device Types 269 Display Menu 269 Edit Menu 270 Editing a Ffloor Plan Image 298 Enabling 20 267 Floors 269 Frequencies 269 Icons 267 importing a floor plan 297 Importing and Exporting 306 Increasing Location Accu...

Страница 331: ...esource Utilization 277 Server Settings 273 VLANs 74 Voice overlay 268 W Watched AMPs 233 WDS Role 137 Web Auth bundles 40 46 widgets adding 11 available 11 Wired Devices Monitoring 126 Wired Interfaces table 118 Dell PowerConnect W AirWave 7 6 User Guide Index 319 ...

Страница 332: ...320 Index Dell PowerConnect W AirWave 7 6 User Guide ...

Отзывы:

Нет отзывов

Похожие инструкции для PowerConnect W-AirWave 7.6

D-Link DP 301U Quick Installaion Manual preview
DP 301U
Бренд: D-Link Страницы: 12
Yeong Yang Cube YY-0430 Technical Instruction preview
Cube YY-0430
Бренд: Yeong Yang Страницы: 7
Devolinx STE-601C User Manual preview
STE-601C
Бренд: Devolinx Страницы: 51
NEC N8100-1056F User Manual preview
N8100-1056F
Бренд: NEC Страницы: 408
Supermicro SUPERSERVER 5018A-MHN4 User Manual preview
SUPERSERVER 5018A-MHN4
Бренд: Supermicro Страницы: 116
Supermicro SUPERSERVER 1028UX-CR-LL1 User Manual preview
SUPERSERVER 1028UX-CR-LL1
Бренд: Supermicro Страницы: 128
Lenovo and 1040 Hardware Maintenance Manual preview
and 1040
Бренд: Lenovo Страницы: 186
Lenovo 42U 1200 mm Deep Dynamic Rack Installation Manual preview
42U 1200 mm Deep Dynamic Rack
Бренд: Lenovo Страницы: 42
Lenovo 104614U User Manual preview
104614U
Бренд: Lenovo Страницы: 32
Lenovo 30131AU - IdeaCentre D400 - 3013 User Manual preview
30131AU - IdeaCentre D400 - 3013
Бренд: Lenovo Страницы: 65
Lenovo Storage N4610 User Manual And Hardware Maintenance Manual preview
Storage N4610
Бренд: Lenovo Страницы: 176
Lenovo 5468 Setup Manual preview
5468
Бренд: Lenovo Страницы: 90
Lenovo 1909 Installation And User Manual preview
1909
Бренд: Lenovo Страницы: 141
Lenovo 098118U Installation And User Manual preview
098118U
Бренд: Lenovo Страницы: 96
Lenovo 102912U Installation And User Manual preview
102912U
Бренд: Lenovo Страницы: 154
Lenovo 098118U Brochure & Specs preview
098118U
Бренд: Lenovo Страницы: 4
SEH PS107 Quick Installation Manual preview
PS107
Бренд: SEH Страницы: 32
IBM xSeries 206 User Manual preview
xSeries 206
Бренд: IBM Страницы: 58

Бренды по названию

Популярные бренды

Загрузить еще бренды