< Home

AP System Profile

Overview

An AP system profile is used to configure AP system parameters and can reference STA blacklist and whitelist profiles as well as spectrum analysis configuration. The following configurations are performed in an AP system profile:

  • Manage AP login modes.

    A user can log in to an AP through the console port, STelnet, SFTP, and Telnet in wired mode, or through Telnet in wireless mode. These login modes can be disabled in an AP system profile to ensure AP login security.

  • Configure the offline management VAP and antenna alignment VAP for an AP.

    When an AP goes offline unexpectedly, the AC cannot manage the AP. In this case, you can enable the management VAP and log in to the AP using Telnet or STelnet to troubleshoot the fault. This prevents complex operations.

    You can associate a mobile phone on which the CloudCampus APP is installed with the wireless network with SSID hw_manage_xxxx (xxxx is the last 4 bits of the AP MAC address) and use the phone to receive packets sent by the antenna alignment VAP.

  • A management VLAN is configured for an AP.

    In practice, the PVID of an AP wired interface is usually set to the management VLAN ID. For details, see VLAN Deployment Suggestions. When management packets from the AP or data packets forwarded in tunnel mode reach the access device through the CAPWAP tunnel, the access device tags the packets with the PVID.

    If the PVID of the access device has been used for other purposes (for example, as the default VLAN ID of wired users), the PVID cannot be configured as the management VLAN ID on the access device interface. In this case, configure CAPWAP packets sent from an AP wired interface to carry the management VLAN tag. The AP then adds the management VLAN ID to the CAPWAP packets sent to the AC. You only need to configure the access device to allow the packets carrying the management VLAN ID to pass.

  • Configure service holding upon CAPWAP link disconnection.

    To mitigate impact of link disconnections on users in direct forwarding mode and improve service reliability, you can configure the function of service holding upon CAPWAP link disconnection. To allow new users to access APs after CAPWAP link disconnection, you can configure the function of user access upon CAPWAP link disconnection. After the disconnected CAPWAP link is restored, the AP forces all the STAs that went online during CAPWAP link disconnection to go offline. The AP then reassociates with these STAs and reports STA information through logs. For Portal or MAC address authentication STAs, after the broken CAPWAP link is restored, the AP forces all these STAs to go offline and reports STA information through logs.

  • Configure PoE parameters for an AP.

    PoE parameters include PoE power, parameters that are configured to allow high inrush current during power-on, and PoE standard used by the AP.

  • Configure AP indicators.

    Blinking indicators of indoor APs deployed in hospitals and hotels may affect people's nighttime rest. Therefore, you can turn off AP indicators after APs are installed and run properly.

  • Configure the alarm function on an AP.

    • You can configure alarm thresholds on an AP to monitor the AP in real time. When the configured thresholds are exceeded, the AP generates alarms or logs to notify the AC of AP status.

    • If a STA cannot go online due to security type mismatch, user CAC, or the AP's or VAP's access user upper limit exceeding, the STA will automatically re-connect to the AP. During this period, the AP sends a large number of STA association failure alarms to the AC, which degrades the system performance.

    To solve this problem, enable alarm suppression for the AP. The AP then does not report alarms repeatedly in the alarm suppression period, preventing alarm storms.

  • Configure the log backup and log suppression functions on an AP.

    • Logs record user operations and system running information. After logs are backed up to a server, network administrators can summarize and analyze AP logs to learn the operations performed on APs for fault location.

      The device supports automatic log backup. After automatic log backup is configured, logs generated by an AP are automatically sent to the log server.

    • If a STA keeps attempting to connect to an AP because of signal interference or instability, the AP sends a large number of duplicate login and logout logs to the AC in a short period, causing a huge waste of resources.

      To address this problem, enable log suppression. The AP sends only one log about a user to the AC within the log suppression period.

  • Configure LLDP on an AP.

    The Link Layer Discovery Protocol (LLDP) helps the NMS obtain detailed Layer 2 information, such as the network topology, device interface status, and management address.

    After LLDP is configured on an AP, the AP can send LLDP packets carrying local system status information to directly connected neighbors and parse LLDP packets received from neighbors.

  • Configure the effective scope of a STA blacklist or whitelist.

    If a STA blacklist or whitelist is applied to an AP system profile, the STA blacklist or whitelist takes effect on all APs using the AP system profile.

  • Configure some parameters for spectrum analysis.

    The parameters include the IP address and port number of a spectrum server and aging time of information about non-Wi-Fi devices on an AC during spectrum analysis.

CLI-based Procedure

Parent Topic: WLAN Service Configuration Procedure
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >