User Guide Dell Networking W-AirWave 8.
Copyright © 2014 Aruba Networks, Inc. Aruba Networks trademarks include , Aruba Networks®, Aruba ® Wireless Networks , the registered Aruba the Mobile Edge Company logo, and Aruba Mobility Management System®. Dell™, the DELL™ logo, and PowerConnect™ are trademarks of Dell Inc. All rights reserved. Specifications in this manual are subject to change without notice. Originated in the USA. All other trademarks are the property of their respective owners.
Contents Introduction A Unified Wireless Network Command Center AirWave Management Platform Controller Configuration Instant Configuration VisualRF RAPIDS Master Console and Failover Integrating AirWave into the Network and Organizational Hierarchy Administrative Roles Configuring AirWave Before You Begin Formatting the Top Header Customizing Columns in Lists Resetting Pagination Records Using the Pagination Widget Using Export CSV for Lists and Reports Defining Graph Display Preferences Customizing the D
User Roles and VisualRF Creating AirWave User Roles Configuring Login Message, TACACS+, RADIUS, and LDAP Authentication Setting Up Login Configuration Options Configuring Whitelists Setting Up Certificate Authentication Setting Up Single Sign-On Specifying the Authentication Priority Configuring RADIUS Authentication and Authorization Integrating a RADIUS Accounting Server Configuring TACACS+ Authentication Configuring LDAP Authentication and Authorization Enabling AirWave to Manage Your Devices Configuring
Cisco WLC Group Configuration Accessing Cisco WLC Configuration Navigating Cisco WLC Configuration Configuring WLANs for Cisco WLC Devices Defining and Configuring LWAPP AP Groups for Cisco Devices Viewing and Creating Cisco AP Groups Configuring Cisco Controller Settings Configuring Wireless Parameters for Cisco Controllers Configuring Cisco WLC Security Parameters and Functions Configuring Management Settings for Cisco WLC Controllers Configuring Group PTMP Settings Configuring Proxim Mesh Radio Settings
Monitoring Data for Wired Devices (Routers and Switches) Understanding the APs/Devices > Interfaces Page Auditing Device Configuration Using Device Folders (Optional) Configuring and Managing Devices Moving a Device from Monitor Only to Manage Read/Write Mode Configuring AP Settings Setting a Maintenance Window for a Device Configuring Device Interfaces for Switches Individual Device Support and Firmware Upgrades Troubleshooting a Newly Discovered Down Device Using AirWave to Set up Spectrum Analysis Spectr
Containment Options Filtering Options Additional Settings Defining RAPIDS Rules Controller Classification with WMS Offload Device OUI Score Rogue Device Threat Level Viewing and Configuring RAPIDS Rules Deleting or Editing a Rule Recommended RAPIDS Rules Using RAPIDS Rules with Additional AirWave Functions Viewing Rogues on the RAPIDS > List Page Overview of the RAPIDS > Detail Page Viewing Ignored Rogue Devices Using RAPIDS Workflow to Process Rogue Devices Score Override Using the Audit Log Additional Res
Managing Mobile Devices with SOTI MobiControl and AirWave Overview of SOTI MobiControl Prerequisites for Using MobiControl with AirWave Adding a Mobile Device Management Server for MobiControl Accessing MobiControl from the Clients > Client Detail Page Monitoring and Supporting AirWave with the Home Pages Monitoring AirWave with the Home > Overview Page Using the Home > AppRF Page Using the Home > UCC Page Call Quality Quality Correlation Call Volume Devices UCC Chart Details Viewing the Home > RF Performan
Example Using the Match Event Report Using the Memory and CPU Utilization Report Using the Network Usage Report Using the New Clients Report Using the New Rogue Devices Report Using the PCI Compliance Report Using the Port Usage Report Using the RADIUS Authentication Issues Report Using the RF Health Report Using the Rogue Clients Report Using the Rogue Containment Audit Report Using the VPN Session Report Emailing and Exporting Reports Emailing Reports in General Email Applications Emailing Reports to Smar
Defining Floor Plan Boundaries Legacy VisualRF Floor Plan Configuration Options Defining Floor Plan Regions Adding Region to a New Floor using the Floor Upload Wizard Adding a Region to an Existing Floor Plan Legacy Region Configuration Settings Editing a Planning Region Floor Plan Properties Adding Deployed Access Points onto the Floor Plan Adding Planned APs onto the Floor Plan Auto-Matching Planned Devices Printing a Bill of Materials Report Increasing Location Accuracy Adding Exterior Walls Defining Sta
VisualRF Plan Installation Differences between VisualRF and VisualRF Plan Index Dell Networking W-AirWave 8.
| Contents Dell Networking W-AirWave 8.
Chapter 1 Introduction Thank you for choosing Dell Networking W-AirWave 8.0. AirWave makes it easy and efficient to manage your wireless network by combining industry-leading functionality with an intuitive user interface, enabling network administrators and helpdesk staff to support and control even the largest wireless networks in the world. The User Guide provides instructions for the configuration and operation of Dell Networking W-AirWave.
l l n Configuration of APs & controllers n Automated compliance audits n Firmware distribution n Monitoring of every device and user connected to the network n Real-time and historical trend reports Granular administrative access n Role-based (for example, Administrator contrasted with Help Desk) n Network segment (for example, Retail Store network contrasted with Corporate HQ network) Flexible device support n Thin, thick, mesh network architecture n Multi-vendor support n Current and
l Up-to-date heat maps and channel maps for RF diagnostics n Adjusts for building materials n Supports multiple antenna types l Floor plan, building, and campus views l Visual display of errors and alerts l Easy import of existing floor plans and building maps l Planning of new floor plans and AP placement recommendations RAPIDS RAPIDS is a powerful and easy-to-use tool for monitoring and managing security on your wireless network, to include the following features and benefits: l Automatic de
devices on local networks, remote networks, and networks using Network Address Translation (NAT). AirWave communicates over-the-air or over-the-wire using a variety of protocols. The power, performance, and usability of AirWave become more apparent when considering the diverse components within a WLAN. Table 1 itemizes some example network components.
Chapter 2 Configuring AirWave This section contains the following procedures to deploy initial AirWave configuration: l "Formatting the Top Header" on page 17 l "Customizing Columns in Lists" on page 19 l "Resetting Pagination Records" on page 20 l "Using the Pagination Widget" on page 21 l "Using Export CSV for Lists and Reports" on page 21 l "Defining Graph Display Preferences" on page 21 l "Customizing the Dashboard" on page 22 l "Setting Severe Alert Warning Behavior" on page 27 l "Def
Figure 1: Navigation Bar Displaying Down Device Statistics You can control the Top Header Stats links that appear from the AMP Setup > General page, as described in "Defining General AirWave Server Settings" on page 28. Top Header Stats can also be customized for individual users on the Home > User Info page. There you can select the statistics to display for certain device types and override the AMP Setup page. All possible display options for users are show in Figure 2.
Customizing Columns in Lists Customize the columns for any list table selecting Choose Columns, as shown in the figure below. Use the up/down arrows to change the order in which the column heads appear. Figure 3: Choose Columns Drop down List More information about the universal list elements is available in "Common List Settings" in the Dell Networking WAirWave 8.0 Installation Guide. You can also control which column heads appear for each user role.
Figure 4: Table with Choose Columns for Roles Menu Selected Resetting Pagination Records To control the number of records in any individual list, select the link with Records Per Page mouseover text at the top left of the table, as shown in Figure 5. AirWave remembers each list’s pagination preferences. Figure 5: Records Per Page Drop Down Menu To reset all Records Per Page preferences, click the Reset reset button in the Display Preferences section of the Home > User Info page, as shown in Figure 6.
Using the Pagination Widget The pagination widget is located at the top and bottom of every list table, as shown in Figure 7. Figure 7: Pagination Widget Use the down arrow next to Page 1 to see all the page numbers for that table in a drop down menu. From here, you can jump to any portion of the table. Select the > symbol to jump to the next page, and >| to jump to the last page. Using Export CSV for Lists and Reports Some tables have a Export CSV setting you can use export the data as a spreadsheet.
Figure 9: Interactive Graphs on the Home > Overview Page Highcharts are built with JavaScript, so the graphs can run directly through your browser without the need for additional client-side plugins. This makes it possible to view your AirWave charts on a mobile device. These charts can be used and customized as follows. l A Time Range selector in the upper right portion of the charts (including pop-up charts) allows you to select a common or a custom date range for your data.
The Customize workspace that appears is shown in Figure 11. Figure 11: Customize Overview Page Adding Widgets The Home > Overview page displays the currently selected widgets (charts/graphs). You can change the widgets on this page by selecting the Customize link in the upper-right corner. The Available Widgets section on the left holds all available graphical elements (widgets).
Table 2: Available Widgets Widget Description The Client graph is enabled by default and, by default, shows the maximum number of attached clients over the last two hours. Select the Show All link to view more specific client information on the graph, such as the total and average clients for a specific SSID, the maximum VPN sessions, etc. The available check boxes within this graph are determined by the SSIDs that AirWave is aware of from polling the device.
Table 2: Available Widgets (Continued) Widget RAPIDS: Classification Summary Description The RAPIDS: Classification Summary table shows the number of devices classified as Valid, Suspected Valid, Neighbor, Suspected Neighbor, Suspected Rogue, Rogue, and Unclassified that are attached to AirWave. In addition, contained rogue information will appear if Manage rogue AP containment is set to Yes on the RAPIDS > Setup page.
Table 2: Available Widgets (Continued) Widget Description Top Folders By A Radio Client Count This chart shows the folders and the number of A radios (5GHz) in each folder whose client count is greater than the cutoff. The cutoff represents 75% of the ‘maximum,’ where the ‘maximum’ is the radio that has the highest client count regardless of the folder. The cutoff value is displayed within the title and can vary. This chart takes into account approved APs with A radios based on the last 24 hours.
This search type will be used when a user types an entry in the Search field and then clicks Enter without selecting a specific search type. l Use System Defaults: The Search Method will be based on the system-wide configuration setting. This method is configured on the AMP Setup > General page. l Active clients + historical clients (exact match) + all devices: Commonly referred to as Quick Search, this looks at all active and historical clients and all devices. This search is not case-sensitive.
Figure 13: Home > User Info > Severe Alert Threshold Drop Down Menu Defining General AirWave Server Settings This section describes all pages accessed from the AMP Setup tab. It also describes two pages in the Device Setup tab: the Communication and Upload Files pages. After required and optional configuration tasks in this chapter are complete, continue to later chapters in this document to create and deploy device groups and device configuration and discovery on the network.
Refer to the following sections for information about the available settings: l "General Settings" on page 29 l "Automatic Authorization Settings" on page 30 l "Top Header Settings" on page 31 l "Search Method" on page 31 l "Home Overview Preferences" on page 31 l "Display Settings" on page 31 l "Device Configuration Settings" on page 32 l "AMP Features" on page 33 l "External Logging Settings" on page 33 l "Historical Data Retention Settings" on page 34 l "Firmware Upgrade Defaults" on
Table 3: AMP Setup > General > General Section Fields and Default Values (Continued) Setting Default Description Daily This setting defines the interval of queries which compares actual device settings to the Group configuration policies stored in the AirWave database. If the settings do not match, the AP is flagged as mismatched and AirWave sends an alert via email, log, or SNMP.
Top Header Settings On the AMP Setup > General page, locate the Top Header section to select the Top Header Stats to be displayed at the top of the interface. Search Method On the AMP Setup > General page, locate the Search Method section. Select one of the following drop down options as the system-wide default search method. This default search type will be used when a user types an entry in the Search field and then clicks Enter without selecting a specific search type.
Table 6: AMP Setup > General > Display Fields and Default Values Setting Default Description No Sets AirWave to use fully qualified domain names for APs instead of the AP name. For example, ‘testap.yourdomain.com; would be used instead of ‘testap.’ Select one of the following options: l Don’t use FQDN - This default value specifies that the fully qualified domain name will not be used. l Use AP Name with FQDN - The AP name will prepend the FQDN, for example “somehostname (my.hostname.com).
Table 7: AMP Setup > General > Device Configuration Section Fields and Default Values (Continued) Setting Default Description Allow WMS Offload configuration in monitor-only mode No When Yes is selected, you can enable the ArubaOS WMS offload feature on the Groups > Basic page for WLAN switches in Monitor Only mode. Enabling WMS offload does not cause a controller to reboot. This option is supported only for Aruba and Dell Networking W-Series devices.
Table 9: AMP Setup > General > External Logging Section Fields and Default Values Setting Default Description Syslog Server N/A Enter the IP address of the syslog server. Note that this field is hidden if both "Include event log messages" and "Include audit log messages" are set to No. Syslog Port 514 Enter the port of the syslog server. Note that this field is hidden if both "Include event log messages" and "Include audit log messages" are set to No.
Table 10: AMP Setup > General > Historical Data Retention Fields and Default Values (Continued) Setting Default Description Automatically Acknowledge Alerts (0-550 days, zero disables) 14 Defines automatically acknowledged alerts as the number of days AirWave retains alerts that have been automatically acknowledged. Setting this value to 0 disables this function, and alerts will never expire or be deleted from the database.
Table 10: AMP Setup > General > Historical Data Retention Fields and Default Values (Continued) Setting Default Description Device Uptime (0120 months, zero disables) 60 Sets the number of months AirWave retains historical information on device uptime. Setting this value to 0 disables this function. Client Data Retention Interval (1-425 days) 425 Sets the number of days AirWave retains historical information for clients.
Table 12: AMP Setup > General > Additional AMP Services Fields and Default Values (Continued) Setting Default Description Enables or disables the RTLS Collector, which is used to allow ArubaOScontrollers to send signed and encrypted RTLS (real time locating system) packets to VisualRF-- in other words, AirWave becomes the acting RTLS server. The RTLS server IP address must be configured on each controller. This function is used for VisualRF to improve location accuracy and to locate chirping asset tags.
Table 12: AMP Setup > General > Additional AMP Services Fields and Default Values (Continued) Setting Default Description Prefer AMON is a configuration setting which causes AirWave to use an AMON feed to obtain client monitioring information from a controller rather than polling it via SNMP. When you enable this setting, values such as AP lists and rogue AP lists are still polled via SNMP, but the bulk of client client monitoring information is delivered via AMON.
Table 13: AMP Setup> General > Performance Fields and Default Values (Continued) Setting Default Description Verbose Logging of SNMP Configuration No Enables or disables logging detailed records of SNMP configuration information. SNMP Rate Limiting for Monitored Devices No When enabled, AirWave fetches SNMP data more slowly, potentially reducing device CPU load. This setting is used for networks containing legacy controllers not available through Dell. Dell recommends not enabling this setting.
Primary Network Interface Settings Locate the Primary Network Interface section. The information in this sections should match what you defined during initial network configuration and should not require changes. Table 14 describes the settings and default values. Table 14: Primary Network Interface Fields and Default Values Setting Default Description IP Address None Sets the IP address of the AirWave network interface. NOTE: This address must be a static IP address.
Table 16: AMP Setup > Network > Secondary Network Fields and Default Values Setting Default Description Primary ntp1.yourdomain.com Sets the IP address or DNS name for the primary NTP server. Secondary ntp2.yourdomain.com Sets the IP address or DNS name for the secondary NTP server. Static Routes On the AMP Setup > Network page, locate the Static Routes area. This section displays network, subnet mask, and gateway settings that you have defined elsewhere from a command-line interface.
2. Select Add to create a new user, select the pencil icon to edit an existing user, or select a user and select Delete to remove that user from AirWave. When you select Add or the edit icon, the Add User page appears, illustrated in Figure 17. A current user cannot change his/her own role. The Role drop-down field is disabled to prevent this. Figure 17: AMP Setup > Users > Add/Edit User Page Illustration 3. Enter or edit the settings on this page. Table 17 describes these settings in additional detail.
Table 17: AMP Setup > Users > Add/Edit User Fields and Default Values (Continued) Setting Default Description Email Address None Allows you to specify a specific email address that will propagate throughout many additional pages in AirWave for that user, including reports, triggers, and alerts. Phone None Allows you to enter an optional phone number for the user.
Figure 18: AMP Setup > Roles Page Illustration 2. Select Add to create a new role, select the pencil icon to edit an existing role, or select a checkbox and select Delete to remove that role from AirWave. When you select Add or the edit icon, the Add/Edit Role page appears, illustrated in Figure 19. Figure 19: AMP Setup > Roles > Add/Edit Role Page Illustration 3. Enter or edit the settings on this page.
Table 18: AMP Setup > Roles > Add/Edit Roles Fields and Default Values for AirWave Administrator Role Setting Default Description Name None Sets the administrator-definable string that names the role. The role name should indicate the devices and groups that are viewable, as well as the privileges granted to that role. Enabled Yes Disables or enables the role. Disabling a role prevents all users of that role from logging in to AirWave. Defines the type of role.
Table 19: AMP Setup > Roles > Add/Edit Roles Fields and Default Values for AP/Device Manager Role (Continued) Setting Top Folder Default Top Description Defines the highest viewable folder for the role. The role is able to view all devices and groups contained by the specified top folder. The top folder and its subfolders must contain all of the devices in any of the groups it can view.
Table 19: AMP Setup > Roles > Add/Edit Roles Fields and Default Values for AP/Device Manager Role (Continued) Setting Default Description Allow accounts with no expiration Yes Specifies whether to allow accounts that have no expiration set. If this is set to No, then enter the amount of time that can elapse before the access expires. Allow sponsor to change sponsorship username No Specifies whether a sponsor can change the sponsorship user name.
Table 21: AMP Setup > Roles > Add/Edit Roles Fields and Default Values for Guest Access Sponsor Role (Continued) Setting Default Description Top Folder Top Defines the Top viewable folder for the role. The role is able to view all devices and groups contained by the Top folder. The top folder and its subfolders must contain all of the devices in any of the groups it can view. NOTE: AirWave enables user roles to be created with access to folders within multiple branches of the overall hierarchy.
Setting Up Login Configuration Options On the AMP Setup > Authentication page, administrators can optionally configure the AirWave user's idle timeout or a message-of-the-day that appears when a user first logs in, as shown in Figure 20: Figure 20: Login configuration field and results in the AirWave Login page 1. Go to AMP Setup > Authentication. 2.
Figure 21: Enabling AirWave Whitelists Setting Up Certificate Authentication On the AMP Setup > Authentication page, administrators can specify whether to require a certificate during authentication and whether to use two-factor authentication. A PEM-encoded certificate bundle is required for this feature. This feature must be enabled per role in AMP Setup > Roles. Perform the following steps to enable this feature for this AMP. 1.
Specifying the Authentication Priority To specify the authentication priority for this AirWave, locate the Authentication Priority section in AMP Setup > Authentication, and select either Local or Remote as the priority. If Local is selected, then remote will be attempted if a user is not available. If Remote is selected, then the local database is searched if remote authentication fails. The order of remote authentication is RADIUS first, followed by TACACS, and finally LDAP.
Table 23: AMP Setup > Authentication Fields and Default Values for RADIUS Authentication (Continued) Field Default Description Secondary Server Hostname/IP Address N/A Enter the IP address or the hostname of the secondary RADIUS server. Secondary Server Port (1-65535) 1812 Enter the TCP port for the secondary RADIUS server. Secondary Server Secret N/A Enter the shared secret for the secondary RADIUS server. Confirm Secondary Server Secret N/A Re-enter the secondary server secret. 3.
Figure 24: AMP Setup > RADIUS > Add RADIUS Accounting Client Page Illustration 1. To specify the RADIUS authentication server or network, browse to the AMP Setup > RADIUS Accounting page, select Add, illustrated in Figure 24, and provide the information in Table 24. 2.
Figure 25: AMP Setup > Authentication Page Illustration for TACACS+ 2. Select No to disable or Yes to enable TACACS+ authentication. If you select Yes, several new fields appear. Complete the fields described in Table 25. Table 25: AMP Setup > Authentication Fields and Default Values for TACACS+ Authentication Field Default Description Primary Server Hostname/IP Address N/A Enter the IP address or the hostname of the primary TACACS+ server.
4. Select Save. 5. Edit the existing groups or users in TACACS to use the AMP service and define a role for the group or user. l The role defined on the Group Setup page in ACS must match the exact name of the role defined on the AMP Setup > Roles page. n The defined role should use the following format: role=. One example is as follows: role=DormMonitoring As with routers and switches, AirWave does not need to know usernames. 6. AirWave also needs to be configured as an AAA client.
Figure 26: AMP Setup > Authentication Page Illustration for LDAP 3. Complete the fields described in Table 26. Table 26: AMP Setup > Authentication Fields and Default Values for LDAP Authentication Field Default Description Primary Server Hostname/IP Address none Enter the IP address or the hostname of the primary LDAP server. Primary Server Port (165535) 389 Enter the port where the LDAP server is listening. The default port is 389.
Table 26: AMP Setup > Authentication Fields and Default Values for LDAP Authentication (Continued) Field View Server Certificate Default none Description If Connection Type is configured as start-tls, then also specify whether the start-tls connection type uses a certificate. l none - The server may provide a certificate, but it will not be verified. This may mean that you are connected to the wrong server. l optional - Verifies only when the servers offers a valid certificate.
Table 26: AMP Setup > Authentication Fields and Default Values for LDAP Authentication (Continued) Field Add New LDAP Rule Default Description none The LDAP rule parameters are Position, Role Attribute, Operation, Value, and AirWave role. If you create multiple LDAP rules, rules are processed in order based on the rule position value, so the position you assign to the LDAP rule represents the order in which the LDAP rule is applied to determine the AirWave role.
Figure 27: Device Setup > Communication Page Illustration Perform the following steps to define the default credentials and SNMP settings for the wireless network. 1. On the Device Setup > Communication page, locate the Default Credentials area. Enter the credentials for each device model on your network. The default credentials are assigned to all newly discovered APs. The Edit button edits the default credentials for newly discovered devices.
3. Locate the SNMPv3 Informs section. Select the Add button to reveal configuration options. AirWave users will need to configure all v3 users that are configured on the controller. The SNMP Inform receiver in the AirWave will be restarted when users are changed or added to the controller. l Username - Username of the SNMP v3 user as configured on the controller. l Auth Protocol - Can be MD5 or SHA. The default setting is SHA.
Table 31: Device Setup > Communication > Symbol 4131 and Cisco Aironet IOS SNMP Initialization Fields and Default Values Setting Default Description Do Not Modify SNMP Settings Yes When selected, specifies that AirWave will not modify any SNMP settings. If SNMP is not already initialized on the Symbol, Nomadix, and Cisco IOS APs, AirWave is not able to manage them.
Table 32: Device Setup > Upload Firmware & Files Fields and Default Values (Continued) Setting Default Description Firmware Version None Displays the firmware version number. This is a userconfigurable field. HTML Filename None Supporting HTML, displays the name of the file that was uploaded to AirWave and to be transferred to an AP when the file is used in an upgrade. HTML MD5 Checksum None Supporting HTML, displays the MD5 checksum of the file after it was uploaded to AirWave.
4. Enter the appropriate information and select Add. The file uploads to AirWave and once complete, this file appears on the Device Setup > Upload Firmware & Files page. This file also appears on additional pages that display firmware files (such as the Group > Firmware page and on individual APs/Devices > Manage pages). 5. You can also import a CSV list of groups and their external TFTP firmware servers. Table 33 itemizes the settings of this page.
Additional fields may appear for multiple device types. AirWave prompts you for additional firmware information as required. For example, Intel and Symbol distribute their firmware in two separate files: an image file and an HTML file. Both files must be uploaded to AirWave for the firmware to be distributed successfully via AirWave. 6. Select Add to import the firmware file.
Check or uncheck the checkbox under the Enabled column to turn device setup rules on or off. Refer to "Monitoring and Supporting WLAN Clients" on page 236 for more information on the Device Type column that appears in Clients list tables. Figure 30: AMP Setup > Device Type Setup Page Illustration Configuring Cisco WLSE and WLSE Rogue Scanning The Cisco Wireless LAN Solution Engine (WLSE) includes rogue scanning functions that AirWave supports.
Table 34: Cisco SWAN Architecture Components (Continued) SWAN Component Requirements ACS (Access Control Server) l l IP Address Login APs l APs within WDS Group Initial WLSE Configuration Use the following general procedures to configure and deploy a WLSE device in AirWave: l "Adding an ACS Server for WLSE" on page 66 l "Enabling Rogue Alerts for Cisco WLSE" on page 66 l "Configuring WLSE to Communicate with APs" on page 66 l "Discovering Devices" on page 66 l "Managing Devices" on page 67
l Importing from a file l Importing from CiscoWorks Perform these steps to discover access points. 1. Go to the Device > Managed Devices > Discovery Wizard page. 2. Import devices from a file. 3. Import devices from Cisco Works. 4. Import using CDP. Managing Devices Prior to enabling radio resource management on IOS access points, the access points must be under WLSE management.
WDS Participation Perform these steps to configure WDS participation. 1. Log in to the AP. 2. Go to the Wireless Services > AP page. 3. Select Enable participation in SWAN Infrastructure. 4. Select Specified Discovery, and enter the IP address of the Primary WDS device (AP or WLSM). 5. Enter the Username and Password for the WLSE server. Primary or Secondary WDS Perform these steps to configure primary or secondary functions for WDS. 1. Go to the Wireless Services > WDS > General Setup page. 2.
Figure 31: AMP Setup > WLSE > Add New WLSE Page Illustration Perform the following steps for optional configuration of AirWave for support of Cisco WLSE rogue scanning. 1. To add a Cisco WLSE server to AirWave , navigate to the AMP Setup > WLSE page and select Add. Complete the fields in this page. Table 35 describes the settings and default values.
2. After you have completed all fields, select Save. AirWave is now configured to gather rogue information from WLSE rogue scans. As a result of this configuration, any rogues found by WLSE appear on the RAPIDS > List page. What Next? l Go to additional tabs in the AMP Setup section to continue additional setup configurations. l Complete the required configurations in this chapter before proceeding. Dell support remains available to you for any phase of AirWave installation.
Table 36: AMP Setup > ACS > Add/Edit Details Fields and Default Values Field Default Description IP/Hostname None Sets the DNS name or the IP address of the ACS Server. Protocol HTTP Launches a drop-down menu specifying the protocol AirWave uses when it polls the ACS server. Port 2002 Sets the port through which AirWave communicates with the ACS. AirWave generally communicates over port 2002. Username None Sets the Username of the account AirWave uses to poll the ACS server.
Figure 34: AMP Setup > NMS Page Illustration 2. Select Add to integrate a new NMS server, or select the pencil icon to edit an existing server. Provide the information described in Table 37: Table 37: AMP Setup > NMS Integration Add/Edit Fields and Default Values Setting Default Description Hostname None Cites the DNS name or the IP address of the NMS. Port 162 Sets the port AirWave uses to communicate with the NMS. NOTE: AirWave generally communicates via SNMP traps on port 162.
l Complete the required configurations in this chapter before proceeding. Dell support remains available to you for any phase of AirWave installation. Auditing PCI Compliance on the Network This section describes PCI requirements and auditing functions in AirWave.
Table 38: PCI Requirements and Support in AirWave Requirement Description Monitoring configuration standards for network firewall devices When Enabled: PCI Requirement 1.1 establishes firewall and router configuration standards. 1.1 A device fails Requirement 1.1 if there are mismatches between the desired configuration and the configuration on the device. When Disabled: firewall router and device configurations are not checked for PCI compliance, and Pass or Fail status is not reported or monitored.
Table 38: PCI Requirements and Support in AirWave (Continued) Requirement Description Using intrusion-detection or intrusion-prevention systems to monitor all traffic 11.4 When Enabled: AirWave reports pass or fail status when monitoring devices capable of reporting IDS events. Recent IDS events are summarized in the PCI Compliance report or the IDS Report.
Figure 36: Default Credential Compliance for PCI Requirements 4. Select Save. 5. To view and monitor PCI auditing on the network, use generated or daily reports. See "Creating, Running, and Emailing Reports" on page 278. In addition, you can view the real-time PCI auditing of any given device online. Perform these steps: a. Go to the APs/Devices > List page. b. Select a specific device. The Monitor page for that device displays. The APs/Devices page also displays a Compliance subtab in the menu bar. c.
a. Disable debugging. b. Ensure the AirWave server is a trap receiver host. c. Ensure proper traps are enabled. 2. Configure AirWave to optimally monitor the AirWave infrastructure. a. Enable WMS offload on the AMP Setup > General page. b. Configure SNMP communication. c. Create a proper policy for monitoring the AirWave infrastructure. d. Discover the infrastructure. 3. Configure device classification. a. Set up rogue classification. b. Set up rogue classification override. c.
Chapter 3 Configuring and Using Device Groups This section describes the deployment of device groups within AirWave. The section below describes the pages or focused subtabs available on the Groups tab. Note that the available subtabs can vary significantly from one device group to another. One or more subtabs may not appear, depending on the Default Group display option selected on the AMP SetupSetup > General page and the types of devices you add to AirWave.
Table 39: Groups pages (Continued) Menu Item Description Refer to This page configures authentication, authorization, and accounting settings in support of RADIUS servers for device groups. "Adding and Configuring Group AAA Servers" on page 91 Radio This page defines general 802.11 radio settings for device groups.
Table 39: Groups pages (Continued) Menu Item Description Refer to Firmware This page manages firmware files for many devices. "Specifying Minimum Firmware Versions for APs in a Group" on page 114 Compare This page allows you to compare line item-settings between two device groups. On the Groups > List page, select the Compare two groups link, select the two groups from the drop-down menus, and then select Compare.
Individual device settings—such as device name, RF channel selection, RF transmission power, antenna settings, and so forth—typically should not be managed at a group level and must be individually configured for optimal performance. Individual AP settings are configured on the APs/Devices > Manage page. You can create as many different groups as required. Administrators usually establish groups that range in size from five to 100 wireless devices.
Table 40: Groups > List Columns (Continued) Column Description Is Global Group If a group is designated as global, it may not contain APs but it may be used as a template for other groups. This column may also indicate Yes if this group has been pushed to AirWave from a Master Console. Global Group Specifies which group this Subscriber Group is using as its template. SSID The SSID assigned to supported device types within the group.
Figure 39: Pop-up When Hovering over Wrench Icon in Groups > List Figure 40 illustrates one example of the Groups > Basic page. 83 | Configuring and Using Device Groups Dell Networking W-AirWave 8.
Figure 40: Groups > Basic Page Illustration 1. Define the settings in the Basic and Global Group sections. Table 41 describes several typical settings and default values of this Basic section. Dell Networking W-AirWave 8.
Table 41: Basic and Global Groups Fields and Default Values Setting Default Description Name Defined when first adding the group Displays or changes the group name. As desired, use this field to set the name to uniquely identify the group by location, vendor, department, or any other identifier (such as Accounting APs, Cisco devices, 802.1x APs, and so forth). Missed SNMP Poll Threshold (1-100) 1 Sets the number of Up/Down SNMP polls that must be missed before AirWave considers a device to be down.
Table 42: SNMP Polling Periods Fields and Default Values (Continued) Setting Default Description Client Data Polling Period 10 minutes Sets time between SNMP polls for client data for devices in the group. Thin AP Discovery Polling Period 15 minutes Sets time between SNMP polls for Thin AP Device Discovery. Controllers are the only devices affected by this polling interval. Device-to-Device link Polling Period 5 minutes Sets time between SNMP polls for Device-to-Device link polling.
Table 43: Routers and Switches Fields and Default Values (Continued) Setting Default Description Interface Error Counter Polling Period 30 minutes Sets the frequency in which network interfaces are polled for up/down status. This setting can be disabled, or set to poll bridge forwarding tables from switches in a range from every 5 minutes to 30 minutes. Poll 802.3 error counters No Sets whether 802.3 error counters should be polled.
Table 45: Automatic Static IP Assignment Fields and Default Values (Continued) Setting Default Description Subnet Mask none Sets the subnet mask to be assigned to the devices in the Group. Subnet Gateway none Sets the gateway to be assigned to the devices in the Group. Next IP Address none Defines the next IP address queued for assignment. This field is disabled for the initial Access Points group. 7.
Table 48: Cisco IOS/Catalyst Fields and Default Values Setting Default Description SNMP Version 2c The version of SNMP used by AirWave to communicate to the AP. Telnet The protocol AirWave uses to communicate with Cisco IOS devices. Selecting SSH uses the secure shell for command line page (CLI) communication and displays an SSH Version option. Selecting Telnet sends the data in clear text via Telnet. TFTP The protocol AirWave uses to communicate with Cisco IOS devices.
Table 50: Aruba Fields and Default Values (Continued) Setting Default Description Ignore Rogues Discovered by Remote APs No Configures whether to turn off RAPIDS rogue classification and rogue reporting for RAPs in this group. Delete Certificates On Controller No Specifies whether to delete the current certificates on an ArubaOS controller. 12.
