Cisco AP base configure-gino
此设置使用数字证书认证,一个SSID,无子接口。aaa new-model
!
!
aaa group server radius rad_eap
server 10.x.x.x auth-port 1645 acct-port 1646
!
aaa group server radius rad_mac
!
aaa group server radius rad_acct
!
aaa group server radius rad_admin
!
aaa group server tacacs+ tac_admin
!
aaa group server radius rad_pmip
!
aaa group server radius dummy
!
aaa authentication login eap_methods group rad_eap
aaa authentication login mac_methods local
aaa authorization exec default local
aaa accounting network acct_methods start-stop group rad_acct
!
aaa session-id common
!
!
dot11 syslog
!
dot11 ssid XXXX
authentication open eap eap_methods
authentication key-management wpa
guest-mode
!
!
!
bridge irb
!
!
interface Dot11Radio0
no ip address
no ip route-cache
!
encryption mode ciphers tkip
!
ssid XXXX
!
speedbasic-1.0 basic-2.0 basic-5.5 basic-11.0 basic-6.0 basic-9.0 basic-12.0 basic-18.0 basic-24.0 basic-36.0 basic-48.0 basic-54.0
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
!
interface FastEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
!
interface BVI1
ip address 10.x.x.x 255.255.255.0
no ip route-cache
!
ip default-gateway 10.x.x.1
ip http server
no ip http secure-server
snmp-server community efeihu RO
radius-server host 10.x.x.x.x auth-port 1645 acct-port 1646 key xxxxxx
bridge 1 route ip
!
!
!
line con 0
line vty 0 4
!
end
页:
[1]