User Guide Dell Networking W-AirWave 8.2.
Copyright © Copyright 2017 Hewlett Packard Enterprise Development LP. Dell™, the DELL™ logo, and PowerConnect™ are trademarks of Dell Inc. All rights reserved. Specifications in this manual are subject to change without notice. Originated in the USA. All other trademarks are the property of their respective owners. Open Source Code This product includes code licensed under the GNU General Public License, the GNU Lesser General Public License, and/or certain other open source licenses. May 2017 | Rev.
Contents Introduction A Unified Wireless Network Command Center W-AirWave Management Platform Controller Configuration Instant Configuration VisualRF RAPIDS Integrating W-AirWave into the Network and Organizational Hierarchy Administrative Roles Configuring W-AirWave Before You Begin Formatting the Top Header Customizing Columns in Lists Resetting Pagination Records Using the Pagination Widget Using Export CSV for Lists and Reports Defining Graph Display Preferences Customizing the Dashboard Adding Widget
User Roles and VisualRF Configuring Login Message, TACACS+, RADIUS, and LDAP Authentication Setting Up Login Configuration Options Configuring Whitelists Setting Up Certificate Authentication Setting Up Single Sign-On Specifying the Authentication Priority Configuring RADIUS Authentication and Authorization Integrating a RADIUS Accounting Server Configuring TACACS+ Authentication Configuring LDAP Authentication and Authorization Enabling W-AirWave to Manage Your Devices Configuring Communication Settings fo
Basic Configuration Settings Global Group Settings SNMP Polling Periods Routers and Switches Notes Group Display Options Automatic Static IP Assignment Spanning Tree Protocol NTP HPE Aruba/OfficeConnect Switch Configuration Aruba/Dell Networking W Dell Instant Cisco IOS/Catalyst Cisco WLC Proxim/ Avaya HP ProCurve Symbol Juniper/3Com/Enterasys/Nortel/Trapeze Universal Devices, Routers and Switches Automatic Authorization Adding and Configuring Group AAA Servers Configuring Group Security Settings Configurin
Running a Scan Set The Cisco Discovery Protocol (CDP) Management Modes Manually Adding Devices Adding Multiple Devices from a CSV File Adding Universal Devices Auditing Device Configuration Management Modes Ignoring Discovered Devices Unignoring a Device Troubleshooting a Newly Discovered Down Device 121 123 123 124 126 127 128 128 129 130 130 Monitoring the Network 132 Monitoring Overview Device Info Alert Summary Device Events Recent AMP Events Using Device Folders Adding device folders Moving folders
Sorting and Filtering Controller Cluster Data Viewing Controller Cluster Details Viewing Capacity Graphs Viewing Controller Statistics Monitoring Cluster Events Where to Find Additional Cluster Information Using Topology Navigate the Map Change the Root Node Change the Layout Search for a Device Respond to Alerts Take Action from Quick Links Tooltips Device Details Filter the Map Status Icons Configuring and Managing Devices Moving a Device from Monitor Only to Manage Read/Write Mode Configuring AP Setting
Using RAPIDS and Rogue Classification 198 Introduction to RAPIDS Viewing Overall Network Health on RAPIDS > Overview Setting Up RAPIDS RAPIDS Setup Basic Configuration Classification Options Containment Options Filtering Options Additional Settings Defining RAPIDS Rules Controller Classification with WMS Offload Device OUI Score Rogue Device Threat Level Viewing and Configuring RAPIDS Rules Deleting or Editing a Rule Recommended RAPIDS Rules Using RAPIDS Rules with Additional W-AirWave Functions Viewing R
Manage Configuration Change Jobs Monitoring Firmware Upgrade Jobs Monitoring System Performance Troubleshoot System Performance Managing Mobile Devices with SOTI MobiControl and W-AirWave Overview of SOTI MobiControl Prerequisites for Using MobiControl with W-AirWave Adding a Mobile Device Management Server for MobiControl Accessing MobiControl from the Clients > Client Detail Page About the Home Page Monitoring Your Network Health Monitoring with AppRF Using the UCC Dashboard Viewing Call Details Viewing U
Using the Capacity Planning Report Example Custom Report Using the Client Inventory Report Example Custom Report Using the Client Session Report Using the Configuration Audit Report Using the Device Summary Report Using the Device Uptime Report Using the Inventory Report Example Custom Report Using the Rogue Containment Audit Report Using the PCI Compliance Report Using the IDS Events Report Using the Match Event Report Using the New Clients Report Using the New Rogue Devices Report Using the RADIUS Reports
Cropping the Floor Plan Image Copying a Floor Plan in the Same Building Sizing a Non-CAD Floor Plan Defining Floor Plan Boundaries Defining Floor Plan Regions Adding Region to a New Floor using the Floor Upload Wizard Adding a Region to an Existing Floor Plan Editing a Planning Region Floor Plan Properties Adding Deployed Access Points onto the Floor Plan Adding Planned APs onto the Floor Plan Auto-Matching Planned Devices Printing a Bill of Materials Report Increasing Location Accuracy Adding Exterior Wall
Differences between VisualRF and VisualRF Plan Using FIPS Encryption 338 A Enabling FIPS 140-2 Approved Mode A AMP Command Line Interface B About the Command Line Interface CLI Access Custom Modules How to Reset Your Password CLI Options B B B B B Index 12 | Contents E Dell Networking W-AirWave 8.2.
Chapter 1 Introduction Thank you for choosing W-AirWave 8.2.4. W-AirWave makes it easy and efficient to manage your wireless network by combining industry-leading functionality with an intuitive user interface, enabling network administrators and helpdesk staff to support and control even the largest wireless networks. The User Guide provides instructions for the configuration and operation of Dell Networking W-AirWave.
For additional information that includes a comprehensive inventory of all pages and settings that support Dell Networking W Configuration, refer to the W-AirWave 8.2 Controller Configuration Guide. Instant Configuration Dell Networking W-Instant (Instant) is a system of access points in a Layer 2 subnet. The Instant APs (W-IAPs) are controlled by a single W-IAP that serves a dual role as both an W-IAP and primary Virtual Controller (VC), eliminating the need for dedicated controller hardware.
integrates and communicates with authentication servers, accounting servers, TACACS+ servers, LDAP servers, routers, switches, network management servers, wireless IDS solutions, helpdesk systems, indoor wireless access points, mesh devices. W-AirWave has the flexibility to manage devices on local networks, remote networks, and networks using Network Address Translation (NAT). W-AirWave communicates over-the-air or over-the-wire using a variety of protocols.
Chapter 2 Configuring W-AirWave This section contains the following procedures to deploy initial W-AirWave configuration: l "Formatting the Top Header" on page 16 l "Customizing Columns in Lists" on page 17 l "Resetting Pagination Records" on page 19 l "Using the Pagination Widget" on page 20 l "Using Export CSV for Lists and Reports" on page 20 l "Defining Graph Display Preferences" on page 20 l "Customizing the Dashboard" on page 21 l "Setting Severe Alert Warning Behavior" on page 27 l
Figure 1: Navigation Bar Displaying Down Device Statistics You can control the Top Header Stats links that appear from the AMP Setup > General page, as described in "Defining General W-AirWave Server Settings" on page 27. Top Header Stats can also be customized for individual users on the Home > User Info page. There you can select the statistics to display for certain device types and override the AMP Setup page. All possible display options for users are show in Figure 2.
Figure 3: Edit View Drop down List Drag and drop column headings from the Available Columns field to the desired location in the Current Columns field. The available columns vary, depending upon the list type. Figure 4: Selecting Available List columns Some tables allow you to control which column heads appear for each user role. Navigate to Home > User Info >Display Preferences , and then select Yes in the Customize Columns for Other Roles field.
Figure 5: Table with Choose Columns for Roles Menu Selected Resetting Pagination Records To control the number of records in any individual list, select the link with Records Per Page mouseover text at the top left of the table, as shown in Figure 6. W-AirWave remembers each list’s pagination preferences. Figure 6: Records Per Page Drop Down Menu To reset all Records Per Page preferences, click the Reset reset button in the Display Preferences section of the Home > User Info page, as shown in Figure 7.
Using the Pagination Widget The pagination widget is located at the top and bottom of every list table, as shown in Figure 8. Figure 8: Pagination Widget Enter a page number into the Page field to jump to any portion of the table, or select the > symbol to advance to the next page, and >| to return to the previous page. Using Export CSV for Lists and Reports Some tables have a Export CSV ( ) option you can use to export the data as a spreadsheet.
Figure 10: Interactive Graphs on the Home > Overview Page Highcharts are built with JavaScript, so the graphs can run directly through your browser without the need for additional client-side plugins. This makes it possible to view your W-AirWave charts on a mobile device. These charts can be used and customized as follows. l A Time Range selector in the upper right portion of the charts (including pop-up charts) allows you to select a common or a custom date range for your data.
Figure 11: Drag a Widget to the Dashboard Adding Widgets The Home > Overview page displays the currently selected widgets (charts/graphs). You can change the widgets on this page by selecting the Customize link in the upper-right corner. The Available Widgets section on the left holds all available graphical elements (widgets). Select any blue widget tile with a verbal description enclosed, and it immediately turns into a graphical element with a description.
Table 2: Available Widgets Widget Description Client/Usage Graphs The Client graph is enabled by default and, by default, shows the maximum number of attached clients over the last two hours. Select the Show All link to view more specific client information on the graph, such as the total and average clients for a specific SSID, the maximum VPN sessions, etc. The available check boxes within this graph are determined by the SSIDs that W-AirWave is aware of from polling the device.
Table 2: Available Widgets (Continued) Widget Description RAPIDS: Classification Pie The RAPIDS: Classification Pie shows the percentage of devices classified as Valid, Suspected Neighbor, Suspected Valid, Suspected Rogue, Rogue, and Neighbor that are attached to W-AirWave. The RAPIDS information appears from the moment a rogue is discovered until it is deleted. Ignored rogues, however, are not included in this chart. This pie chart can also be viewed on the RAPIDS > Overview page.
Table 2: Available Widgets (Continued) Widget Description Top Folders By BG Radio Channel Usage This chart shows the folders and the number of 802.11b/g radios (2.4GHz) in each folder whose channel usage is greater than the cutoff (or usage threshold) as measured by Mbps. This cutoff is on the on the AMP Setup > General page using the Configure Channel Busy Threshold option.
Table 2: Available Widgets (Continued) Widget Description Clients By Device OS Detail This pie chart shows the percentage of clients that have attached to WAirWave over the last 24 hours based on the device operating system version (such as Windows NT 6.1). Clients By Network Vendor This pie chart shows the percentage of clients that have attached to WAirWave over the last 24 hours based on each device’s network interface vendor.
Figure 12: Home > User Info Search Preferences Setting Severe Alert Warning Behavior You can control the alert levels you can see on the Alerts top header stats link using the Severe Alert Threshold drop down menu located in the Top Header Stats section of the Home > User Info page. The Severe Alert Threshold determines the severity level that results in a Severe Alert. Specify either Normal, Warning, Minor, Major, or Critical as the severity alert threshold value.
l "Automatic Authorization Settings" on page 29 l "Dell Instant Settings" on page 29 l "Top Header Settings" on page 30 l "Search Method" on page 30 l "Home Overview Preferences" on page 31 l "Display Settings" on page 31 l "Device Configuration Settings" on page 32 l "AMP Features" on page 33 l "External Logging Settings" on page 33 l "Historical Data Retention Settings" on page 34 l "Firmware Upgrade Defaults" on page 36 l "Additional AMP Services" on page 36 l "Performance Settin
Table 3: AMP Setup > General > General Section Fields and Default Values (Continued) Setting Default Description Nightly Maintenance Time (00:00 23:59) 04:15 Specifies the local time of day W-AirWave should perform daily maintenance. During maintenance, W-AirWave cleans the database, performs backups, and completes a few other housekeeping tasks. Such processes should not be performed during peak hours of demand.
Table 5: AMP Setup > General > Dell Instant Options Fields and Default Values Setting Default Description Communication port (443,100065534): 443 By default, an Instant Virtual Controller communicates with AirWave over port 443. If your enterprise has a security policy that restricts the use of port 443 for inbound communication, use this field to change the port the Virtual Controller uses to communicate with W-AirWave.
l Active clients + historical clients (exact match) + all devices: Commonly referred to as Quick Search, this looks at all active and historical clients and all devices. This search is not case-sensitive. The results of this search display in a pop up window rather than on the Home > Search page. This pop up window includes top-level navigation that allows you to filter the results based on Clients, APs, Controllers, and Switches.
Table 7: AMP Setup > General > Display Fields and Default Values Setting Default Description AP Fully Qualified Domain Name Options No Sets W-AirWave to use fully qualified domain names for APs instead of the AP name. For example, ‘testap.yourdomain.com; would be used instead of ‘testap.’ Select one of the following options: l Don’t use FQDN - This default value specifies that the fully qualified domain name will not be used.
Table 8: AMP Setup > General > Device Configuration Section Fields and Default Values (Continued) Setting Default Description Allow WMS Offload configuration in monitor-only mode No When Yes is selected, you can enable the ArubaOS WMS offload feature on the Groups > Basic page for WLAN switches in Monitor Only mode. Enabling WMS offload does not cause a controller to reboot. This option is supported only for Aruba and Dell Networking W-Series devices.
Table 10: AMP Setup > General > External Logging Section Fields and Default Values Setting Default Description Syslog Server N/A Enter the IP address of the syslog server. Note that this field is hidden if both "Include event log messages" and "Include audit log messages" are set to No. Syslog Port 514 Enter the port of the syslog server. Note that this field is hidden if both "Include event log messages" and "Include audit log messages" are set to No.
Table 11: AMP Setup > General > Historical Data Retention Fields and Default Values (Continued) Setting Default Description Reports (0-550 days, zero disables) 60 Defines the number of days W-AirWave stores Reports. Large numbers of reports, over 1000, can cause the Reports > Generated page to be slow to respond.
Table 11: AMP Setup > General > Historical Data Retention Fields and Default Values (Continued) Setting Default Description Mesh Link History (0-550 days) 30 Sets the number of days W-AirWave retains historical information for mesh links. Device Uptime (0120 months, zero disables) 60 Sets the number of months W-AirWave retains historical information on device uptime. Setting this value to 0 disables this function.
Table 13: AMP Setup > General > Additional AMP Services Fields and Default Values Setting Default Description Enable FTP Server No Enables or disables the FTP server on W-AirWave. The FTP server is only used to manage Aruba AirMesh and Cisco Aironet 4800 APs. Best practice is to disable the FTP server if you do not have any supported devices in the network.
Table 13: AMP Setup > General > Additional AMP Services Fields and Default Values (Continued) Setting Default Description Enable UCC Data Collection Yes Enables controllers to send UCC data to Dell Networking W-AirWave. For this feature to work, Dell Networking W-AirWave must be a management server on the controller, the AMON port is set up for UDP port 8211, and the controller profile has UCC monitoring enabled.
Table 14: AMP Setup> General > Performance Fields and Default Values Setting Default Description Monitoring Processes Based on the number of cores for your server Optional setting configures the throughput of monitoring data. Increasing this setting allows W-AirWave to process more data per second, but it can take resources away from other W-AirWave processes. Contact Dell support at dell.com/support if you think you might need to increase this setting for your network.
Table 14: AMP Setup> General > Performance Fields and Default Values (Continued) Setting Default Description RAPIDS custom process limit (116) 1 when Custom is specified for the RAPIDS Processing Priority. Sets the maximum number of monitoring process assigned to RAPIDS work. Note that this option is only available if Custom is specified for the RAPIDS Processing Priority.
Table 15: Primary Network Interface Fields and Default Values Setting Default Description IPv4 Address None Sets the IPv4 address of the W-AirWave network interface. NOTE: This address must be a static IP address. Hostname None Sets the DNS name assigned to the W-AirWave server. Subnet Mask None Sets the subnet mask for the primary network interface. IPv4 Gateway None Sets the default gateway for the network interface.
Table 17: AMP Setup > Network > Secondary Network Fields and Default Values Setting Default Description Primary ntp1.yourdomain.com Sets the IP address or DNS name for the primary NTP server. Secondary ntp2.yourdomain.com Sets the IP address or DNS name for the secondary NTP server. Static Routes On the AMP Setup > Network page, locate the Static Routes area. This section displays network, subnet mask, and gateway settings that you have defined elsewhere from a command-line interface.
2. Select Add to create a new user, select the pencil icon to edit an existing user, or select a user and select Delete to remove that user from W-AirWave. When you select Add or the edit icon, the Add User page appears, illustrated in Figure 15. Current users cannot change their own role. The Role drop-down field is disabled to prevent this. Figure 15: AMP Setup > Users > Add/Edit User Page Illustration 3. Enter or edit the settings on this page. Table 18 describes these settings in additional detail.
Table 18: AMP Setup > Users > Add/Edit User Fields and Default Values (Continued) Setting Default Description Email Address None Allows you to specify a specific email address that will propagate throughout many additional pages in W-AirWave for that user, including reports, triggers, and alerts. Phone None Allows you to enter an optional phone number for the user.
l "Configuring Whitelists" on page 45 l "Setting Up Certificate Authentication" on page 46 l "Setting Up Single Sign-On" on page 46 l "Specifying the Authentication Priority" on page 46 l "Configuring RADIUS Authentication and Authorization" on page 47 l "Integrating a RADIUS Accounting Server" on page 48 l "Configuring TACACS+ Authentication" on page 49 l "Configuring LDAP Authentication and Authorization" on page 50 Setting Up Login Configuration Options On the AMP Setup > Authentication p
Figure 16: Enabling W-AirWave Whitelists Setting Up Certificate Authentication On the AMP Setup > Authentication page, administrators can specify whether to require a certificate during authentication and whether to use two-factor authentication. A PEM-encoded certificate bundle is required for this feature. This feature must be enabled per role in AMP Setup > Roles. Perform the following steps to enable this feature for this AMP. 1.
If Local is selected, then remote will be attempted if a user is not available. If Remote is selected, then the local database is searched if remote authentication fails. The order of remote authentication is RADIUS first, followed by TACACS, and finally LDAP. Select Save if you are finished or follow the next procedure to configure RADIUS, TACACS+, and LDAP Authentication options.
Table 20: AMP Setup > Authentication Fields and Default Values for RADIUS Authentication (Continued) Field Default Description Secondary Server Secret N/A Enter the shared secret for the secondary RADIUS server. Confirm Secondary Server Secret N/A Re-enter the secondary server secret.
1. To define a the RADIUS authentication server or network, browse to the AMP Setup > RADIUS Accounting page, select Add, and provide the information in Table 21. Table 21: AMP Setup > Radius Accounting Fields and Default Values for LDAP Authentication Setting Default Description IP/Network None Specify the IP address for the authentication server if you only want to accept packets from one device. To accept packets from an entire network enter the IP/Netmask of the network (for example, 10.51.0.0/24).
Table 22: AMP Setup > Authentication Fields and Default Values for TACACS+ Authentication (Continued) Field Default Description Primary Server Port (1-65535) 49 Enter the port for the primary TACACS+ server. Primary Server Secret N/A Specify and confirm the primary shared secret for the primary TACACS+ server. Confirm Primary Server Secret N/A Re-enter the primary server secret. Secondary Server Hostname/IP Address N/A Enter the IP address or hostname of the secondary TACACS+ server.
authenticating against an LDAP server which by default is on TCP port 389. Perform these steps to configure LDAP authentication: 1. Go to the AMP Setup > Authentication page. 2. Select the Yes radio button to enable LDAP authentication and authorization. Once enabled, the available LDAP configuration options will display. Figure 20 illustrates this page. Figure 20: AMP Setup > Authentication Page Illustration for LDAP 3. Complete the fields described in Table 23.
Table 23: AMP Setup > Authentication Fields and Default Values for LDAP Authentication (Continued) Field Default Description View Server Certificate none If Connection Type is configured as start-tls, then also specify whether the start-tls connection type uses a certificate. l none - The server may provide a certificate, but it will not be verified. This may mean that you are connected to the wrong server. l optional - Verifies only when the servers offers a valid certificate.
Table 23: AMP Setup > Authentication Fields and Default Values for LDAP Authentication (Continued) Field Default Description Add New LDAP Rule none The LDAP rule parameters are Position, Role Attribute, Operation, Value, and W-AirWave role. If you create multiple LDAP rules, rules are processed in order based on the rule position value, so the position you assign to the LDAP rule represents the order in which the LDAP rule is applied to determine the W-AirWave role.
Table 24: Device Setup > Communication > SNMP Settings Fields and Default Values Setting Default Description SNMP Timeout 3 (3-60 sec) Sets the time, in seconds, that W-AirWave waits for a response from a device after sending an SNMP request. SNMP Retries (1-40) Sets the number of times W-AirWave tries to poll a device when it does not receive a response within the SNMP Timeout Period or the Group's Missed SNMP Poll Threshold setting (1-100).
Table 27: Device Setup > Communication > ICMP Settings Fields and Default Values Setting Default Description Attempt to ping devices that were unreachable via SNMP Yes l When Yes is selected, W-AirWave attempts to ping the AP device. Select No if performance is affected in negative fashion by this function. If a large number of APs are unreachable by ICMP, likely to occur where there is in excess of 100 APs, the timeouts start to impede network performance.
Table 29: Device Setup > Upload Firmware & Files Fields and Default Values (Continued) Setting Default Description Owner Role None Displays the user role that uploaded the firmware file. This is the role that has access to the file when an upgrade is attempted. Description None Displays a user-configurable text description of the firmware file. Server Protocol None Displays the file transfer protocol by which the firmware file was obtained from the server. This can be FTP, TFTP, HTTP, HTTPS.
Figure 21: Device Setup > Upload Firmware and Files > Add Page Illustration 3. Select the Supported Firmware Versions and Features link to view supported firmware versions. Unsupported and untested firmware may cause device mismatches and other problems. Please contact Dell support at dell.com/support before installing non-certified firmware. 4. Enter the appropriate information and select Add.
Table 30: Supported Firmware Versions and Features Fields and Default Values (Continued) Setting Default Description Use Group File Server Disabled If you opt to use an external firmware file server, this additional option appears. This setting instructs WAirWave to use the server that is associated with the group instead of defining a server. Firmware File Server IP Address None Provides the IP address of the External TFTP Server (like SolarWinds) used for the firmware upgrade.
Figure 22: Add Web Auth Bundle Page Illustration 4. Enter a descriptive label in the description field. This is the label used to identify and track Web Auth bundles on the page. 5. Enter the path and filename of the Web Auth configuration file in the Web Auth Bundle field or select Choose File to locate the file. 6. Select Add to complete the Web Auth bundle creation, or Save if replacing a previous Web Auth configuration file, or Cancel to abort the Web Auth integration.
Figure 23: AMP Setup > Device Type Setup Page Illustration Configuring Cisco WLSE and WLSE Rogue Scanning The Cisco Wireless LAN Solution Engine (WLSE) includes rogue scanning functions that W-AirWave supports.
Table 31: Cisco SWAN Architecture Components (Continued) SWAN Component Requirements WLSE (Wireless LAN Solution Engine) l ACS (Access Control Server) l l IP Address Login APs l APs within WDS Group l IP Address Login Initial WLSE Configuration Use the following general procedures to configure and deploy a WLSE device in W-AirWave: l "Adding an ACS Server for WLSE" on page 61 l "Enabling Rogue Alerts for Cisco WLSE" on page 61 l "Configuring WLSE to Communicate with APs" on page 61 l "Dis
l Using Cisco Discovery Protocol (CDP) l Importing from a file l Importing from CiscoWorks Perform these steps to discover access points. 1. Go to the Device > Managed Devices > Discovery Wizard page. 2. Import devices from a file. 3. Import devices from Cisco Works. 4. Import using CDP. Managing Devices Prior to enabling radio resource management on IOS access points, the access points must be under WLSE management.
APs functioning as WDS Master or Primary WDS will no longer show up as Down is the radios are enabled. WDS Participation Perform these steps to configure WDS participation. 1. Log in to the AP. 2. Go to the Wireless Services > AP page. 3. Select Enable participation in SWAN Infrastructure. 4. Select Specified Discovery, and enter the IP address of the Primary WDS device (AP or WLSM). 5. Enter the user name and password for the WLSE server.
1. To add a Cisco WLSE server to W-AirWave , navigate to the AMP Setup > WLSE page and select Add. Complete the fields in this page. Table 32 describes the settings and default values. Table 32: AMP Setup > WLSE Fields and Default Values Setting Default Description Hostname/IP Address None Designates the IP address or DNS Hostname for the WLSE server, which must already be configured on the Cisco WLSE server. Protocol HTTP Specify whether to use HTTP or HTTPS when polling the WLSE.
Figure 24: AMP Setup > ACS Page Illustration 2. Select Add to create a new ACS server, or select a pencil icon to edit an existing server. To delete an ACS server, select that server and select Delete. When selecting Add or Edit, the Details page appears. 3. Complete the settings on AMP Setup > ACS > Add/Edit Details.
To integrate an NMS server with W-AirWave: 1. Go to AMP Setup > NMS, then click Add. 2. Enter the NMS server hostname or IP address. 3. Use the default port, or you can enter a new port number. 4. Select the SNMP version: n SNMPv1 or SNMPv2c, then enter the community string and confirm the string. n SNMPv3, then enter the advanced security options (authentication and privacy protocols and passphrases). 5. Click Add.
Figure 25: PCI Compliance Report Example You can find the PCI compliance report for a device by navigating to APs/Devices > List, hovering the pointer over a device, and clicking Compliance from the shortcut menu, as shown in . If you created a PCI compliance report from the Reports Definition page, W-AirWave displays the report on the Generated Reports page when it is available. For information, see "Viewing, Running, and Deleting Reports" on page 1.
3. Click to open the Default Credential Compliance page. The compliance settings vary depending on the PCI requirement. 4. Select Save. 5. To view and monitor PCI auditing on the network, use generated or daily reports. See "Creating, Running, and Sending Reports" on page 264. In addition, you can view the real-time PCI auditing of any given device online. Perform these steps: a. Go to the APs/Devices > List page. b. Select a specific device. The Monitor page for that device displays.
The Payment Card Industry (PCI) Data Security Standard (DSS) establishes multiple levels in which payment cardholder data is protected in a wireless network, W-AirWave supports PCI requirements according to the standards and specifications set forth by the following authority: l Payment Card Industry (PCI) Data Security Standard (DSS) n PCI Security Standards Council Web site https://www.pcisecuritystandards.org n PCI Quick Reference Guide, Version 1.2 (October 2008) https://www.pcisecuritystandards.
5. Convert existing floor plans to VisualRF to include the following elements: l Dell Networking W-Series ArubaOS l RF Plan 6. Use RTLS for increasing location accuracy (optional): a. Enable RTLS service on the W-AirWave server. b. Enable RTLS on ArubaOS infrastructure. Integrating External Servers W-AirWave supports integration with Juniper, Brocade or HPE Intelligent Management Center (IMC) servers.
Figure 26: IMC Link on the APs/Devices > Monitor page To integrate an IMC server with W-AirWave: 1. Log in to W-AirWave, then navigate to AMP Setup > External server. 2. In the Intelligent Management Center section, enter the IP address or hostname of the IMC server. 3. (Optional) Click the IMC Protocol drop down list and select the HTTPS or HTTP protocol. The default setting is HTTPS. 4. (Optional) Enter a port number in the IMC Port field. The default port number is 8443. 5.
Chapter 3 Configuring and Using Device Groups This section describes the deployment of device groups within W-AirWave. The section below describes the pages or focused submenus available when you select a group using the Groups > List page. Note that the available subtabs can vary significantly from one device group to another. One or more subtabs may not appear, depending on the Default Group display option selected on the AMP Setup > General page and the types of devices you add to W-AirWave.
Table 35: Groups pages (Continued) Menu Item Description Refer to Templates This page manages templates for any device group. Templates allow you to manage the configuration of Dell Networking W-Series, 3Com, Alcatel-Lucent, Aruba Networks, Cisco Aironet IOS, Cisco Catalyst switches, Enterasys, HPE, Nortel, Symbol and Trapeze devices in a given group using a configuration file. Variables in such templates configure device-specific properties, such as name, IP address and channel.
Table 35: Groups pages (Continued) Menu Item Description Refer to Proxim Mesh This page defines mesh AP settings specific to Proxim devices when present. "Configuring Proxim Mesh Radio Settings" on page 107 MAC ACL This page defines MAC-specific settings that apply to Proxim, Symbol, and ProCurve 520 devices when present. "Configuring Group MAC Access Control Lists" on page 109 Firmware This page manages firmware files for many device types.
l Security settings - VLANs, WEP, 802.1X, ACLs, and so forth l Radio settings - data rates, fragmentation threshold, RTS threshold, DTIM, preamble, and so forth. When configuration changes are applied at a group level, they are assigned automatically to every device within that group. Such changes must be applied with every device in Managed mode. Monitor mode is the more common mode. Always review the Audit page before pushing configurations to a device or group.
Table 36: Groups > List Columns (Continued) Column Description Up/Down Status Polling Period The time between Up/Down SNMP polling periods for each device in the group. Detailed SNMP polling period information is available on the Groups > Basic configuration page. Note that by default, most polling intervals do not match the up/down period. Total Devices Total number of devices contained in the group including APs, controllers, routers, or switches.
Security, SSIDs, AAA Servers, Radio, Controller Config, Instant Config, and Cisco WLC Config. See Figure 29. The mouse-over list can vary based on a group's settings. Figure 29: Pop-up When Hovering over Wrench Icon in the Groups > List Page Basic Configuration Settings Table 37 describes the available settings and default values in the Basic section of the Group > Basic page.
Global Group Settings The W-AirWave group configuration feature allows you to push configurations defined on a global group to other managed groups subscribed to that global group. describes the settings and default values of in the Global Groups section of the Group> Basic page. Table 38: Global Groups Fields and Default Values Setting Default Description Is Global Group No If set to Yes, then this group can be selected in the Use Global Group drop down menu for future group configurations.
Table 39: SNMP Polling Periods Fields and Default Values (Continued) Setting Default Description CDP Neighbor Data Polling Period 30 minutes Sets the frequency in which this group polls the network for Cisco Discovery Protocol (CDP) neighbors. Mesh Discovery Polling Period 15 minutes Sets time between SNMP polls for Mesh Device Discovery.
Group Display Options The available W-AirWave configuration settings for a group of managed or monitored devices can vary, depending upon the type of device being configured. Use the Group DisplayOptions section of the Groups > Basic page to define the types of configuration settings that will appear for the selected group. Table 41 describes these settings and their default values.
Spanning Tree Protocol Use the Spanning Tree Protocol settings on the Groups > Basic page to configure the Spanning Tree Protocol on Wireless LAN Controller (WLC) devices and Proxim APs. Table 43 describes the settings and default values in this section. Table 43: Spanning Tree Protocol Fields and Default Values Setting Default Description Spanning Tree Protocol No Specify whether to enable or disable Spanning Tree Protocol on Proxim APs.
Table 45: HPE Aruba/OfficeConnect Switch Fields and Default Values Setting Default Description NTP Server #1,2,3 None Sets the IP address of the NTP servers to be configured on the AP. UTC Time Zone 0 Sets the hour offset from UTC time to local time for the AP. Times displayed in WAirWave graphs and logs use the time set on the W-AirWave server. Daylight Saving Time No Enables or disables the advanced daylight saving time settings in the Proxim section of the Groups > Basic configuration page.
Table 47: Virtual Controller Certificate Fields and Default Values Setting Default Description Enable Instant GUI Config No Select this option to configure your Instant APs via the IGC feature on the Groups > Instant Config pages of the W-AirWave WebUI, rather than via Instant template configuration.
Table 48: Cisco IOS/Catalyst Fields and Default Values Setting Default Description SNMP Version 2c The version of SNMP used by W-AirWave to communicate to the AP. Cisco IOS CLI Communication Telnet The protocol W-AirWave uses to communicate with Cisco IOS devices. Selecting SSH uses the secure shell for command line page (CLI) communication and displays an SSH Version option. Selecting Telnet sends the data in clear text via Telnet.
Table 50: Proxim/Avaya Settings (Continued) Setting Default Description Secondary DNS server Blank Sets the IP address of the Secondary DNS server. Default DNS domains Blank Sets the default DNS domain used by the AP. HTTP Server Port 80 Sets this port as the HTTP server port on all Proxim APs in the group. Country Code United States Configures AMP to derive its time settings based on the country of location, as specified in this field.
Juniper/3Com/Enterasys/Nortel/Trapeze To configure SNMP settings for 3Com, Enterasys, Nortel, or Trapeze devices, locate the Juniper/3Com/Enterasys/Nortel/Trapeze section of the Groups > Basic page and click the SNMP Version drop-down list to define the version of SNMP to be supported. The default setting is SNMPv2c.
1. Go to the Groups > List page and select the group for which to define AAA servers by selecting the group name. The Monitor page appears. 2. Select the AAA Servers page. The AAA Servers page appears, enabling you to add a RADIUS server. 3. To add a RADIUS server or edit an existing server, select Add New RADIUS Server or the corresponding pencil icon to edit an existing server. Table 54 describes the settings and default values of the Add/Edit page.
This page appears in the WebUI after you configure RADIUS servers on the Groups > AAA Servers page. Once RADIUS servers are defined, the Groups> Security and Groups > SSIDs menus appear in the navigation bar, allowing you to select and configure your RADIUS servers. 1. Select the device group for which to define security settings from the Groups > List page. 2. Go to Groups > Security. Some controls on this page interact with additional W-AirWave pages.
Table 55: Groups > Security Page Fields and Default Values (Continued) Setting Default Description VLAN Tagging and Multiple SSIDs Enabled This field enables support for VLANs and multiple SSIDs on the wireless network. If this setting is enabled, define additional VLANs and SSIDs on the Groups > SSIDs page. Refer to "Configuring Group SSIDs and VLANs" on page 92. If this setting is disabled, then you can specify the Encryption Mode in the Encryption section that displays.
Table 55: Groups > Security Page Fields and Default Values (Continued) Setting Default Description Authentication Profile Index 3 For Proxim devices only, this field sets the name of the accounting profile index to be supported in this device group. MAC Address Authentication Section MAC Address Authentication No If enabled, only MAC addresses known to the RADIUS server are permitted to associate to APs in the Group.
Table 56: Groups > Security Encryption Mode settings (Continued) Setting Default Description CKIP Key Index 1 Select the CKIP Key Index value. This can be a value from 1 through 4. CKIP Key Permutation No Specify whether to use Key Permutation. CKIP MMH Mode No Specify whether to use Multi-Module Has (MMH) mode. Encryption Mode WPA Unicast Cipher (Cisco only) AES Specify the Unicast Cipher. Values include AES, TKIP, and AES/TKIP.
4. Continue with additional security-related procedures in this document for additional RADIUS and SSID settings for device groups, as required. Configuring Group SSIDs and VLANs Use the Groups > SSIDs configuration page to create and edit SSIDs and VLANs that apply to a device group. This configuration page does not appear in the W-AirWave WebUI until after you configure a RADIUS server using the Groups > AAA Servers page, as described on "Adding and Configuring Group AAA Servers" on page 86.
Table 58: SSID/VLAN Section Fields and Default Values Setting Default Description Specify Interface Name Yes Enables or disables an interface name for the VLAN interface. Selecting No for this option displays the Enable VLAN Tagging and VLAN ID options. Enable VLAN Tagging (Cisco WLC, Proxim, Symbol only) Enables or disables VLAN tagging. Displays if Specify Interface Name is set to No.
Table 59: Encryption Section Field and Default Values Setting Default Description Encryption Mode No Encryption Drop-down menu determines the level of encryption required for devices to associate to the APs. The drop-down menu options are as follows. Each option displays additional encryption settings that must be defined.
9. Locate the RADIUS Accounting Servers area on the Groups > SSIDs configuration page and define the settings. Table 62 describes the settings and default values. Table 62: Radius Accounting Servers Fields and Default Values Setting Default Description RADIUS Accounting Server 1-3 (Cisco WLC, Proxim Only) None Pull-down menu selects RADIUS Accounting servers previously entered on the Groups > RADIUS configuration page.
Figure 31: Groups > Radio Page Illustration 3. Locate the Radio Settings area and adjust these settings as required. Table 63 describes the settings and default values. Table 63: Groups > Radio > Radio Settings Fields and Default Values Setting Default Description Allow Automatic Channel Selection (2.4, 5, and 4.9GHz Public Safety) No If enabled, whenever the AP is rebooted it uses its radio to scan the airspace and select its optimal RF channel based on observed signal strength from other radios.
Table 63: Groups > Radio > Radio Settings Fields and Default Values (Continued) Setting Default Description 802.11b Data Rates (Mbps) Required: l 1.0 l 2.0 Displays pull-down menus for various data rates for transmitting data. NOTE: This setting does not apply to Cisco LWAPP devices. Optional: l 5.5 l 11.
4. Certain wireless access points offer proprietary settings or advanced functionality that differ from prevailing industry standards. If you use these APs in the device group, you may wish to take advantage of this proprietary functionality. To configure these settings, locate the proprietary settings areas on the Groups > Radio page and continue with the additional steps in this procedure.
6. To configure settings specific to Proxim 4900M, locate the Proxim 4900M section and define the required fields. Table 65 describes the settings and default values. Table 65: Groups > Radio > Proxim 4900M Fields and Default Values Setting Default Description 4.9GHz Public Safety Channel Bandwidth 20 This setting specifies the channel bandwidth for the 4.9 GHz radio. It is only applicable if you are running the 802.11a/4.9GHz radio in 4.9GHz mode. 802.11a/4.9GHz Public Safety Operational Mode 802.
Figure 32: Cisco WLC Submenu in the Navigation Bar Navigating Cisco WLC Configuration The navigation pane on the left side of the Groups > Cisco WLC Config page is expandable, and displays the Cisco configurations supported and deployed. Figure 33 and illustrate this navigation pane. You can pre-populate the group WLC settings from a controller in the same group by performing an import on the controller’s Audit page.
n General—Defines general administrative parameters for the Cisco WLC WLAN. n Security—Defines encryption and RADIUS servers. n QoS—Defines quality of service (QoS) parameters for the Cisco WLC WLAN. n Advanced—Defines advanced settings that are available only with Cisco WLC devices, for example, AAA override, coverage, DHCP and DTIM period. Refer to Cisco documentation for additional information about Cisco WLC devices and related features.
Figure 35: Add New SSID/VLAN > Security Tab Illustration Figure 36: Add New SSID/VLAN > QoS Tab Illustration Dell Networking W-AirWave 8.2.
Figure 37: Add New SSID/VLAN > Advanced Tab Illustration 103 | Configuring and Using Device Groups Dell Networking W-AirWave 8.2.
Defining and Configuring LWAPP AP Groups for Cisco Devices The Groups > Cisco WLC Config > WLANs > Advanced > AP Groups page allows you to add/edit/delete AP Groups on the Cisco WLC. LWAPP AP Groups are used to limit the WLANs available on each AP. Cisco thin APs are assigned to LWAPP AP Groups. Viewing and Creating Cisco AP Groups 1. Go to the Groups > Cisco WLC Config page, and select WLANs > Advanced > AP Groups in the navigation pane on the left side. This page displays the configured LWAPP APs.
Figure 39: Groups > Cisco WLC Config > Controller Navigation Configuring Wireless Parameters for Cisco Controllers This section illustrates the configuration of Wireless settings in support of Cisco WLC controllers. Select a group with Cisco WLC devices, then navigate to Groups > Cisco WLC Config, expand the Wireless menu, then expand Advanced, Mesh, 802.11a/n and 802.11 b/g/n menus to display configuration settings for those categories. The navigation for Wireless settings is illustrated in Figure 40.
Figure 41: Groups > Cisco WLC Config > Security Navigation Illustration Configuring Management Settings for Cisco WLC Controllers W-AirWave allows you to configure of SNMP and Syslog Server settings for Cisco WLC controllers. You can configure up to four trap receivers on the Cisco WLC including the AMP IP that can be used in Global Groups. To define SNMP and server settings, go to the Groups > Cisco WLC Config > Management page, illustrated in Figure 42.
Table 67: Groups > PTMP Fields and Default Values Setting Default Description 802.11a Radio Channel 58 Selects the channel used for 802.11a radios by the devices in this group. 802.11g Radio Channel 10 Selects the channel used for 802.11g radios by the devices in this group. Channel Bandwidth 20 Defines the channel bandwidth used by the devices in this group. Network Name Wireless Network Sets the Network name, with a range of length supported from two to 32 alphanumeric characters.
Table 68: General Fields and Default Values Setting Default Description Mesh Radio 4.9/5Ghz Drop-down selects the radio that acts as the backhaul to the network. Maximum Mesh Links (1-32) 6 Sets the maximum number of mesh links allowed on an AP. This number includes the uplink to the portal as well as downlinks to other mesh APs. Neighbor RSSI Smoothing 16 Specifies the number of beacons to wait before switching to a new link.
Table 70: Mesh Cost Matrix Fields and Default Values (Continued) Setting Default Description Current Medium Occupancy Weight (0-9) 7 Specifies the importance given to the most recently observed Medium Occupancy against all of the previously viewed medium occupancies. Lower values place more importance on previously observed Medium Occupancies. 3. Select Save when configurations are complete to retain these settings.
Figure 46: Groups > Firmware Page Illustration (partial view) 2. For each device type in the group, specify the minimum acceptable firmware version. If no firmware versions are listed, go to the Device Setup > Upload Firmware & Files configuration page to upload the firmware files to W-AirWave. 3. Select Upgrade to apply firmware preferences to devices in the group. The device types that display will vary based on the device types that were selected on the Groups > Basic page. 4.
7. Browse to the AMP Setup > General page. 8. In the General section, select the desired group from the Default Group drop down menu to make it the default. For more information about loading firmware on to an W-AirWave server, see "Loading Device Firmware Onto the WAirWave Server (optional)" on page 55. Comparing Device Groups You can compare two existing device groups with a detailed line-item comparison.
Figure 47: Comparing Two Devices Groups on the Groups > List > Compare Page (Partial View) 3. Note the following factors when using the Compare page: l The Compare page can be very long or very abbreviated, depending on how many configurations the device groups share or do not share. l When a configuration differs between two groups, the setting is flagged in red text for the group on the right. l The default setting of the Compare page is to highlight settings that differ between two groups.
Deleting a Group Perform the following steps to delete an existing Group from the W-AirWave database: 1. Browse to the Groups > List configuration page. 2. Ensure that the group you wish to delete is not marked as the default group. (See the AMP Setup > General page.) W-AirWave does not permit you to delete the current default group. 3. Ensure that there are no devices in the group that you want to delete. W-AirWave does not permit you to delete a group that still contains managed devices.
Figure 48: Groups > Basic Configuration Change Confirmation Page Illustration 5. W-AirWave displays a Configuration Change screen confirming the changes that will be applied to the group's settings. 6. There are several action possibilities from within this confirmation configuration page. l Apply Changes Now — Applies the changes immediately to access points within the group. If you wish to edit multiple groups, you must use the Preview button. You cannot apply Dell Config changes to other groups.
Modifying Multiple Devices W-AirWave provides a very powerful utility that modifies all APs or a subset of access points unrelated to the typical W-AirWave group construct. This utility provides the ability to delete simultaneously multiple devices, migrate multiple devices to another group and/or folder, update credentials and optimize channels. Perform these steps to modify multiple devices. 1.
Table 71: Modify Multiple Devices Section Fields and Default Values (Continued) Action Description Poll selected devices Click Poll Now to poll selected devices for current user count and bandwidth data. This action overrides default poll settings for the group. Polling numerous devices may create a temporary performance load on your W-AirWave server. Audit selected devices Fetches the current configuration from the device and compares it to the desired W-AirWave configuration.
Table 71: Modify Multiple Devices Section Fields and Default Values (Continued) Action Description Dell Networking W AP Group When you select this option then click Update Dell Networking W AP Group, a new window opens that allows you to assign the devices to a new AP group. Dell Networking W Instant Virtual Controller Variables Opens the Variable Editor page for selected Dell Networking W Instant APs.
Figure 50: Groups > List Page Illustration Creating a Global Group To configure a group as a Global Group: 1. Navigate to Groups > List. 2. Select a the group from the Groups table. 3. Navigate to Groups > Basic. The Global Groups section of this page contains the Use Global Group option. 4. Select Yes for the Use Global Group option. When the change is saved and applied, the group will have a checkbox next to fields. Figure 51 illustrates this configuration page.
4. In the Global Groups section of this page, click the Global Group drop-down list and select a global group. 5. Select Save and Apply to make the changes permanent. Figure 52 illustrates this page. Figure 52: Subscribe to a Global Group Once the configuration is pushed, the unchecked fields from the Global Group appears on the Subscriber Group as static values and settings.
6. Click Add. Figure 53 shows an example of adding a scan network called Accounting Network, where the network IP address is 10.52.0.0, and the subnet mask is 255.255.255.0. Figure 53: Adding a Scan Network W-AirWave displays all network segments in the Network section of the Device Setup > Discover page. Adding Credentials for Scanning The next step in SNMP/HTTP device discovery is to define the scan credentials that govern scanning of a given network.
a. If you selected SNMPv1 or SNMPv2, then define and confirm the Community String to be used during scanning. In this section, the community string used can be either read-only or read/write because WAirWave only uses it for discovering devices. To bring devices under management, W-AirWave uses the credentials supplied in the Device Setup > Communication SNMP section. Once the device is authorized, it will use the non-scanning credentials. b.
Figure 55: Device Setup > Discover Executing a Scan Illustration 2. Check the box next to the scan(s) that you would like to execute. 3. Select Scan to execute the selected scans, and the scan immediately begins. The Stop column indicates the scan is In Progress. Clicking this column heading will stop the scan(s). 4. For future scans, select the Show Scheduling Options link and enter the desired date and time to schedule a future scan. 5.
Figure 56: APs/Devices > New Page Illustration What Next? l To authorize one or more devices to a group, see "Management Modes" on page 128. l To delete a device altogether from W-AirWave, select the corresponding check box for each device, and select Delete. l Dell Networking W-Series thin APs can have Dell Networking W AP Groups specified, and Cisco thin APs can have LWAPP AP Groups specified when they are authorized.
2. Select the group and folder to which the device will be added from the drop-down menu (the default group appears at the top of the Group listing). Devices cannot be added to a Global Group; groups designated as Global Groups cannot contain access points. 3. Select either the Monitor Only or the Manage Read/Write radio button and select Add.
Table 73: Device Communication and Location Fields and Default Values (Continued) Setting Default Description SNMPv3 Username Taken from Device Setup > Communication If you are going to manage configuration for the device, this field provides a read-write user account (SNMP, HTTP, and Telnet) within the Cisco Security System for access to existing APs. W-AirWave initially uses this user name and password combination to control the Cisco AP.
Figure 57: Selecting the Device 2. Select Add, then enter the device communications and location settings for the new device on the Add page (see Table 73 for information about the settings). 3. In the Location field, select the appropriate Group and Folder for the device. 4. At the bottom of the page, select either the Monitor Only or Management read/write radio button. The choice depends on whether or not you wish to overwrite the Group settings for the device being added.
l SNMP Port You can download a CSV file and customize it as you like. 1. To import a CSV file, go to the Device Setup > Add page. 2. Select the Import Devices via CSV link. The Upload a list of devices page displays. See Figure 58. Figure 58: Device Setup > Add > Import Devices via CSV Page Illustration 3. Select a group and folder into which to import the list of devices. 4. Click the Browse button, and select the CSV list file on your computer. 5.
Auditing Device Configuration When you have added a newly discovered device successfully to a Group in Monitor mode, the next step is to verify device configuration status. Determine whether any changes will be applied to that device when you convert it to Managed read/write mode. W-AirWave uses SNMP or Telnet to read a device’s configuration. SNMP is used for Cisco controllers. Dell Networking W-Series devices and wired routers and switches use Telnet/SSH to read device configuration.
Put devices in Monitor Only mode when they are added to a newly established device group. This avoids overwriting any important existing configuration settings. Before you set the management mode for the device, verify that no unexpected or undesired configuration changes will be made to the devices. You can put devices in Manage Read/Write mode using the APs/Devices > Manage or the Modify these devices link on any list page.
Figure 60: APs/Devices > New Page Illustration Unignoring a Device Perform these steps to return an ignored device to a managed status. 1. To view all devices that are ignored, go to the APs/Devices > Ignored page, illustrated in Figure 61.
the following steps to troubleshoot this scenario. 1. Select the Name of the down device in the list of devices on the APs/Devices > List or APs/Devices > Down page. This automatically directs you to the APs/Device > Monitor page for that device. 2. Locate the Status field in the Device Info section. If the Status is Down, it includes a description of the cause of the problem.
4. If the credentials are incorrect, return to the Device Communications area on the APs/Devices > Manage page. Enter the appropriate credentials, and select Apply. 5. Return to the APs/Devices > List page to see if the device appears with a Status of Up.
Figure 62: Monitoring Page Top Level Data Common to All Device Types Alert Summary The Alert Summary table shown in Figure 63 appears at the bottom of the APs/Devices > Monitoring page for all device types, and lists information for AMP Alerts, Intrusion Detection System (IDS) Events and RADIUS issues. Click any of these table entries to view a detailed summary of alerts for that alert type.
Table 75: APs/Devices > Monitor > Recent AMP Events Fields and Default Values Field Description Time Displays the day and time the event was recorded. User Displays the user that triggered the event. Configuration changes are logged as the W-AirWave user that submitted them. Automated W-AirWave events are logged as the System user. Event Displays a short text description of the event.
Expanding folders If you want to see every device in a folder, select Expand folders to show all devices. When you expand a folder, W-AirWave displays information about all of the devices in the folder in the Devices List. For example, if you select the Top folder and then click Down in the navigation bar, W-AirWave displays all the down devices in the Top folder.
Field Description Firmware Displays the firmware version running on the AP. Newer AirMesh APs include the new bootloader APBoot. W-AirWave helps to identify the new AirMesh APs from the old SKUs by displaying the bootloader information here. Licenses (Appears for Dellcontrollers) Selecting this link opens a pop-up window that lists the built-in licenses as well as other installed licenses for this controller. This also shows whether any license has expired.
Field Description Quick Links Open controller UI : A drop-down menu that allows you to jump to the controller’s WebUI in a new window. For Dellcontrollers, if Single Sign-On is enabled for your role in W-AirWave and you have access to this controller, you will not have to enter the credentials for this controller again after selecting this link. Run a command: A drop-down menu with a list of CLI commands you can run directly from the APs/Devices > Monitor page.
Table 77: APs/Devices > Monitor > Radio Fields and Descriptions (Continued) Field Description Mesh Links * The total number of mesh links to the device including uplinks and downlinks. Role Whether the radio acts as a Mesh Node or Access Active SSIDs The SSID(s) of the radio. *These fields are only available for mesh APs. To see an example of mesh monitoring, see "Monitoring Mesh Devices" on page 146.
Figure 66: Interactive graphs for a Dell controller Table 79 describes the graphs on this page. Table 79: APs/Devices > Monitor Graphical Data Graph Description Clients Formerly Users. Shows the max and average client count reported by the device radios for a configurable period of time. User count for controllers are the sum of the user count on the associated APs. Check boxes below the graph can be used to limit the data displayed. Usage Formerly Bandwidth.
Table 80: APs/Devices > Monitor > Connected Clients Fields and Default Values Field Description Username Provides the name of the User associated to the AP. W-AirWave gathers this data in a variety of ways. It can be taken from RADIUS accounting data or traps. Device Type The type of device the user is using as determined by the Device Type Rules set up by an administrator in AMP Setup > Device Type Setup. For more information, refer to "Setting Up Device Types" on page 59.
Table 80: APs/Devices > Monitor > Connected Clients Fields and Default Values (Continued) Field Description Location Displays the VisualRF box that allows users to view features including heatmap for a device and location history for a user. LAN IP Addresses Displays the IP assigned to the user MAC. This information is not always available. W-AirWave LAN Hostnames The DNS hostname(s) broadcast by the client. This column can accommodate multiple hostnames for a client if it has both IPv4 and IPv6.
An AP configured with ARM will automatically adjust to a better channel if it reaches a configured threshold for noise, MAC errors, or PHY errors; additionally, it can attenuate transmit power and switch between radio modes as needed. View additional ARM or AirMatch statistics from Dell Networking W-Series controllers via the Radio Statistics page by selecting a radio, clicking the Run a command drop-down menu and choosing a command, as illustrated in Figure 68.
802.11 Radio Counters Summary This table appears for radios with 802.11 counters and summarizes the number of times an expected acknowledgment frame was not received, the number of duplicate frames, the number of frames containing Frame Check Sequence (FCS) errors, and the number of frame/packet transmission retries and failures. These aggregate error counts are broken down by Current, Last Hour, Last Day, and Last Week time frames, as illustrated in Figure 70. Figure 70: 802.
Table 82: Radio Statistics Interactive Graphs Descriptions (Continued) Graph Title Description Radio Power A line graph that displays the average and maximum radio transmit power, between 0 and 30 dBm, over the time range set in the slider. You can adjust the transmit power manually in the APs/Devices > Manage page for this radio’s AP, or enable ARM on Dell APs to dynamically adjust the power toward your acceptable Coverage Index as needed.
Figure 72: ARM Events Table Illustration The columns and values are described in Table 83. Table 83: ARM Events table Columns and Values Column Description Time The time of the ARM event. Trap Type The type of trap that delivered the change information. Current ARM trap types that display in W-AirWave are: l Power Change l Mode Change l Channel Change Values that display in the following columns depend on the Trap Type.
Figure 73: Detected Interfering Devices Table Illustration Possible device types for the Detected Interfering Devices table include: l Audio Device Fixed Freq l Bluetooth l Cordless Base Freq Hopper l Cordless Phone Fixed Freq l Cordless Phone Freq Hopper l Generic Fixed Freq l Generic Freq Hopper l Microwave l Microwave Inverter l Unknown l Video Device Fixed Freq l Wi-Fi l XBox Freq Hopper Active BSSIDs Table The Active BSSIDs table maps the BSSIDs on a radio with the SSID it br
Figure 75: APs/Devices > Monitor page for a Mesh Device These fields are described in detail in "Viewing Device Monitoring Statistics" on page 1. Setting up Spectrum Analysis The spectrum analysis software modules available on many Dell Networking W-Series APs can examine the radio frequency (RF) environment in which the Wi-Fi network is operating, identify interference and classify its sources. The spectrum analyzer is used in conjunction with Dell's Adaptive Radio Management (ARM) technology.
Spectrum Configurations and Prerequisites The following prerequisites must be in place to configure an AP to run in Spectrum mode in W-AirWave: l The AP must be in Manage Read/Write mode. l The AP’s associated controller must have an RFprotect license and must be running ArubaOS 6.0 or later. l Dell Networking W GUI Config must be enabled for that AP’s group in the Groups > Basic page.
Figure 76: Spectrum mode in Controller Config The above steps will use the defaults in the referenced Spectrum Profile. In most cases, you should not change the settings in the default profile. If you must change the defaults, however, navigate to Groups > Controller Config > Profiles > RF > 802.11a/g Radio > Spectrum page, and create a new Spectrum profile with nondefault settings.
Figure 77: Spectrum Analysis on Controller Dashboard To disable Spectrum mode on this individual AP after it has collected data, return to the APs/Devices > Manage page for this AP and set the Spectrum Override field back to No. Configuring a Controller to use the Spectrum Profile You can use W-AirWave to customize individual fields in the profile instance used by a particular controller without having to create new Dell Networking W AP groups and new radio profiles.
3. In the Profile drop-down menu, select the Spectrum Profile type. 4. In the Profile Instance drop-down menu, select the instance of the Spectrum profile used by the controller. 5. In the Field drop-down menu, select the setting you would like to change (such as an Age-Out setting or a Spectrum Band), and enter the overriding value below it. 6. Select Add to save your changes. 7. Repeat this process to create additional overrides for this controller. 8. When you have finished, select Save and Apply.
Figure 79: Monitoring Page for a Switch Monitoring Wired Interfaces All managed wired devices also include interface-specific data on the APs/Devices > Interfaces tab, as shown in Figure 80. Dell Networking W-AirWave 8.2.
Figure 80: APs/Devices > Interfaces Page for Wired Devices (partial view) . The Interfaces page includes a summary of all the device interface, including Up/Down status, client and bandwidth Information. For stacked switches, the master switch displays information for the interfaces of all the members, including its own. The physical and the virtual interfaces are displayed in separate Physical Interfaces and Virtual Interfaces tables. VLANs are listed in the VLAN table below the interface tables.
Figure 81: Interface Statistics on the APs/Devices > Interface Monitoring Page Monitoring Wired Interfaces The Interface Monitoring page for a wired device is comprised of the following sections: l Interface Information l Usage and Interface Frame Counters graphs l Connected Clients l Wired Clients To go to the monitoring page for an interface, click the Interface link in the Physical or Virtual Interfaces tables on a switch, as shown Figure 82. Dell Networking W-AirWave 8.2.
Figure 82: Interface Monitoring Page for a Wired Device Specifics of the interface are in the Interface Information section, as depicted in Figure 83. Figure 83: Interface Information Bandwidth, and various standard and enterprise specific error counting information is displayed in the lower section in a tabbed graph, which are shown in "Interface Monitoring Page for a Wired Device" on page 155 above. Connected Clients, if any, are listed in a table below the interactive graphs.
t Mobility Master and all the controllers should be managed from the same W-AirWave server, and the controller clusters must be running Dell Networking W-Series ArubaOS 8.0.1 or later. Figure 84: Controller Clusters Dashboard Sorting and Filtering Controller Cluster Data Select any column heading in the Clusters table to sort the table by that value. Enter a text into the column search fields to filter the results.
User capacity. This graph shows the percentage of a cluster's total client capacity currently in use, as well as the percentage of client capacity currently in use on each individual controller in the cluster. l Hover your mouse over any section of these graphs to view detailed statistics for that point in the graph. To change the time interval displayed in this graphic, click the schedule toolbar above the Client Capacity graph.
Figure 86: APs/Devices > Monitor page for an AP in a Controller Cluster Using Topology W-AirWave looks at the devices and links in your network and then puts them in an interactive topology map. Nodes on the map can include access points, switches, wireless controllers, and routers. By default, access points are hidden from map view so you can visualize your switching infrastructure. Topology provides shortcuts to monitoring pages, interface information, and W-AirWave folders.
l Drag and drop a node (in mesh and planetary views). For information about views, see "Change the Layout" on page 159 Topology puts a bird's eye view in the lower-right corner of the map. As you move around in map view, you can see your location in the topology map in this view from above. Change the Root Node The first thing you might want to do is change the root node that W-AirWave places at the top of the topology map. To change the root node, right-click the device and select Set as Root.
Figure 89: Search for Device After locating the device, W-AirWave centers the device on the map, highlighting the icon in orange, and displays details about the device in the right pane. Figure 90: Search Result At a glance, you can see the device status and health from these details. For more information, see "Using Topology" on page 158 and "Status Icons" on page 163.
Figure 92: Alert Messages Take Action from Quick Links Topology provides access to monitoring information from quick links in tooltips and device details in the right pane. Tooltips Tooltips provide quick links to the monitoring page for the device or the switch interface. Tooltips also display potential problems on a device. Alerts are colored orange in the tooltip. To see tooltips l Hover your mouse over a node in the topology map. l Hover your mouse over the connection between two switches.
Figure 93: Additional Details of the Connected Devices and Switch Interface Filter the Map You can quickly change the topology map to monitor and visualize your network by applying filters. By default, W-AirWave hides access points from the topology map. To see access points, select AP from the filter list. To apply a filter: 1. Select Filter from the task pane. Figure 94: Filtering Devices 2. Hide or unhide the devices based on device type. The topology map displays only selected device types.
Figure 95: Filtering VLANs Status Icons The colored icons show device status, number of rogues, CPU and memory utilization, and bandwidth usage. Green generally means everything is good, yellow is average, and orange requires your attention. Table 85: Topology Status Icons Icon Meaning There are no alerts or detected rogues. Health indicators are: l l Node: more than 25% memory is available and less than 75% CPU is used. Link: less than 70 Mbps bandwidth is used.
l "Moving a Device from Monitor Only to Manage Read/Write Mode" on page 164 l "Configuring AP Settings" on page 165 l "Setting a Maintenance Window for a Device" on page 173 l "Configuring Device Interfaces for Switches" on page 173 l "Individual Device Support and Firmware Upgrades" on page 175 While most device configuration settings can be efficiently managed by W-AirWave at a Group level, certain settings must be managed at the individual device level.
Figure 96: APs/Devices > Manage > General Section Illustration 3. Select Manage Read/Write on the Management Mode field. 4. Select Save and Apply, then Confirm Edit on the confirmation page to retain these settings and to push configuration to the device. 5. For device configuration changes that require the device to reboot, use the Schedule function to push the changes at a time when WLAN users will not be affected. 6.
Figure 97: APs/Devices > Manage Page Illustration (partial view) If any changes are scheduled for this AP, they appear in a Scheduled Changes section at the top of the page above the other fields. The linked name of the job takes you to its System > Configuration Change Job Detail page. 2. Locate the General section for information about the AP’s current status. Table 86 describes the fields, information, and settings.
Table 86: APs/Devices > Manage > General Fields and Descriptions (Continued) Field Description Type Displays the type of AP. Controller Links to the controller that is monitoring this device. NOTE: This field is visible for APs. Firmware Shows the device firmware version. NOTE: This field is visible for controllers and switches. Group Links to the Group > Monitoring page for the AP. Template Displays the name of the group template currently configuring the AP.