17. Select Save when the configurations of the Groups > Basic configuration page are complete to retain these settings without pushing these settings to all devices in the group. Save is a good option if you intend to make additional device changes in the group, and you want to wait until all configurations are complete before you push all configurations at one time. Select Save and Apply to make the changes permanent, or select Revert to discard all unapplied changes.
Table 53: Adding a RADIUS Server Fields and Default Values (Continued) Setting Default Description Secret and Confirm Secret None Sets the shared secret that is used to establish communication between AirWave and the RADIUS server. NOTE: The shared secret entered in AirWave must match the shared secret on the server. Authentication No Sets the RADIUS server to perform authentication when this setting is enabled with Yes. Authentication Port (1-65535) 1812 Appears when Authentication is enabled.
Figure 42: Groups > Security Page Illustration Table 54: Groups > Security Page Fields and Default Values Setting Default Description Enabled This field enables support for VLANs and multiple SSIDs on the wireless network. If this setting is enabled, define additional VLANs and SSIDs on the Groups > SSIDs page. Refer to "Configuring Group SSIDs and VLANs" on page 96. If this setting is disabled, then you can specify the Encryption Mode in the Encryption section that displays.
Table 54: Groups > Security Page Fields and Default Values (Continued) Setting Default Description WEP Key Rotation Interval 300 Sets the frequency at which the Wired Equivalent Privacy (WEP) keys are rotated in the device group being configured. The supported range is from 0 to 10,000,000 seconds. RADIUS Authentication Servers Section RADIUS Authentication Server #1 - #4 Not selected Defines one or more RADIUS Authentication servers to be supported in this device group.
Table 55: Groups > Security Encryption Mode settings Setting Default Description Encryption Modes: Require 802.1X, Optional WEP, Require WEP, Require 802.1X, Require LEAP, 802.1X + WEP, 802.1X + WEP, LEAP + WEP, Encryption Mode Require 802.1X Transmit Key 1 Key #1 None Key #2 None Key #3 None Key #4 None Select the Transmit Key value. This can be a value from 1 through 4. Note that 802.1X + WEP mode sets this key value to 1.
Table 55: Groups > Security Encryption Mode settings (Continued) Setting Default Description Encryption Mode WPA2/PSK WPA2 WPA Compatibility Mode Yes Specify whether to enable WPA2 WPA Compatibility Mode. WPA1 Cipher (Cisco WLC Only) TKIP Specify the WPA1 Cipher. Values include AES, TKIP, and AES/TKIP. NOTE: This drop down is only available if WPA2 WPA Compatibility Mode is Yes. Unicast Cipher (Cisco Only) AES/TKIP Specify the Unicast Cipher. Values include AES, TKIP, and AES/TKIP.
1. Go to Groups > List and select the group name for which to define SSIDs/VLANs. 2. Select the Groups > SSIDs configuration page. Table 56 describes the information that appears for SSIDs and VLANs that are currently configured for the device group. Table 56: Groups > SSIDs Fields and Descriptions Field Description SSID Displays the SSID associated with the VLAN. VLAN ID Identifies the number of the primary VLAN SSID on which encrypted or unencrypted packets can pass between the AP and the switch.
Table 57: SSID/VLAN Section Fields and Default Values Setting Default Description Specify Interface Name Yes Enables or disables an interface name for the VLAN interface. Selecting No for this option displays the Enable VLAN Tagging and VLAN ID options. Enable VLAN Tagging (Cisco WLC, Proxim, Symbol only) Enables or disables VLAN tagging. Displays if Specify Interface Name is set to No.
Table 58: Encryption Section Field and Default Values Setting Encryption Mode Default Description No Encryption Drop-down menu determines the level of encryption required for devices to associate to the APs. The drop-down menu options are as follows. Each option displays additional encryption settings that must be defined.
9. Locate the RADIUS Accounting Servers area on the Groups > SSIDs configuration page and define the settings. Table 61 describes the settings and default values. Table 61: Radius Accounting Servers Fields and Default Values Setting Default Description RADIUS Accounting Server 1-3 (Cisco WLC, Proxim Only) None Pull-down menu selects RADIUS Accounting servers previously entered on the Groups > RADIUS configuration page.
Figure 45: Groups > Radio Page Illustration 3. Locate the Radio Settings area and adjust these settings as required. Table 62 describes the settings and default values. Table 62: Groups > Radio > Radio Settings Fields and Default Values Setting Allow Automatic Channel Selection (2.4, 5, and 4.9GHz Public Safety) 802.
Table 62: Groups > Radio > Radio Settings Fields and Default Values (Continued) Setting RTS/CTS Maximum Retries (1-255) Default Description 32 If RTS/CTS is enabled, this specifies the maximum number of times the AP issues an RTS before stopping the attempt to send the packet through the radio. Acceptable values range from 1 to 128. Maximum Data Retries (1-255) 32 The maximum number of attempts the AP makes to send a packet before giving up and dropping the packet.
Table 63: Groups > Radio > Proxim AP-600, AP-700, AP-2000, AP-4000; Avaya AP-3, Avaya AP-7, AP4/5/6, AP-8; ProCurve520WL Fields and Default Values (Continued) Setting Default Description Interference Robustness No If enabled, this option will fragment packets greater than 500 bytes in size to reduce the impact of radio frequency interference on wireless data throughput. Distance Between APs Large This setting adjusts the receiver sensitivity.
Table 65: Groups > Radio > Symbol Fields and Default Values Setting Default Description Rogue Scanning Yes If enabled, Symbol access points with 3.9.2 or later firmware in the group will passively scan for rogue access points at the specified interval. This rogue scan will not break a user’s association to the network. 240 If Rogue Scanning is enabled, this setting controls the frequency with which scans are conducted (in minutes).
Figure 47: Groups > Cisco WLC Config Page Illustration, expanded view Configuring WLANs for Cisco WLC Devices In Cisco WLC Config, WLANs are based on SSIDs or VLANs that are dedicated to Cisco WLC controllers. Perform the following steps to define and configure WLANs for Cisco WLC controllers. 1. Go to the Groups > Cisco WLC Config page, and select WLANs in the navigation pane at left.
Figure 49: Add New SSID/VLAN > General Tab Illustration Figure 50: Add New SSID/VLAN > Security Tab Illustration Dell Networking W-AirWave 8.
Figure 51: Add New SSID/VLAN > QoS Tab Illustration Figure 52: Add New SSID/VLAN > Advanced Tab Illustration 107 | Configuring and Using Device Groups Dell Networking W-AirWave 8.
