< Home

Managing Wired Login for APs

Context

You can log in to an AP through the console port, STelnet, SFTP, or Telnet in wired mode. When an AP does not need to be logged in, the login modes are disabled to ensure AP security, preventing unauthorized users from using these modes to log in. To log in to the AP, enable one or more login modes.

Procedure

  1. Run system-view

    The system view is displayed.

  2. Run wlan

    The WLAN view is displayed.

  3. Run ap username username password cipher

    The user name and password for AP login are configured.

    By default, the user name is admin and password is admin@huawei.com.

  4. (Optional) Configure AP login password policies.
    1. Run the ap password policy command to enable the password policy function and enter the AP password policy view.

      By default, the AP login password policy function is disabled.

    2. Run the password expire days command to set the password expiration time.

      By default, the password validity period is 90 days.

    3. Run the password alert before-expire days command to set the password expiration prompt days.

      By default, the number of password expiration prompt days is 30 days.

    4. Run the password alert original command to enable the device to prompt users to change initial passwords.

      By default, the initial password change prompt function is enabled.

    5. Run the password history record number number command to set the maximum number of historical passwords recorded for each user.

      By default, a maximum of five historical passwords are recorded for each user.

    6. Run the quit command to return to the WLAN view.
  5. Run ap-system-profile name profile-name

    An AP system profile is created, and the AP system profile view is displayed.

    By default, the system provides the AP system profile default.

  6. Run undo stelnet server disable

    The STelnet service function is enabled.

    By default, the STelnet server function is enabled on an AP.

  7. (Optional) Run undo console disable

    AP login through the console port is enabled.

    By default, a user can log in to the AP through a console port.

  8. (Optional) Run undo sftp server disable

    The SFTP service function is enabled.

    By default, the SFTP server function is enabled on an AP.

  9. (Optional) Run telnet enable

    The Telnet service function is enabled.

    By default, Telnet is disabled on an AP.

  10. Run quit

    Return to the WLAN view.

  11. Bind an AP system profile to an AP group or AP.

    • Binding an AP system profile to an AP group.
      1. Run the ap-group name group-name command to enter the AP group view.

      2. Run the ap-system-profile profile-name command to bind the AP system profile to the AP group.

        By default, the AP system profile default is bound to an AP group.

    • Binding an AP system profile to an AP.
      1. Run the ap-id ap-id, ap-mac ap-mac, or ap-name ap-name command to enter the AP view.

      2. Run the ap-system-profile profile-name command to bind the AP system profile to the AP.

        By default, no AP system profile is bound to an AP.

Verifying the Configuration

  • Run the display ap username [ ap-name ap-name | ap-id ap-id ] command to check the user information for AP login.
  • Run the display ap-system-profile { all | name profile-name } command to check configuration and reference information about an AP system profile.
  • Run the display references ap-system-profile name profile-name command to check reference information about an AP system profile.
Parent Topic: AP Management Configuration Guide
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >