首页 > 代码库 > cisco wlc 4402结合windows 2003 acs4.2的用户认证和web页面认证的配置
cisco wlc 4402结合windows 2003 acs4.2的用户认证和web页面认证的配置
1、 网络拓扑图:
2、 实验准备:
瘦AP1个:版本:flash:/c1240-k9w8-mx.124-23c.JA6/c1240-k9w8-mx.124-23c.JA6;如不满足要求,可将同型号的胖AP主动升级为瘦AP;
Catalyst 3750:1台:版本:(C3750-IPSERVICESK9-M),Version 12.2(55)SE7
WLC 44021台:版本:7.0.235.0
ACS4.2:运行于windows server2003系统;
Dhcp运行于windows servcer2003系统;
3、 实验过程:
(1)交换机配置:
version 12.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Switch
!
boot-start-marker
boot-end-marker
!
no aaa new-model
switch 1 provision ws-c3750-24p
system mtu routing 1500
ip routing //开启路由模式
!
ip dhcp pool 1 //配置给AP分配地址的DHCP地址池
network 192.168.10.0 255.255.255.0 //AP获得的网段
default-router 192.168.10.1 //AP获得的网关
option 43 hex f108.c0a8.1e03 //AP指向的WLC-AP管理地址
!
spanning-tree mode pvst
spanning-tree extend system-id
!
interface FastEthernet1/0/1
switchport access vlan 10 //该接口接AP,将AP划入VLAN 10
switchport mode access
!
interface FastEthernet1/0/2
switchport access vlan 30 //该接口接服务器,将其划入VLAN30
switchport mode access
!
…
!
interface GigabitEthernet1/0/1
!
interface GigabitEthernet1/0/2
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 10,20,30
switchport mode trunk
//该接口接WLC, 由于其需要传递多VLAN 数据,所以需要将其配置为TRUNK
interface Vlan1
noip address
shutdown
!
interface Vlan10 //配置AP网关
ipaddress 192.168.10.1 255.255.255.0
!
interface Vlan20 //配置用户访问网关
ipaddress 192.168.20.1 255.255.255.0
!
interface Vlan30 //配置WLC和服务器网关
ipaddress 192.168.30.1 255.255.255.0
!
ip classless
ip http server
ip http secure-server
!
line con 0
line vty 0 4
login
line vty 5 15
login
后续的WLC和ACS4.2的配置由于图片上传原因请看附件。
本文出自 “我的技术博客” 博客,谢绝转载!
cisco wlc 4402结合windows 2003 acs4.2的用户认证和web页面认证的配置