Defining and Configuring LWAPP AP Groups for Cisco Devices The Groups > Cisco WLC Config > WLANs > Advanced > AP Groups page allows you to add/edit/delete AP Groups on the Cisco WLC. LWAPP AP Groups are used to limit the WLANs available on each AP. Cisco thin APs are assigned to LWAPP AP Groups. Viewing and Creating Cisco AP Groups 1. Go to the Groups > Cisco WLC Config page, and select WLANs > Advanced > AP Groups in the navigation pane on the left side. This page displays the configured LWAPP APs.
settings. Go to the Groups > Cisco WLC Config > Controller page. This navigation is illustrated in Figure 54. Figure 54: Groups > Cisco WLC Config > Controller Navigation Configuring Wireless Parameters for Cisco Controllers This section illustrates the configuration of Wireless settings in support of Cisco WLC controllers. The navigation for Wireless settings is illustrated in Figure 55.
l Wireless Protection Policies l Web Auth Figure 56 illustrates these components and this navigation: Figure 56: Groups > Cisco WLC Config > Security Navigation Illustration Configuring Management Settings for Cisco WLC Controllers AirWave allows you to configure of SNMP and Syslog Server settings for Cisco WLC controllers. You can configure up to four trap receivers on the Cisco WLC including the AMP IP that can be used in Global Groups.
Figure 58: Groups > PTMP Page Illustration 3. Define the settings on this page. Table 66 describes the settings and default values. Table 66: Groups > PTMP Fields and Default Values Setting Default Description 802.11a Radio Channel 58 Selects the channel used for 802.11a radios by the devices in this group. 802.11g Radio Channel 10 Selects the channel used for 802.11g radios by the devices in this group. Channel Bandwidth 20 Defines the channel bandwidth used by the devices in this group.
Figure 59: Groups > Proxim Mesh Page Illustration The General section contains settings for mesh radio, number of mesh links, RSSI smoothing, roaming threshold and de-auth client. Table 67: General Fields and Default Values Setting Default Description Mesh Radio 4.9/5Ghz Drop-down selects the radio that acts as the backhaul to the network. Maximum Mesh Links (1-32) 6 Sets the maximum number of mesh links allowed on an AP.
Table 69: Mesh Cost Matrix Fields and Default Values Setting Default Description Hop Factor (110) 5 Sets the factor associated with each hop when calculating the best path to the portal AP. Higher factors will have more impact when deciding the best uplink. Maximum Hops to Portal (1-4) 4 Set the maximum number of hops for the AP to reach the Portal AP. RSSI Factor (010) 5 Sets the factor associated with the RSSI values used when calculating the best path to the portal AP.
3. Select Save when configurations are complete to retain these settings. Select Save and Apply to make the changes permanent, or select Revert to discard all unapplied changes. Specifying Minimum Firmware Versions for APs in a Group This configuration is optional. AirWave allows you the option of defining the minimum firmware version for each AP type in a group on the Groups > Firmware configuration page. At the time that you define the minimum version, AirWave automatically upgrades all eligible APs.
2. For each device type in the group, specify the minimum acceptable firmware version. If no firmware versions are listed, go to the Device Setup > Upload Firmware & Files configuration page to upload the firmware files to AirWave. 3. Select Upgrade to apply firmware preferences to devices in the group. The device types that display will vary based on the device types that were selected on the Groups > Basic page. 4. Select Save to save the firmware file as the desired version for the group. 5.
Figure 62: Comparing Two Devices Groups on the Groups > List > Compare Page (Partial View) 3. Note the following factors when using the Compare page: l The Compare page can be very long or very abbreviated, depending on how many configurations the device groups share or do not share. l When a configuration differs between two groups, the setting is flagged in red text for the group on the right. l The default setting of the Compare page is to highlight settings that differ between two groups.
3. Ensure that there are no devices in the group that you want to delete. AirWave does not permit you to delete a group that still contains managed devices. You must move all devices to other groups before deleting a group. 4. Ensure that the group is not a global group that has subscriber groups, and is not a group that was pushed from a Master Console. AirWave will not delete a group in which either of those cases is true. 5. Select the checkbox, and click the Delete button.
l Scheduling Options — Schedules the changes to be applied to this group in the future. Enter the desired change date in the Start Date/Time field. You can also specify if this is a one-time schedule or a recurring schedule. Recurring options are Daily, Weekly, Monthly, and Annually. AirWave takes the time zone into account for the group if a time zone other than AirWave System Time has been configured on the Groups > Basic configuration page.
4. Click the Change Device Group/Folder drop-down menu and select any of the supported changes. Table 70 describes these actions and controls. Any action you take applies to all selected devices. Table 70: Modify Multiple Devices Section Fields and Default Values Action Description System Actions Change Device Group/Folder Move the selected devices to a new group or folder. If the AP is in managed mode when it is moved to a new group, it will be reconfigured.
Table 70: Modify Multiple Devices Section Fields and Default Values (Continued) Action Description Add Maintenance Window Automate the manual action of putting the selected devices into Manage mode at once so that changes can be applied, and after the maintenance period is over, the devices automatically revert to Monitor-Only mode. Maintenance windows can be set as a one-time or recurring event. Delete all Maintenance Windows Deletes all maintenance windows set for these devices.
l To have Global Group status, a group must contain no devices; accordingly, access points can never be added to a Global Group. Global groups are visible to users of all roles, so they may not contain devices, which can be made visible only to certain roles. Figure 65 illustrates the Groups > List page. Figure 65: Groups > List Page Illustration l To set a group as a Global Group, go to the Groups > Basic configuration page for an existing or a newly created group.
Figure 67: Groups > Basic > Managed Page Illustration l Once the configuration is pushed, the unchecked fields from the Global Group appears on the Subscriber Group as static values and settings. Only fields that had the override checkbox selected in the Global Group appear as fields that can be set at the level of the Subscriber Group. Any changes to a static field must be made on the Global Group. l If a Global Group has Subscriber Groups, it cannot be changed to a non-Global Group.
| Configuring and Using Device Groups Dell Networking W-AirWave 8.
Chapter 4 Discovering, Adding, and Managing Devices This section describes how to add, configure, and monitor wired and wireless devices, and contains the following sections corresponding to features of the Device Setup and APs/Devices tabs: l "Device Discovery Overview" on page 124 l "Discovering and Adding Devices" on page 124 l "Monitoring Devices" on page 136 l "Configuring and Managing Devices" on page 157 l "Troubleshooting a Newly Discovered Down Device" on page 172 l "Using AirWave to Se
SNMP/HTTP scanning information is provided in these sections: l "Adding Networks for SNMP/HTTP Scanning" on page 125—explains how to enable networks that have been defined for scanning. l "Adding Credentials for Scanning" on page 125—explains how to define network credentials for scanning. Credentials must be defined before using them in scan sets. l "Defining a Scan Set" on page 126—explains how to create a scan set by combining networks and credentials when scanning for devices.