Table 87: APs/Devices > Manage > Settings Fields and Default Values (Continued) Setting Default Device Type Description Domain Name None IOS Field populated upon initial device discovery or upon refreshing settings. Enable this option from AMP Setup > Network page to display this field on the APs/Devices > Manage page, with fully-qualified domain names for IOS APs. This field is used in conjunction with Domain variable in IOS templates. Mesh ID None Mesh Text field for entering the Mesh ID.
Table 87: APs/Devices > Manage > Settings Fields and Default Values (Continued) Setting Default Device Type Description Organization Read from Device Instant The Organization string of the W-IAP. Dell AP Group default All Specifies the Dell AP Group in which this devices resides. Administrative Status Enable All Enables or disables administrative mode for the device. Mode Local All Designates the mode in which the device should operate.
Table 88: Additional Settings (Continued) Setting Default Device Type Description Receive Antenna Diversity Cisco Drop-down menu for the receive antenna provides three options: Diversity —Device will use the antenna that receives the best signal. If the device has two fixed (non-removable) antennas, the Diversity setting should be used for both receive and transmit antennas.
Table 88: Additional Settings (Continued) Setting Default Device Type Description Transmit Power Level Highest power level supported by the radio in the regulatory domain (country) Cisco, Symbol, Proxim AP600, AP-700, AP-2000 (802.11g) Determines the power level of radio transmission. Government regulations define the highest allowable power level for radio devices. This setting must conform to established standards for the country in which you use the device.
Table 89: APs/Devices > Manage > Template Options Fields and Default Values Setting Default Device Type Description WDS Role Client Cisco IOS Wireless LAN Controllers only Set the WDS role for this AP. Select Master for the WDS master APs and Client for the WDS Client. Once this is done you can use the %if wds_role= % to push the client, master, or backup lines to appropriate WDS APs.
Setting a Maintenance Window for a Device W-AirWave can automate the manual action of putting multiple devices into Manage mode at once so that changes can be applied, and after the maintenance period is over, the devices automatically revert to MonitorOnly mode. Maintenance windows can be set as a one-time or recurring event on the APs/Devices > Manage and Groups > Basic pages. You can also use the Modify Devices link to add or delete maintenance windows to or from multiple selected devices at once.
Figure 99: Editing a Switch Interface To configure interfaces as a group, select Edit Interfaces above the Physical or Virtual Interfaces table as shown in Figure 100. Figure 100: Edit Multiple Interfaces You will remain on the same page, but will have the option to make changes to the most commonly edited settings in batch mode, as shown in Figure 101.
Individual Device Support and Firmware Upgrades Perform the following steps to configure AP communication settings for individual Dell Networking W-Series controllers. The available device communication fields will vary, depending on the brand and model of the AP. 1. Locate the Device Communication area on the APs/Devices > Manage page. 2. Specify the credentials to be used to manage the AP. Figure 102 illustrates this page. Figure 102: APs/Devices > Manage > Device Communication 3.
Home > Documentation page for a list of the W-AirWave-supported devices that can perform firmware upgrades. In most cases, you cannot upgrade firmware directly on thin APs. Figure 103 illustrates the page that opens and Table 91 describes the settings and default values. Table 91: Update Firmware Fields and Default Values Setting Default Description Desired Version None Specifies the firmware to be used in the upgrade.
Figure 103: APs/Devices > Manage Firmware Upgrades Initiating a firmware upgrade will change the Firmware Status column for the device to Pending in APs/Devices > List. You can review the status of all recent firmware upgrade jobs in System > Firmware Upgrade Jobs. 177 | Configuring and Managing Devices Dell Networking W-AirWave 8.2.
Chapter 4 Creating and Using Templates This section provides an overview and several tasks supporting the use of device configuration templates in WAirWave, and contains the following topics: l "Group Templates" on page 178 l "Viewing and Adding Templates" on page 180 l "Configuring General Template Files and Variables" on page 184 l "Configuring Templates for Dell Networking W-Instant" on page 189 l "Configuring Templates for AirMesh" on page 190 l "Configuring Cisco IOS Templates" on page 191
Template Variables Variables in templates configure device-specific properties, such as name, IP address and channel. Variables can also be used to configure group-level properties, such as SSID and RADIUS server, which may differ from one group to the next.
l %password% l %power% l %radius_server_ip% l %rf_band% l %server_cert_checkstum% l %syslocation% l %syslog_server% The variable settings correspond to device-specific values on the APs/Devices > Manage configuration page for the specific AP that is getting configured. Changes made on the other Group pages (Radio, Security, VLANs, SSIDs, and so forth) are not applied to any APs that are configured by templates.
Table 92: Groups > Templates Fields and Default Values (Continued) Setting Description Device Type Displays the template that applies to APs or devices of the specified type. If (Any Model) is selected for a vendor, then the template applies to all models from that vendor that do not have a version-specific template defined. If there are two templates that might apply to a device, the template with the most restrictions takes precedence. Status Displays the status of the template.
Figure 105: Groups > Templates > Add Template Page Illustration The settings for the Add a Template page are described in Table 93. Note that the fields can vary based on the Group. Table 93: Groups > Templates > Add Template Fields and Default Values Setting Default Description Use Global Template No Uses a global template that has been previously configured on the Groups > Templates configuration page. Available templates will appear in the drop-down menu.
Table 93: Groups > Templates > Add Template Fields and Default Values (Continued) Setting Default Description AP Type Cisco IOS (Any Model) Determines that the template applies to APs or devices of the specified type. If Cisco IOS (Any Model) is selected, the template applies to all IOS APs that do not have a version specific template specified.
Table 93: Groups > Templates > Add Template Fields and Default Values (Continued) Setting Default Description enable Password None If the template is updating the enable password on the AP, enter the new enable password W-AirWave should use here. W-AirWave updates the credentials it is using to communicate to the device after the device has been managed. SNMPv3 Username None If the template is updating the SNMPv3 user name on the AP, enter the new SNMP user name here.
5. Select the model AP from the drop-down list, and select Fetch. 6. W-AirWave automatically attempts to replace some values from the configuration of that AP with variables to enable AP-specific options to be set on an AP-by-AP basis. Refer to "Using Template Syntax" on page 186 These variables are always encapsulated between % signs. On the right side of the configuration page is the Additional Variables section. This section lists all available variables for your template.
no service pad actual ntp clock-period 2861929 actual ntp server 209.172.117.194 radius-server attribute 32 include-in-access-req format %h … 10.Once the template is correct and all mismatches are verified on the APs/Devices > Audit configuration page, use the Modify Devices link on the Groups > Monitor configuration page to place the desired devices into Management mode. This removes the APs from Monitor mode (read-only) and instructs the AP to pull down its new startup configuration file from W-AirWave.
config file and the startup-config file as "configuration mismatches.” Lines enclosed in are included in the AP startup-config file but W-AirWave ignores them when verifying configurations. Lines enclosed in cause W-AirWave to ignore those lines during configuration verification.
Table 94: Conditional Variable Syntax Components Variable Values Meaning interface Dot11Radio0 2.4GHz radio module is installed Dot11Radio1 5GHz external radio module is installed a Installed 5GHz radio module is 802.11a b Installed 2.4GHz radio module is 802.11b only g Installed 2.4GHz radio module is 802.11g capable backup The WDS role of the AP is the value selected in the drop down menu on the APs/Devices > Manage configuration page for the device.
Table 95: Substitution Variables in Templates (Continued) Variable Meaning Command Suppressed Default gateway Gateway ip default-gateway %gateway% - antenna_ receive Receive antenna antenna receive %antenna_ receive% diversity antenna_transmit Transmit antenna antenna transmit %antenna_ transmit% diversity cck_power 802.11g radio module CCK power level power local cck %cck_power% maximum ofdm_power 802.
virtual-controller-ip %ip_address_a_b_c%.3 name %hostname% %if organization% organization %organization% %endif% syslog-server 216.31.249.235 syslog-level debug terminal-access clock timezone Pacific-Time -08 00 rf-band 5.
psk ascii 5d4f50485e4f5048ed1da60b85f2784d6bbf16442fdcbfc06aeb4460d98263f5 neighbor-list %neighbor_list% service avt %avt_ingress_interface% %avt_ingress_ip% buffer_time 200 mode %avt_mode% W-AirWave displays a warning if AirMesh APs attempting to either upgrade or push configurations lack the necessary write permissions. Configuring Cisco IOS Templates Cisco IOS access points have hundreds of configurable settings. W-AirWave enables you to control them via the Groups > Templates configuration page.
The following example sets an AP as a WDS Master with the following lines: %if wds_role=master% aaa authentication login method_wds group wds aaa group server radius wds server 10.2.25.
Configuring Single and Dual-Radio APs via a Single IOS Template To configure single and dual-radio APs using the same IOS config template, you can use the interface variable within the %IF…% construct.
version 1.4 ! ! aaa authentication login default local none service prompt crash-info ! network-element-id RFS4000 ! user name admin password 1 5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8 user name admin privilege superuser user name operator password 1 fe96dd39756ac41b74283a9292652d366d73931f ! ! access-list 100 permit ip 192.168.0.
radio %radio_index% radio-number %radio_number% radio %radio_index% description %description% %if radio_type=11a% radio %radio_index% speed basic6 9 basic12 18 basic24 36 48 54 radio %radio_index% antenna-mode primary radio %radio_index% self-heal-offset 1 radio %radio_index% beacon-interval 99 radio %radio_index% rts-threshold 2345 radio %radio_index% max-mobile-units 25 radio %radio_index% admission-control voice max-perc 76 radio %radio_index% admission-control voice res-roam-perc 11 radio %radio_index%
Figure 106: Group > Templates > Add Page Illustration 4. Use the drop-down menu to select a device from which to build the global template and click the Fetch button. The menus are populated with all devices that are contained in any group that subscribes to the global group. The fetched configuration populates the template field. Global template variables can be configured with the Add button in the Template Variables box, illustrated in Figure 107.
template. The CSV file must contain columns for Group Name and Variable Name. All fields must be completed. n Group Name—the name of the subscriber group that you wish to update. n Variable Name—the name of the group template variable you wish to update. n Variable Value—the value to set. For example, for a global template with a variable called "ssid_1", the CSV file might resemble what follows: Group Name, ssid_1 Subscriber 1, Value 0 8.
Chapter 5 Using RAPIDS and Rogue Classification This chapter provides an overview to rogue device and IDS event detection, alerting, and analysis using RAPIDS, and contains the following sections: l "Introduction to RAPIDS" on page 198 l "Viewing Rogues on the RAPIDS > List Page" on page 209 l "Setting Up RAPIDS" on page 200 l "Defining RAPIDS Rules" on page 204 l "Score Override " on page 214 l "Using the Audit Log" on page 215 l "Additional Resources " on page 216 Introduction to RAPIDS Rog
Viewing Overall Network Health on RAPIDS > Overview The RAPIDS > Overview page displays a page of RAPIDS summary information (see Figure 108). Table 96 defines the summary information that appears on the page. Figure 108: RAPIDS > Overview Page Illustration (partial view) Table 96: RAPIDS > Overview Fields and Descriptions Summary Description Device Count by RAPIDS Classification A pie chart of rogue device percentages by RAPIDS classification.
Table 96: RAPIDS > Overview Fields and Descriptions (Continued) Summary Description RAPIDS Classification A summary list with details of the statistics depicted in the Device Count by RAPIDS Classification pie chart. Click the linked classification name to be taken to a filtered rogue list. RAPIDS Devices by OS A pie chart of RAPIDS percentages by the detected operating system. Operating System Detected operating systems represented in this summary listing.
Figure 109: RAPIDS > Setup Page Illustration 201 | Using RAPIDS and Rogue Classification Dell Networking W-AirWave 8.2.
Table 97: RAPIDS > Setup > Basic Configuration Fields and Default Values Field Default Description ARP IP Match Timeout (1168 hours) 24 If you have routers and switches on W-AirWave, and it's scanning them for ARP tables, this can assign a rogue IP address information. This timeout specifies how recent that information needs to be for the IP address to be considered valid. Note that the default ARP poll period is long (several hours).
WMS Offload is not required to manage containment in W-AirWave. Table 99: RAPIDS > Setup > Containment Options Fields and Default Values Field Default Description Manage rogue AP containment No Specifies whether RAPIDS will manage the classification of rogue APs on Cisco WLC and Dell controllers to match the classification of those rogues in RAPIDS. This includes the "Contained" classification. If this setting is enabled, then the Maximum number of APs to contain a rogue setting can be configured.
Additional Settings :Use the AMP Setup > Roles > Add/Edit Role page to define the ability to use RAPIDS by user role. Refer to Creating AirWaveOV3600 User Roles. Defining RAPIDS Rules The RAPIDS > Rules page is one of the core components of RAPIDS. This feature allows you to define rules by which any detected device on the network is classified. This section describes how to define, use, and monitor RAPIDS rules, provides examples of such rules, and demonstrates how they are helpful.
For additional information about WMS Offload, refer to the Dell Networking W-AirWave 8.2.4 Best Practices Guide at dell.com/support/manuals. Device OUI Score The Organizationally Unique Identifier (OUI) score is based on the LAN MAC address of a device. RAPIDS can be configured to poll your routers and switches for the bridge forwarding tables. RAPIDS then takes the MAC addresses from those tables and runs them through a proprietary database to derive the OUI score.
Figure 110: RAPIDS > Rules Page Illustration Table 103 defines the fields in the RAPIDS > Rules page. Table 103: RAPIDS > Rules Page Field Description Default Classification This drop down specifies the classification that a rogue device receives when it does not match any rules. Add New RAPIDS Classification Rule Select this button to create a RAPIDS classification rule. Rule Name Displays the name of any rule that has been configured.
Figure 111: Classification Rule Page Fill in the settings described in Table 103 then select an option from the drop down menu. Table 104 defines the drop down menu options that are at the bottom left of the RAPIDS Classification Rule dialog box (see Figure 111). After all rule settings are defined, select Add. The new rule automatically appears in the RAPIDS > Rules page.
Table 104: Properties Drop Down Menu (Continued) Option Description Wireline Properties Detected on LAN Rogue is detected on the wired network. Select Yes or No. Fingerprint Scan Rogue matches fingerprint parameters. IP Address Rogue matches a specified IP address or subnet. Enter IP address or subnet information as explained by the fields. OUI Score Rogue matches manufacturer OUI criteria. You can specify minimum and maximum OUI score settings from two drop-down lists.
This rule classifies a device as a rogue when the SSID for a given device is your SSID and is not an Ad-Hoc device. Windows XP automatically tries to create an Ad-hoc network if it can not find the SSID for which it is searching. This means that user’s laptops on your network may appear as Ad-Hoc devices that are broadcasting your SSID. If this happens too frequently, you can restrict the rule to apply to non-ad-hoc devices.
Figure 112: RAPIDS > List Page Illustration (partial view) Table 105 details the column information displayed in Figure 112. For additional information about RAPIDS rules, refer to "Defining RAPIDS Rules" on page 204. Table 105: RAPIDS > List Column Definitions Column Description Ack Displays whether or not the rogue device has been acknowledged. Devices can be acknowledged manually or you can configure RAPIDS so that manually classifying rogues will automatically acknowledges them.
Table 105: RAPIDS > List Column Definitions (Continued) Column Description WMS Classification Date The date that WMS set the classification. Confidence The confidence level of the suspected rogue. How confidence is calculated varies based on the version of ArubaOS. When an ArubaOS controller sees evidence that a device might be on the wire, it will up the confidence level. If ArubaOS is completely certain that it is on the wire, it gets classified as a rogue.
Table 105: RAPIDS > List Column Definitions (Continued) Column Description OS This field displays the OS of the device, as known. OS is the result of a running an OS port scan on a device. An IP addresses is required to run an OS scan. The OS reported here is based on the results of the scan. Model Displays the model of rogue device, if known. This is determined with a fingerprint scan, and this information may not always be available. IP Address Displays the IP address of the rogue device.
Figure 113: RAPIDS > Detail Page Illustration Important things to remember regarding the information in the device detail page are: l Users with the role of Admin can see all rogue AP devices. l Active rogue clients associated with this AP are listed in the Current Rogue Client Associations table. Selecting a linked MAC address will take you to the Clients > Client Detail page, where you can view fingerprinting and device details.
1. Select the Identify OS for Suspected Rogues option if an IP address is available to obtain operating system information using an nmap scan. Note that if you are running wireline security software on your network, it may identify your W-AirWave as a threat, which you can ignore. 2. Select the Ignore button if the rogue device is to be ignored. Ignored devices will not trigger alerts if they are rediscovered or reclassified. 3.
Figure 114: RAPIDS > Score Override Page 2. Click Add to create a new override or select the pencil icon next to an existing override to edit that override. The Score Override add or edit page appears (Figure 115). Figure 115: Add/Edit Score Override Page Table 106: RAPIDS > Add/Edit Score Override Page Fields Field Description MAC Address Prefix Use this field to define the OUI prefix to be re-scored.
Figure 116: Audit Log Page Illustration Additional Resources The following W-AirWave tools support RAPIDS: l System Triggers and Alerts—Triggers and Alerts that are associated with rogue devices follow the classification-based system described in this chapter. For additional information about triggers that support rogue device detection, see to "Viewing, Delivering, and Responding to Triggers and Alerts" on page 229.
| Using RAPIDS and Rogue Classification Dell Networking W-AirWave 8.2.
Chapter 6 Performing Daily Administration in W-AirWave Daily WLAN administration often entails network monitoring, supporting WLAN and W-AirWave users, and monitoring W-AirWave system operations.
Table 107: Important Logs Log Description pgsql Logs database activity. error_log Reports problems with the web server. Also linked from the internal server error page that displays on the web page; send this log to Dell support whenever reporting an internal server error. maillog Applies in cases where emailed reports or alerts do not arrive at the intended recipient's address. radius Displays error messages associated with RADIUS accounting.
Table 108: System > Syslog & Traps Columns and Descriptions (Continued) Column Description AP Contains a link to the APs/Devices > Monitor page for a device other than the source device that was correlated from some data contained in the message (by LAN MAC, BSSID, or IP Address). Can be blank, and will only be a link if you have visibility to the device. Client Displays a user’s MAC address if one was found in the message. Can be blank, and will be a link if you have visibility to the user’s AP.
Table 109: Event Log Fields (Continued) Column Description User Type The W-AirWave user that triggered the event. When W-AirWave itself is responsible, System is displayed. Displays the Type of event recorded, which is one of four types, as follows: Device—An event localized to one specific device. l Group—A group-wide event. l System—A system-wide event. l NMS—An event triggered by an NMS server. (See "Integrating NMS Servers" on page 65 for more info.
Figure 119: Selecting the Type of Trigger 3. Select the severity level. 4. Select whether W-AirWave matches all or any trigger conditions, then click Add. In many cases, you must configure at least on condition setting. For more information about trigger conditions, see "Types of Triggers" on page 222. 5. Configure the trigger restrictions: l Folder. Limits the trigger to apply to devices in the selected folder. l Include Subfolders.
l "RADIUS Authentication Triggers" on page 228 l "RADIUS Accounting Triggers" on page 1 l "IDS Event Triggers" on page 228 l "Health Triggers" on page 229 Device Triggers To set a trigger for devices, click the Type drop-down list on the System > Triggers > Add page and select one of the device triggers described in Table 110 For more information on creating a device trigger for hardware errors, see "Triggers for hardware monitoring" on page 224.
Table 110: Device Triggers (Continued) Name Description and Conditions Device Event This trigger is used for alerting based on SNMP traps and syslog messages, which are displayed in System > Syslogs & Traps, APs/Devices > Monitor for affected devices, and in Clients > Client Detail.
Figure 121: Hardware Triggers Interface and Radio Triggers To set a trigger for interfaces and radios on monitored devices, click the Type drop-down list on the System > Triggers > Add page and select one of the interface or radio triggers described in Table 111. For more information on creating a new trigger, see "Creating New Triggers" on page 221. Table 111: Interface and Radio Triggers Name Description and Conditions Radio Down Indicates that a device’s radio is down on the network.
Table 111: Interface and Radio Triggers (Continued) Name Description and Conditions Channel Utilization Indicates that channel utilization has crossed particular thresholds. Available conditions are Interference (%), Radio Type, Time Busy (%), Time Receiving (%), and Time Transmitting (%). Radio Noise Floor Indicates that the Noise Floor dBM has exceeded a certain value for a specified period of time.
Table 112: Discovery Trigger Name Description and Conditions New Device Discovered This trigger type flags the discovery of a new AP, router, or switch connected to the network (an device that W-AirWave can monitor and configure).
Table 113: Client Triggers (Continued) Name Description and Conditions Inactive Tag This trigger type flags events in which an RFID tag has not been reported back to WAirWave by a controller for more than a certain number of hours. This trigger can be used to help identify inventory that might be lost or stolen. Set the time duration for this trigger type if not already completed.
Table 115: IDS Event Triggers (Continued) Name Description and Conditions Rogue Device Classified This trigger type indicates that a device has been discovered with the specified Rogue Score. Ad-hoc devices can be excluded automatically from this trigger by selecting Yes. See "Using RAPIDS and Rogue Classification" on page 198 for more information on score definitions and discovery methods. Once you choose this trigger type, select Add New Trigger Condition to create one or more conditions.
l Clients > Connected or Client Detail l System > Alerts Clicking any of the hyperlinks in the Type column opens a detailed view for the selected alert. Figure 124: Alert Summary on the APs/Devices > Monitor page For information about setting the severe alert threshold, see "Setting Severe Alert Warning Behavior" on page 27. Types of Alerts AMP Alerts Click the AMP Alerts link shown in Figure 124to open the AMP Alerts page.
RADIUS Events Click the RADIUS Authentication Issues link, or the RADIUS Accounting Issues link, shown in Figure 124 to open the RADIUS Issues page. This page includes a summary table that describes the event type, and the number of times that event occurred over the past 2 hours and the last 24 hours. The RADIUS Authentication issues table and the RADIUS Accounting issues table appear below the Summary table.
Table 117: System > Alerts Fields and Default Settings (Continued) Field Description Severity Displays the severity code associated with that trigger Details Displays additional details for alerts. Viewing Triggers W-AirWave provides default triggers to help you monitor your devices, hardware, and disk usage. Using syslog messages, W-AirWave monitors devices for hardware failures and alerts you to problems on the System > Triggers page, as shown in Figure 126.
Table 118: Triggers Fields and Descriptions (Continued) Field Description Logged Alert Visibility Indicates if the trigger is distributed according to how is it generated (triggering agent), or by the role with which it is associated. Suppress Until Acknowledged Options include: l No. A new alert will be created every time the trigger criteria are met. l Yes. An alert will be received the first time the criteria is met, and a new alert for the device is not created until the initial one is acknowledged.
For information about running a backup and restoring from a backup, see "AMP Command Line Interface" on page B. Viewing and Downloading Backups To view current W-AirWave backup files, go to the System > Backups page. Figure 127 illustrates this page. Figure 127: System > Backups Page Illustration To download a backup file, select the filename URL and the File Download pop up page appears. Regularly save the data backup file to another machine or media.
Figure 128: System > Configuration Change Jobs and System > Configuration Change Jobs Detail Monitoring Firmware Upgrade Jobs The System > Firmware Upgrade Jobs page displays a list of recent firmware upgrade jobs that have been initiated in the APs/Devices > Manage page or Modify Devices page for a controller or autonomous AP that supports firmware upgrades in W-AirWave.
l To view additional details about an individual upgrade job including the devices being upgraded, select the name of an upgrade job from the Name column to go to the System > Firmware Upgrade Job Detail page, illustrated in . From here you can click the device name to go to its APs/Devices > Monitor page, or the link under Firmware File column to go to the Device Setup > Upload Firmware & Files page. Refer also to "Loading Device Firmware Onto the W-AirWave Server (optional)" on page 55.
Table 119: System Performance Page Graphs (Continued) Field Description Memory The amount of physical RAM and Swap space seen by the operating system. Refer to the Dell Networking W-AirWave Server Sizing Guide at dell.com/support/manuals for hardware requirements. Kernel The version of the Linux kernel running on the box. Device Polling Displays some AP/Device polling statistics. Performance Graphs System Load Average The number of jobs currently waiting to be processed.
Table 119: System Performance Page Graphs (Continued) Field Description Usage by Protocol Displays the amount of traffic used by Telnet, HTTPS and SNMP used by your primary network interface (Eth0 being the most common). AMON Displays inbound packets, and inbound packet processing rates, message processing rates, PAPI CPU utilization, and PAPI packet loss in your network. NOTE: W-AirWave can use DTLS to secure AMON traffic.
Table 119: System Performance Page Graphs (Continued) Field Description Disk Space Pie charts that display the amount of used and free hard drive space for each partition. If a drive reaches over 80% full, you may want to lower the Historical Data Retention settings on the AMP Setup > General page or consider additional drive space.
Adding a Mobile Device Management Server for MobiControl 1. To add an MDM server to W-AirWave, navigate to AMP Setup > MDM Server and click Add. Complete the fields on this page. Table 120 describes the settings and default values: Table 120: AMP Setup > MDM Server > Add Fields and Descriptions Field Description Hostname/IP Address The address or DNS hostname configured for your MobiControl Web Console. Protocol Whether HTTP or HTTPS is to be used when polling the MDM server.
Monitoring Your Network Health To view your overall network health, navigate to Home > Overview. The top header of the page display the status of your network, while the navigation pane on the left side of the page allows you to navigate through the W-AirWave WebUI. Table 121 describes the sections and charts that appear in the Overview page.
Table 121: Home > Overview Sections and Charts (Continued) Section Description Quick Links The Quick Links section provides drop-down menus that enable you to move to the most common and frequently used pages in W-AirWave as follows: l Go to folder—This menu lists all folders defined in W-AirWave from the APs/Devices List page. See "Using Device Folders" on page 134. l Go to group—This menu lists all groups defined in W-AirWave, and enables you to display information for any or all of them.
Figure 131: AppRF Dashboard Each widget contains toggle buttons to switch between the following views: - List showing all the categories within the widget l - Donut chart representing the proportional usage of categories l - Usage graph displaying usage (in MB) over time l Widget Directives The AppRF dashboard displays each widget as a directive, containing the following functions: l List: List of categories available for each specific widget (for example, Application Categories: Social Media, Torre
n Web Reputation: Web reputation, indicating the safety of the site n Web Category: Website type n Destination: Number of destinations reached through the given category n User Role: Number of roles assigned to the user n Devices: Number of devices connected to the given category n User Name: Name of the user n Device MAC: MAC address of the user n WLANs: Number of WLANs to which the user is connected l Category Details: Under the Details page of each widget, you can select a category to vi
Call Quality Call quality is measured by a metric called the UCC score. This metric takes into account delay, jitter, and packet loss. W-AirWave obtains these metrics from RTCP messages sent from the client (if the client is capable of sending them). For audio calls, W-AirWave obtains these metrics from the Dell AP that inspects the RTP flows. The following table describes the UCC scores and quality indications.
Devices These graphs display information about the calls made by different device types, such as Windows 7, Mac OS X, iPhone, or Android devices. l Trend. This graph show the numbers of calls by each platform type over the selected time period. l Distribution. This chart shows the relative proportion of calls that originated form each device type. l Quality. This graph shows the numbers of calls at each quality level made by each device type.
Table 123: AP Details (Continued) Column Name Description Concurrent Poor Calls The number of poor calls occurring simultaneously with the call being viewed. Channel The channel used for the call. Channel Utilization The used channel's utilization as a percentage. Channel Interference The interference impacting the used channel as a percentage. Get Call Summary Use the Summary tab to see more call details and a graph displaying the quality of the call as it progressed.
Using the UCC Report The UCC report provides an overall look at UCC activity on your network in the specified time period. This information is displayed in a series of tables representing the top connectivity types, call types, application types, device types, folders, APs, and clients with the highest percentage of poor quality calls. Table 124: UCC Report Fields Field Description Quality Metric The metric used to determine the quality of calls.
Figure 135: Home > RF Performance You can click on a value in any of the graphs to view the associated list of clients. 249 | Performing Daily Administration in W-AirWave Dell Networking W-AirWave 8.2.
Figure 136: Drill down to view all clients When the client information is displayed, an additional drill down is available to view information for a specific client, device, or location. When you click on a user name in the Client page, the drill down takes you to the Clients > Diagnostics page. Navigate to the Clients > Client Details page for additional detailed information about the selected client.
Figure 137: The Home > RF Capacity page You can click on a bar in the upper graphs to view a pop up showing a detailed list of the devices that connected in the week before the RF Capacity page was run. This pop up includes additional drill downs to the device, the controller, and the folder. You can also search in this pop up. 251 | Performing Daily Administration in W-AirWave Dell Networking W-AirWave 8.2.
Figure 138: Example of 2.4 GHz radio pop up The plot points in the lower graph shows the number of clients that were connected during the peak utilization time along with the channel utilization percentage. You can select plot points in the lower graph to view detailed channel utilization information for the selected plot point.
1 day using the time-range options in the upper-right corner of this page, and W-AirWave will remember the new setting the next time the page is launched. The left graph shows client information - specifically the current and average number of clients over the last 40 weeks during the selected time range. The right graphs show usage information - specifically the current and average incoming and outgoing bits-per-second over the last 40 weeks during the selected time range.
Figure 141: Network Deviations Threshold How Standard Deviation is Calculated Plot lines may or may not display outside of the shaded, standard deviation range depending on the SD value specified from Thresholds button. Refer to the following example to review the way that standard deviation is calculated.
3. Select one of the following search methods: n Press Enter. You can change this default search method preference in the Home > User Info page. n Click the down arrow and select a method from the list of search options. n Click to see quick search results, showing connected clients, which might already be your default search method. Results include hypertext links to additional pages, and the Filter icon over some columns allows for additional filtering of search returns.
Figure 143: Home > License Page Illustration Adding licenses To add a license: 1. Open the email containing your license key, and select and copy the text of that license. 2. From the Home > License page, click Add. A pop up window opens. 3. Paste the text of the license into the pop up window, and click Add. The Dell End-User License Agreement appears. 4. Review the license agreement, then click I Accept. The newly added license displays in the License table.
Table 125: License Table Fields and Descriptions (Continued) Field Description IP Address IP address of the W-AirWave server using the license. This address is read directly from the license key. Days Remaining Remaining number of days on a trial license. Expiration Date Expiration date of the temporary or evaluation license. Valid Indicates that the license is valid and active.
Figure 144: Home > User Info Page Illustration Table 126 describes the settings on the User Information page. Table 126: Home > User Info Fields and Descriptions Field Description Top Header Stats Filter Level For Rogue Count Specifies the minimum classification that will cause a device to be included in the rogue count header information. More about the classifications can be found in "Controller Classification with WMS Offload" on page 204.
Table 126: Home > User Info Fields and Descriptions (Continued) Field Description Include Device Types Configures the types of devices that should be included in the header stats. If a device type is not selected then it will not be included in the header stats. Note: This field only appears if you selected Yes in Customize Header Columns.
l Email Address—Enter the email address to be used for alerts, triggers, and additional W-AirWave functions that support an email address. l Phone—Enter the area code and phone number, if desired. l Notes—Enter any additional text-based information that helps other W-AirWave users or administrators to understand the functions, roles, or other rights of the user being created. Supporting Multiple W-AirWave Servers You can monitor multiple W-AirWave servers using the Master Console.
Figure 145: Public Portal Page Illustration The Public Portal supports configuration of the iPhone interface, which can be configured using the Master Console W-AirWave page. Adding a Managed AMP with the Master Console Perform the following steps to add a managed W-AirWave console. 1. Navigate to the Home > Managed AMPs page. 2. Select the pencil icon to edit or reconfigure an existing AMP console, or select Add New Managed AMP to create a new AMP console. The Managed AMP page appears.
Table 127: Managed AMP fields and default values (Continued) Field Default Description Manage Group Configuration No Defines whether the Master Console can manage device groups on the managed W-AirWave server. 3. When finished, select Add to return to the Managed AMPs list page. Using Global Groups with Master Console To push configurations to managed groups using the W-AirWave Global Groups feature, follow these steps: 1. Navigate to the Master Console's Groups > List page. 2.
Controller Backups and Restoration You can create a backup on demand by creating and collecting a flash backup from the controller. Daily backups are also created. At a minimum, there are four backup files: l Two daily backups l One backup from last week l One backup from last month The backup saved from a firmware upgrade is automatic and requires no manual intervention. All backups can be saved or restored and are displayed on the Audit page.
Chapter 7 Creating, Running, and Sending Reports Reports in W-AirWave are powerful tools for network analysis, user configuration, device optimization, and network monitoring. All reports can be printed, emailed, or exported. What You Can Do With Reports W-AirWave includes 20 default reports and runs them daily. You can access these reports after they have run, through hyperlinks on the Generated Reports page.
Monitor Clients and Devices l Client Inventory. Use this report to view information about clients that connected to your network. You can use filters and match criteria to customize your report. Information reported includes include manufacturer make and model, OS summary, asset category and group, and authentication type. For information, see "Using the Client Inventory Report" on page 275. l Client Session. Use this report to view information for each time a user connects to your network.
l RADIUS Accounting Issues. Use this report to find the top 10 issues by device, controller, RADIUS server, and client. For information, see "RADIUS Accounting Issues" on page 293. l Rogue Clients. Use this report to track the number of valid users that connected to rogues in the specified time frame. You can filter results by rogue classification, and you can include ad-hoc devices and client details. By default, the minimum RAPIDS classification is suspected rogue, and the maximum is contained rogue.
specific time range (for example, "1 month ago until now"). The Client Inventory information, on the other hand, by default shows all data. Users have to explicitly select the Limit to Active Devices drop down and then select Active during report timeframe option to configure the time range. Perform these steps to create a Custom Report. 1. Navigate to the Reports > Definitions page. 2. Select Add. 3. Enter a Title for the new report. 4. Select the Custom option from the Type drop-down menu.
Using the License Report The Dell Networking W License Report tracks licenses on Dell devices in your network. This report includes information on the type, quantity, percent used, installation date, expiration date, and the license keys. This report includes the built-in license count only when the installed license count is less than the license limits.
Figure 148: Daily Memory and CPU Usage Report Using the Network Usage Report The Network Usage report, as shown in Figure 149, contains network-wide information in two categories: l Usage—maximum and average bandwidth l Clients—average bandwidth in and out This information can be broken down by Groups and Folders. It can also be summarized by Usage, Client Count, and by both for folders.
Figure 149: Network Usage Report Table 129: Network Usage Report Fields and Descriptions Field Description Interval This table is broken down in five-minute intervals. The Interval column describes the network usage information during these specific five minutes. Max Clients The maximum number of clients that were connected during this interval. Max Usage In Shows the maximum amount of incoming traffic on the network during this interval. This value is shown in Mbps.
Using the Port Usage Report The Port Usage report includes the following statistics: all the switches and ports in your network by folder, unused ports, access and distribution ports, most used switches, and most used ports. This report, as shown in Figure 150, also provides a histogram of unused ports vs. unused switches by type (access or distribution). Figure 150: Port Usage Report Table 130 describes the fields in the Switches table that is in this report.
Table 130: Switch Table Fields and Descriptions Field Description Device The name of the device Folder/Group The folder and group that this devices belongs to Type The switch type Contact Displays the contact info for the switch, if available Location Displays the location information for the switch, if available Total Ports The total number of ports available on the device Access Ports The total number of Access Ports available on the device Unused Ports (%) The percentage of the ports on
6. Define any thresholds appropriate to your report. 7. Click Save and Run or Save. If an RF Health Report has not been generated before, you can create it by following the instructions on the "Creating Reports" on page 297 section of this chapter. Figure 151 illustrates a sample RF Health Report.
about bandwidth information, see "Using the Network Usage Report" on page 269. Example Custom Report The following example creates a report looks for devices that are under-utilized. This report will search for devices over a 2-hour period that were at 1% of capacity for 5-100% of the time. Any setting omitted from this example remains the default value. 1. Navigate to Reports > Definitions, then click Add New Report Definition. 2. Enter the title, "Capacity Planning Report 1% for Group HQ". 3.
Table 131: Capacity Planning Report Fields and Descriptions (Continued) Field Description Folder Displays the folder with which the device is associated. Controller Displays the controller with which a device operates. Time Above 1% of Capacity Displays the time duration in which the device has functioned above 0% of capacity. A low percentage of use in this field may indicate that a device is under-used or poorly configured in relation to its capacity, or in relation to user needs.
l Last Connection Mode l Last SSID l Network Chipset - All or Matching l Network Driver - All or Matching l Network Vendor This report allows you to include details about every client, for example, the User Name, MAC Address, Role, AP Radio information, and more. Finally, you can limit this report to include devices that active or inactive at the time when this report is run. Example Custom Report The following example creates a summary report of Apple devices on your network.
Table 132: Client Inventory Report Fields and Descriptions Field Description AOS Device Type Displays the device type or name. Count The total number of each device current included in the client inventory. % of Total The percentage of each of the devices that are included in the client inventory. Last SSID Summary The SSID most recently connected to by each device. This includes the total number of clients and the percentage of each of those devices that connected to the SSID.
Figure 154: Client Session Detail Each Client Session Report includes a Client Session Summary section. Table 133 describes the fields that display in this summary. Table 133: Client Session Summary Fields and Descriptions Field Description Sessions The number of client sessions that occurred during the time range specified in this report. Unique Clients The number of unique clients that connected. Guest Users The number of guest users that connected.
Table 133: Client Session Summary Fields and Descriptions (Continued) Field Description Avg traffic per session (MB) The average amount of traffic generated by each session. Avg traffic in per session (MB) The average amount of traffic in generated by each session. Avg traffic out per session (MB) The average amount of traffic out generated by each session. Avg traffic per client (MB) The average amount of traffic generated by each client.
Figure 155: Daily Configuration Audit Report Page, partial view Table 134: Daily Configuration Audit Report Field Description Name Displays the device name for every device on the network. Selecting a given device name in this column allows you to display device-specific configuration. Folder Displays the folder in which the device is configured in W-AirWave. Selecting the folder name in this report displays the APs/Devices > List page for additional device, folder and configuration options.
l Least Utilized by Bandwidth—By default, this list displays the 10 devices that are the least used, according to the bandwidth throughput. l Devices—This list displays all devices in W-AirWave. By default it is sorted alphabetically by device name. You can specify the number of devices that appear in each of the first four categories in the Reports > Definitions > Add page. Any section of this report can be sorted by any of the columns.
Table 135: Daily Device Summary Report Unique Fields and Descriptions (Continued) Field Description Average Usage Displays the average rate of data in that traveled through device during the period of time covered by the report. Location Displays the location information if available. Controller The controller that the device is associated to. Folder/Group Displays the folder and group information for the device.
Figure 157: Device Uptime Report Illustration Table 136: Device Uptime Report Unique Fields and Descriptions Field Description SNMP Uptime Displays the percentage of time the device was reachable via ICMP. W-AirWave polls the device via SNMP at the rate specified on the Groups > Basic page. ICMP Uptime Displays the percentage of time the device was reachable via ICMP. If the device is reachable via SNMP it is assumed to be reachable via ICMP.
3. Select Inventory from the Type drop-down menu. 4. Type "Cisco" in the Device Search Filter field. 5. In the Summarize report by section, select Type Summary. This option will categorize the Cisco devices found in your network by device type. 6. Click Save and Run. The report displays on the Generated Reports page when it is available, as shown in Figure 158. Figure 158: Inventory Report Dell Networking W-AirWave 8.2.
Table 137: Inventory Report Fields and Descriptions Field Description Vendor Displays the device type or name. In the example above, the only vendor specified in the report definition was Cisco. Count Shows the total number of each device current included in the client inventory. % of Total Shows the percentage of each of those devices that are included in the client inventory. Firmware Version The firmware version on each device.
Using the PCI Compliance Report W-AirWave supports PCI requirements in accordance with the Payment Card Industry (PCI) Data Security Standard (DSS). The PCI compliance report, shown in Figure 1, displays current PCI configurations and status. This report provides recommendations to resolve issues when possible. Figure 160: PCI Compliance Report For information about turning on this feature, see "Enabling PCI Compliance Monitoring" on page 67.
start and stop time range. The Home > Overview page also cites IDS events. Triggers can be configured for IDS events. Refer to "Creating New Triggers" on page 221 for additional information. Figure 161 and Table 139 illustrate and describe the IDS Events Detail report. Selecting the AP device or controller name takes you to the APs/Devices > List page.
Table 139: IDS Events Detail Unique Fields and Descriptions (Continued) Field Description SNR Displays the signal-to-noise (SNR) radio associated with the IDS event. Precedence Displays precedence information associated with the IDS event, when known. Time Displays the time of the IDS event. Using the Match Event Report Use the Match Events report to track matching events that occurred on devices.
Table 140: Match Event Report output details Field Description Folder/AP/Client The total number of matches that occurred in each folder, each AP, and each Client. The tables also include a reason for the match event. This information is obtained directly from the controller. Data will only display for a Folder, AP, and Client if each has experienced at least one match event.
Figure 163: New Clients Report Illustration (split view) Table 141: New Clients Report output details Field Description Username The client name, if available. Role The client's role, if available MAC Address The new client's MAC address Vendor The vendor for the client device. AP/Device The AP/Device that the client is currently connected to. Association Time The time when the client last associated with the device. Duration How long the client has been connected to the device.
l Detailed and text-based table of all rogue devices supporting all discovery methods with extensive device parameters and hyperlink interoperability to additional W-AirWave pages l Detailed and text-based table of discovery events pertaining to the discovery of rogue devices with extensive parameters and hyperlink interoperability to additional W-AirWave pages This report is not run by default, but is available after you define it. Refer to Figure 164 for a sample illustration of this report.
Table 142: New Rogue Devices Report Fields (Continued) Field Description First Discovered Displays the date and time that the rogue device was first discovered on the network. First Discovery Method Displays the method by which the rogue device was discovered. First Discovery Agent Displays the network device that first discovered the rogue device. Last Discovering AP Displays the network device that most recently discovered the rogue device. Model Displays the rogue device type when known.
Figure 165: RADIUS Authentication Issues Report RADIUS Accounting Issues In order to run this report, you need to create a custom report that includes RADIUS accounting information. From the Reports>Definitionspage, click Add to open the new report template. The Custom Options list will include options for RADIUS Accounting, as well as RADIUS Authentication. To view a generated RADIUS accounting report, navigate to Reports > Generated and select the name of a report that includes RADIUS accounting details.
Figure 166: RADIUS Accounting Issues Report Using the Rogue Clients Report The Rogue Clients report tracks the number of valid users that connected to rogues in the specified time frame, and can be filtered by rogue classification. You can specify to include ad-hoc devices can be included and detailed information about the clients. By default, the minimum RAPIDS classification is Suspected Rogue, and the maximum is Contained Rogue. Dell Networking W-AirWave 8.2.
Figure 167: Rogue Clients Report Page Illustration Table 143: Rogue Clients fields and descriptions Field Description Misassociations by Unique Rogue APs For each Rogue AP, this table includes the SSID of the device, the number of misassociations, and the RAPIDS Classification. Misassociations by Unique MAC addresses This table shows details about MAC address that are being registered as rogue clients, including the user name (if available) and the number of misassociations.
Table 143: Rogue Clients fields and descriptions (Continued) Field Description Ch BW The channel bandwidth of the client, if available Radio Mode The radio mode that the rogue client is using SNR The signal-to-noise ratio, if available Channel The channel of the rogue device, if available Location The location of the rogue client, if available RAPIDS Classification The current classification of the rogue client Using the VPN Session Report The VPN Session Report extensively itemizes VPN activi
Table 144: VPN Session Data tables for each session type Field Description Name The VPN Type, Controller, AOS Device Type, HTTP Fingerprint, or VLAN Users The number of users that logged a VPN session over the specified time range for each VPN Type, Controller, AOS Device Type, HTTP Fingerprint, and VLAN Total Duration The amount of time that each type was connected during the specified time range. Total Data The amount of data in MB each type was collected during the specified time range.
Figure 169: Report Sending Reports to a Smart Host W-AirWave uses Postfix to deliver alerts and reports via email, because it provides a high level of security and locally queues email until delivery. If W-AirWave sits behind a firewall, which prevents it from sending email directly to the specified recipient, use the following procedure to forward email to a smart host. 1. Add the following line to /etc/postfix/main.cf: relayhost = [mail.example.com] Where: mail.example.
| Creating, Running, and Sending Reports Dell Networking W-AirWave 8.2.
Chapter 8 Using VisualRF This chapter contains information about VisualRF and includes the following topics: l "Features" on page 301 l "Useful Terms" on page 301 l "Starting VisualRF" on page 302 l "Basic VisualRF Navigation" on page 302 l "Advanced VisualRF Settings " on page 307 l "Planning and Provisioning" on page 314 l "Increasing Location Accuracy " on page 323 l "Using VisualRF to Assess RF Environments" on page 328 l "Importing and Exporting in VisualRF" on page 333 l "VisualRF
Features l Mesh monitoring page specially for viewing Dell AirMesh devices. VisualRF automatically renders Mesh APs based on GPS coordinates. l Floor plan upload wizard enables direct importation of JPG/JPEG, GIF, PNG, PDF (single page only) and CAD files for floor plans. NOTE: PDF floor plans must be generated from a source file. Other PDFs, such as those scanned from a printer, will not import properly. Similarly, CAD files must be generated by AutoCAD.
l RSSI (Received Signal Strength Indicator) - IEEE defines RSSI is a mechanism by which RF energy is to be measured by the circuitry on a wireless NIC (0-255). RSSI is not standard across vendors. Each vendor determines their own RSSI scale/values. l Session - A session is an instance when a client connects to the network. The period of time in which the client remains connected to the network is typically calculated as a single session.
Figure 172: Viewing a Campus Networks in VisualRF Click on an building within the selected campus, then select a floor to display the APs and clients on that floor. Select an AP or client to view detailed information about that device, as shown in Figure 173 Figure 173: Viewing a Floor Plan in VisualRF Customize Your Floor Plan View You can customize your floor plan view by selecting the devices, client and AP overlays, display lines, and floor plan features from the View tab.
Devices Click the following device options: l APs, then click to select an option, such as planned or deployed, air monitors, channel, and transmit power. l Clients, then click to select the size of the icon displayed for wireless users. l Interferers, then click to select the size of the icon displayed for sources of Wi-Fi interference. This option works for Dell Networking W-Series ArubaOS devices running 6.
Relation Lines Click the following relation line options: l APs to view AP neighbor lines, which show the APs that hear each other. l Client Association to view client to AP lines. The thicker lines designate AP of association, and the thinner lines show the APs that hear the client. This overlay uses color-codes to represent the radio band. l Client Neighbors to view lines between a client and radios that hear the client , excluding the radio of association.
Figure 174: Viewing Mesh Networks in VisualRF Click on an AirMesh network to display the APs with labels, as shown in Figure 175 Figure 175: APs in a mesh network Select an AirMesh AP icon to bring up the pop up menu showing the Mesh Node Properties by default. This window shows the node’s name, MeshID, MAC, Manufacturer, and other information. Clicking the blue Monitor link inside this window opens the APs/Devices > Monitor page in a new tab.
Table 145: Top Level Icons and Descriptions (Continued) Operation Help Icon Description Launch the online help. NOTE: This User Guide currently contains the most up-to-date help information for the VisualRF interface. Figure 176: Properties for a Mesh Gateway Illustration For radio-level status information on an AirMesh device in your network, select the menus in the AP’s pop up window for each radio (11na Radio, Access; 11na Radio, Mesh; and so forth).
Figure 177: Server Settings The server settings are detailed in Table 146. Table 146: Server Settings Setting Default Description Enable VisualRF Engine No Enables or disables the VisualRF engine. This setting must be enabled to use VisualRF. If you do not have a license for VisualRF, this page will not appear. Enable Multi-floor Bleed-Through Yes Enables or disables calculating the impact APs on floors above and below the currently viewed floor in the Quick View.
Table 146: Server Settings (Continued) Setting Default Description Core Threads 1x number of cores Number of threads that calculate path loss for each floor. These threads also regenerate a floor's RF properties when new APs, walls, or regions are added to a floor plan. Location Caching Threads 1x number of cores Number of threads that calculate the location of all clients associated with access points on this floor plan.
Table 147: Location Settings (Continued) Setting Default Description Maximum Rogue APs per Floor Plan 20 Sets the maximum number of rogues W-AirWave will place on a Floor. Use this filter in combination with the RAPIDS Export Threshold configured on the RAPIDS > Setup page to intelligently control the number of rogue devices displayed per floor. NOTE: Increasing this value can increase the load on the server and the clutter on the screen.
Table 148: Location Calculation Timer Settings (Continued) Setting Default Description Legacy Laptop Number of Samples 3 See definition above. Laptop Min/Max (sec) 90/360 This timer determines how often to calculate the location for laptop (nonlegacy) devices.
Table 148: Location Calculation Timer Settings (Continued) Setting Default Description Scale Number of Samples 3 Printer Min/Max (sec) 120/480 This timer determines how often to calculate the location of printers.
Figure 180: Wall Attenuation Settings The default wall attenuation settings are described in Table 149. Table 149: Default Wall Attenuations Item Description Material Type of material that reduces the signal strength, including concrete, cubicle, dry wall, and glass. Attenuation Signal loss represented in decibels (dB). Color Color representation in the floor plan. Adding a Wall Attenuation Follow these steps to create a wall attenuation: 1. Navigate to VisualRF > Setup, then click Add. 2.
Figure 182: Wall Attenuation You can later change the attenuation by clicking next to the material in the Wall Attenuation table. VisualRF Resource Utilization When tuning the VisualRF server, use the default settings as recommended. If you do change any of these settings, change one at a time and see how the system performs. Each time you restart VisualRF, you will notice a delay before returning to normal processing.
To create and place your campus: 1. Navigate to VisualRF > Floor Plans. 2. Navigate to the Add Campus menu. 3. Select Edit from the toolbar on the right window pane of the Network view, then click Add campus. 4. Enter the name of the campus, then click Save. A new campus icon appears on the campus background. 5.
Figure 183: Create New Building Window 4. Select Save. A new building icon will appear in the upper-left corner of the background canvas. 5. Drag the Building icon to the appropriate location on the map background. You are now ready to import your floor plan. Adding a Floor Plan Floor plans can be added (imported), edited, and deleted. If you want to import a newer floor plan to replace a current one, you must first delete the original plan and then add the new floor plan.
4. If your network has multiple campuses or buildings, select the campus and building. You can also rename the floor and floor number. 5. Click Save. The floor plan opens in VisualRF, with planning tools on the side navigation bar.
2. Locate two points within the floor plan that you know the distance. Most door jams (door openings) are 3 feet. Use the slider bar at the upper left corner of the upload wizard to zoom in to a section of the floor plan, if necessary. 3. Select and hold to establish the first point and drag your mouse to the second point and release. 4. An Enter Distance dialogue box appears. Enter the proper length in feet, as shown in Figure 184. 5. Click OK.
Adding a Region to an Existing Floor Plan To add a region to an existing floor: 1. Select the floor to which you want to add a region. 2. Click Edit in the navigation bar to open the Edit menu. 3. Click Draw Region. The pointer changes to a cross-hair icon. 4. Click on the floor plan graphic to define the edge of the new region. Use the slider bar at the upper left corner of the wizard to zoom in to a section of the floor plan, if necessary. 5.
l Draw Walls Around Region - This action surrounds the region with walls of the last used wall type (concrete, cubicle, drywall or glass). For information on defining different wall types, see Adding Exterior Walls. l Bring to Back, Send to Front - If one region is within the boundaries of another region, or two regions overlap, you may not be able to select the desired region until that region is brought to the front, or the overlapping region is sent to the back.
1. Determine if you want to add APs to a new floor plan, or an existing floor plan. l To add APs to a new floor plan using the Floor Upload wizard, click Access Points in the wizard navigation bar, then select Add deployed APs. l To add APs an existing floor plan, select that floor plan, click the Edit menu in the navigation bar, then click the Add Deployed AP icon 2. A list of devices in your W-AirWave appears, as shown in Figure 185. 3. Select whether to view APs by Group or by Folder.
3. In the Count field, enter the number of devices of that type to add to the new floor. 4. (Optional) Click and drag the Deployment Type slider bar to adjust data rates for a high-density or lowdensity environment. 5. (Optional) Click the Advanced link and configure the advanced deployment options l Service level: Select Speed or Signal to plan coverage by adjusting data rate requirements (Speed) or AP signal strength settings.
Figure 186: Bill of Materials Report Illustration Increasing Location Accuracy The Location Service will use all RF information available to increase location accuracy of clients, tags, and rogue devices. Understanding your infrastructure's inherent capabilities helps you learn the extra effort required to ensure location accuracy.
Table 153: Elements Read From Controllers to Increase Location Accuracy (Continued) MFG/Model Client Signal Associated AP AP-to-AP Signals (Dynamic Attenuation) Unassociated Client Signal Rogue AP Signal Proxim Yes Yes Yes Yes Symbol Auton.
Figure 187: Drawing a wall 4. (Optional) Change the attenuation of a wall by selecting the appropriate building material for that wall.To define the wall material , select the wall, click the Properties tab, then select the building material type from the Material drop-down list. 5. When you are done creating walls, click the Draw Wall button again to exit the wall editing mode. You can edit or remove a wall at any time. To move or resize the wall, select the Draw Walls button in the Edit menu again.
Figure 189: Marking a Device as Static Fine-Tuning Location Service in VisualRF > Setup There are several options on the VisualRF > Setup page which increase client location accuracy. All of these items will increase the processing requirements for the location service and could negatively impact the overall performance of W-AirWave. Decreasing Grid Size Decreasing the grid size will enable the location to place clients in a small grid, which will increase accuracy.
Figure 190: Timing Factors Impacting Location Accuracy These best practices are recommended when configuring hardware infrastructure: l For legacy autonomous APs, ensure on the Group > Radio page that Rogue Scanning is enabled and the interval is accurate, as shown in Figure 191: Figure 191: Group Rogue Scanning Configuration l For thin APs, ensure that the controllers are configured to gather RF information from the thin APs frequently.
Figure 192: Rectangular Floor Plan AP Deployment Using VisualRF to Assess RF Environments VisualRF has four distinct views or entry points: client view, access point view, floor plan view, and network, campus, and building view.
Figure 193: VisualRF thumbnail in Clients > Client Detail This view is focused on the wireless user enabling you quick resolution of a user's issues and therefore disables most RF objects by default.
Figure 194: Location History Player Checking Signal Strength to Client Location 1. Open a floor plan in the VisualRF > Floor Plans page. 2. Click the View tab. 3. In the AP Overlays section of this tab, select the Channel option. 4. Click the Signal Cutoff drop-down list. 5. Select the desired signal level to display, as shown in Figure 195. The heatmap updates immediately.
2. If the AP is associated with a floor plan, the page displays a VisualRF thumbnail showing the location of the AP. Click this thumbnail to open the floor plan in VisualRF. Figure 196: VisualRF Thumbnail on the APs/Devices > Monitor page Viewing a Floor Plan’s RF Environment To view a floor plan's RF environment, navigate to the VisualRF > Floor Plans page.
Table 154: Floor Plans list columns (Continued) Field Description Building Building associated to the floor. Floor Floor number. The decimal place can be used for mezzanine levels. Name Optional name of a floor. (If the name is not changed, it displays the name as Floor [Number] by default.) Size The height and width in feet of the floor plan, including white space. Grid Cell Size The size of the grid cells, in feet. APs The number of access points on the floor.
Figure 198: Network List View 3. Click any of the links to view that location, or click a column heading to sort the list by that column criteria. The Original Floor Plan column contains links to download the floor plan graphic for the selected floor. 4. To return to the Map view, click the Map link at the top right of the page. Importing and Exporting in VisualRF Exporting a campus To export a campus from VisualRF so you can import it into another W-AirWave, follow these steps: 1.
This and all subsequent steps use the converted JPG file. The greater the floor plan dimensions, the less clarity the background image provides.
Post Processing Steps 1. Decrease the Location Caching Timer to previous value. 2. Review the VisualRF > Floor Plans page to ensure server is keeping up. Sample Upload Instruction XML File PAGE 336Importing a large number of floor plans can impact performance of the W-AirWave server. VisualRF must create a thumbnail, provision APs, create attenuation grid, and locate all clients on each imported floor plan. This can cause the VisualRF > Floor Plans page to be unresponsive. Process on Controller 1. On the controller's WebUI , navigate to the Plan > Building List page. 2. Select the buildings to be exported and select Export. 3.
Remax ft 314.45 425.88 /var/example/snapshot/b45e7a49-23-2e6d2c.677/background.jpg /snapshot/b423b5-4db0-891a2e0d2c.677/background.
VisualRF Plan Installation After you have downloaded VisualRF Plan from the Dell support site, the installer will prompt you for the location of the data directory. You must have access to the directory you choose for the installation. Also choose a directory for auto-backup. (The default is the user directory.) Follow the rest of the instructions on your installation screen. Differences between VisualRF and VisualRF Plan Table 155: VisualRF vs.
Appendix A Using FIPS Encryption Enabling FIPS 140-2 Approved Mode Users who are subject to government or industry regulations must enable FIPS 140-2 approved mode when using W-AirWave. When FIPS 140-2 approved mode is on, users can connect to the W-AirWave server using FIPS 140-2 approved functions (ciphers). To enable FIPS 140-2 approved mode: 1. Open a console window, then log into the system. 2. In the window, enter 9-5 to enable FIPS.
Appendix B AMP Command Line Interface About the Command Line Interface W-AirWave provides a modular command line interface (CLI) that allows you to run a finite set of management tools and configuration tasks. Some of these tasks include transferring files, enabling support connections, enabling FIPS security, upgrading software, and configuring network interfaces. CLI Access A change introduced in W-AirWave 8.2.4 prevents the root user from being able to connect to the CLI.
Table 156: CLI Options Option Description 1 Upload File Uploads a file to the AirWave server you're currently logged in to using SCP for Unix. 2 Download File Downloads a file from the local AMP to another server using SCP for Unix. 3 Delete File Deletes a file from the AirWave server. Files shown for deletion might include downloaded files, temporary files, and backup files. 4 Backup Displays AMP Backup options. 4-1 Backup Now Runs the back up now.
Option Description 9 Security Displays security options. 9-1 Reset Web admin Password Resets the Web UI log in password for admin. 9-2 Change OS User Password Changes the CLI log in password. 9-3 Add SSL Certificate Installs the SSL certificate, used to establish secure web sessions, on your AirWave server. 9-4 Add DTLS Certificates Installs the DTLS certificates, used to encrypt secure AMON traffic, on your AirWave server.
Index 8 802.
Configuration, WLC 99 Configuration, WLSE 61, 63 Connected Users table 155 Contents 3 Controllers Backup and Restore 263 Classification WMS Offload 204 Importing 335 Copying a Floor Plan 317 CSV File, adding multiple devices with 126 D Dashboard Customizing Display 21 Define Planning Region 318 Detected Interfering Devices 145 Device Discovery 119 Device Events 35 Device OUI score 205 Device Troubleshooting Hint 32 Device Type Setup 59 devices modifying 115 Devices Adding Manually 124 Communication Setting
Radio Settings 95 Security 87 Viewing 75 Guest User Configuration 32 Guest Users 35 M ICMP settings 55 Index E Installation 16 Instant APs 14 Instant Config 14 Interface Monitoring page 154 Interfering Devices 35 Introduction > AW 13 iPhone 261 Maintenance windows 86, 116, 173 Managed AMP 261 Master Console Public Portal 260 Match Events Report 288 MDM Server, Add 240 Mesh Device-to-Device Link Polling 78 Gateway 136 in VisualRF 305 Mode 136 Monitoring 146 Proxim 107 message-of-the-day 45 MIB 66 MobiCont
Monitoring for 66 PCI Requirements 68 Physical Interfaces table 153 planned maintenance mode 165, 167 Poll Now button 135 Primary Network Interface Settings 40 product overview 13 defining a scan 121 executing a scan 121 Proxim 4900M 99 Q Quick Links 242 R Radio Enabled option 171 Radio Role field 149 radio settings Configuring for Groups 95 radio statistics 141, 146 Radio Table 137 RADIUS 86 authentication 44 configuring authentication and authorization 47, 49 integrating 48 RADIUS Authentication Issues
Security auditing PCI compliance 66 Configuring ACS servers 64 Configuring Group Security Settings 87 configuring group SSIDs and VLANs 92 configuring LDAP 44 configuring RADIUS 44 configuring TACACS+ 44 integrating NMS 65 RAPIDS and rogue classification 198 Security and Authentication > ACS 63 Security and Authentication > Certificates 30, 46 Server Settings VisualRF Setup 307 Servers specifying general settings 27 Severe Alert 27 Signal Cutoff 330 Signal Quality 140 Single Sign-On 46, 136-137 Smart Host 2
Groups > Cisco WLC Config 99 Groups > Firmware 110 Groups > List 75 Groups > MAC ACL 109 Groups > Proxim Mesh 107 Groups > PTMP 106 Groups > Radio 96 Groups > Security 87 Groups > SSIDs 92 Groups > Templates 180, 182, 196 Home 240 Home > License 256 Home > Overview 241 Home > Search 255 Home > User Info 26 Home Overview 22 Master Console > Groups > Basic 262 Master Console > Groups > Basic, Managed 262 Radio Statistics 141 RAPIDS > Audit Log 215 RAPIDS > List 209 RAPIDS > Rogue APs (Detail), Score Override
VisualRF vs. VisualRF Plan 338 VLANs 92 W WDS Role 172 Web Auth bundles 53, 58 widgets adding 22 available 22 Wired Devices Monitoring 151 Wired Interfaces table 138 WLC > AP Groups 104 WLC > Controller Settings 104 WLC > LWAPP AP Groups 104 WLC > Management Settings 106 WLC > Navigation 100 WLC > Security 105 WLC > Wireless Parameters 105 WLC > WLANs 100 Dell Networking W-AirWave 8.2.