首页 > 代码库 > cisco wlc 4402结合windows 2003 acs4.2的用户认证和web页面认证的配置

cisco wlc 4402结合windows 2003 acs4.2的用户认证和web页面认证的配置

1、  网络拓扑图

技术分享

2、  实验准备

AP1个:版本:flash:/c1240-k9w8-mx.124-23c.JA6/c1240-k9w8-mx.124-23c.JA6;如不满足要求,可将同型号的胖AP主动升级为瘦AP

Catalyst 37501台:版本:(C3750-IPSERVICESK9-M),Version 12.2(55)SE7

WLC 44021台:版本:7.0.235.0

ACS4.2:运行于windows server2003系统;

Dhcp运行于windows servcer2003系统;

3、  实验过程

1)交换机配置:

version 12.2

no service pad

service timestamps debug datetime msec

service timestamps log datetime msec

no service password-encryption

!

hostname Switch

!

boot-start-marker

boot-end-marker

!

no aaa new-model

switch 1 provision ws-c3750-24p

system mtu routing 1500

ip routing               //开启路由模式

!

ip dhcp pool 1         //配置给AP分配地址的DHCP地址池

  network 192.168.10.0 255.255.255.0      //AP获得的网段

  default-router 192.168.10.1              //AP获得的网关

  option 43 hex f108.c0a8.1e03          //AP指向的WLC-AP管理地址

!

spanning-tree mode pvst

spanning-tree extend system-id

!

interface FastEthernet1/0/1

 switchport access vlan 10                 //该接口接AP,将AP划入VLAN 10

 switchport mode access

!

interface FastEthernet1/0/2      

 switchport access vlan 30                //该接口接服务器,将其划入VLAN30

 switchport mode access

!

!

interface GigabitEthernet1/0/1

!

interface GigabitEthernet1/0/2             

switchport trunk encapsulation dot1q

 switchport trunk allowed vlan 10,20,30

 switchport mode trunk

  //该接口接WLC 由于其需要传递多VLAN 数据,所以需要将其配置为TRUNK

 

interface Vlan1

 noip address

 shutdown

!

interface Vlan10             //配置AP网关

 ipaddress 192.168.10.1 255.255.255.0

!

interface Vlan20              //配置用户访问网关

 ipaddress 192.168.20.1 255.255.255.0

!

interface Vlan30             //配置WLC和服务器网关

 ipaddress 192.168.30.1 255.255.255.0

!

ip classless

ip http server

ip http secure-server

!

line con 0

line vty 0 4

 login

line vty 5 15

 login

后续的WLC和ACS4.2的配置由于图片上传原因请看附件。

本文出自 “我的技术博客” 博客,谢绝转载!

cisco wlc 4402结合windows 2003 acs4.2的用户认证和web页面认证的配置