2. To create a new scan credential, select the Add button to add a new scan credential. Figure 69 illustrates this page. (Note that you may have to scroll down the page again to view this section.) Figure 69: Device Setup > Discover > Add/Edit New Scan Credential Section Illustration 3. Enter a name for the credential in the Name field (for example, Default). This field supports alphanumeric characters (both upper and lower case), blank spaces, hyphens, and underscore characters. 4.
4. In the Automatic Authorization section, select whether to override the global setting in AMP Setup > General and have New Devices be automatically authorized into the New Device List, the same Group/Folder as the discovering devices, the same Group/Folder as the closest IP neighbor, and/or a specified auto-authorization group and folder. 5. Select Add to create the selected scans, which then appear in a list at the top of the Device Setup > Discover page. 6.
Table 71: Device Setup > Discover > Discovery Execution Fields (Continued) Column Description Total Devices Found Displays the total number of APs detected during the scan that AirWave can configure and monitor. Total includes both APs that are currently being managed by AirWave as well as newly discovered APs that are not yet being managed. New Devices Found Displays the number of discovered APs that are not yet managed, but are available.
The Cisco Discovery Protocol (CDP) CDP uses the polling interval configured for each individual Cisco switch or router on the Groups > List page. AirWave requires read-only access to a router or switch for all subnets that contain wired or wireless devices. The polling interval is specified on the Groups > Basic page.
l "Adding Multiple Devices from a CSV File" on page 133 l "Adding Universal Devices" on page 134 Adding Devices with the Device Setup > Add Page Manually adding devices from the Device Setup > Add page to AirWave is an option for adding all device types. You only need to select device vendor information from a drop down menu for Cisco and Dell Networking W-Series devices, and AirWave automatically finds and adds specific make and model information into its database.
Figure 73: Device Setup > Add > Device Communications and Location Sections 3. Complete these Device Communications and Location settings for the new device. Table 72 further describes the contents of this page. Settings may differ from device to device based on the type of device and the features that the device supports. In several cases, the default values from any given device derive from the Device Setup > Communication page.
Table 72: Device Communication and Location Fields and Default Values (Continued) Setting Default Description SSH Port 22 For devices that support SSH, specify the SSH port number. Taken from Device Setup > Communication Community string used to communicate with the AP. NOTE: The Community String should have RW (Read-Write) capability. New, out-of-the-box Cisco devices typically have SNMP disabled and a blank username and password combination for HTTP and Telnet.
5. At the bottom of the page, select either the Monitor Only or Management read/write radio button. The choice depends on whether or not you wish to overwrite the Group settings for the device being added. For more information and a detailed procedure, see "Authorizing Devices to AirWave from APs/Devices > New Page" on page 129. If you select Manage read/write, AirWave overwrites existing device settings with the Groups settings.
Figure 74: Device Setup > Add > Import Devices via CSV Page Illustration 3. Select a group and folder into which to import the list of devices. 4. Click the Browse button, and select the CSV list file on your computer. 5. Click the Upload button to add the list of devices into AirWave. Adding Universal Devices AirWave gets basic monitoring information from any device including switches, routers and APs whether or not they are supported devices. Entering SNMP credentials is optional.
it off the ignored list, it returns immediately to the location in AirWave where it had resided before it was marked Ignored. l Ignored devices are not displayed in APs/Devices > New if discovered in subsequent scans. l Deleted devices will be listed on the APs/Devices > New if discovered in subsequent scans. Perform these steps to further process or return an ignored device to a managed status. 1. Go to the APs/Devices > New page to view all newly discovered devices. See Figure 75.
2. To change the device parameters for a given device, select its checkbox and adjust group, folder, monitor, and manage settings as desired. 3. Select Add to add the device to AirWave so that it appears on the APs/Devices > New list. 4. The Unignore button will either return the device to its regular folder or group or send it to the APs/Devices > New page.
Verify that the devices you added are now appearing in the APs/Devices > Up page. Newly added devices will have a status of Down until they have been polled the first time. Their configuration status will remain Unknown until they have finished verification. The Up status is not contingent on verification. The same section also appears on the Groups > Monitor page and is hyperlinked from a controller's monitoring interface.
clients, you would need to create one filter with the parameters Clients > 0, and a second filter with the parameters Clients < 5. 7. Drag and Drop data columns from the Available Columns list to the Current Columns list to select which columns display in the view. You can reorder the columns in the Current Columns list by dragging and dropping the data column to a different place in the list. 8. Click OK. The name of the new view is added to the view list. 9. Click the name of the new view.
Figure 80: Monitoring Page Bottom Level Data Common to All Device Types (partial view) Monitoring pages vary according to whether they are wired routers/switches, controllers/WLAN switches, or thin or fat APs; whether the device is a Mesh device; and whether Spectrum is enabled. These differences are discussed in the sections that follow. Monitoring Data Specific to Wireless Devices The APs/Devices > Monitor page for controllers and APs include a graph for users and bandwidth.
Figure 81: APs/Devices > Monitor Page for Wireless Devices (partial view of an AP) Table 74 describes the fields and information displayed in the Device Info section. The displayed fields vary from device to device.
Table 74: APs/Devices > Monitor > Device Info Fields and Default Values (Continued) Field Description l l Configuration l l l Good means all the settings on the AP agree with the settings AirWave wants them to have. Mismatched means there is a configuration mismatch between what is on the AP and what AirWave wants to push to the AP. The Mismatched link directs you to this specific APs/Devices > Audit page where each mismatch is highlighted.
Table 74: APs/Devices > Monitor > Device Info Fields and Default Values (Continued) Field IP Address Description Displays the IP address that AirWave uses to communicate to the device. This number is also a link to the AP web interface. When the link is moused over a pop-up menu will appear allowing you to http, https, telnet or SSH to the device.
Table 75: APs/Devices > Monitor > Radio Fields and Descriptions (Continued) Field Description Channel Width* The bandwidth of the channel used by 802.11 stations. Legacy devices use 20 MHz channels, and newer devices that support the 802.11n standard can use 40 MHz channels to increase throughput. Mesh Links * The total number of mesh links to the device including uplinks and downlinks. Role Whether the radio acts as a Mesh Node or Access Active SSIDs The SSID(s) of the radio.
Figure 82: Interactive graphs for a Dellcontroller Table 77 describes the graphs on this page. Table 77: APs/Devices > Monitor Graphical Data Graph Description Clients Formerly Users. Shows the max and average client count reported by the device radios for a configurable period of time. User count for controllers are the sum of the user count on the associated APs. Check boxes below the graph can be used to limit the data displayed. Usage Formerly Bandwidth.
Table 78: APs/Devices > Monitor > Connected Clients Fields and Default Values (Continued) Field Description Device Type The type of device the user is using as determined by the Device Type Rules set up by an administrator in AMP Setup > Device Type Setup. For more information, refer to "Setting Up Device Types" on page 64. Role The role of the connected client such as employee, perforce, or logon (captive portal). MAC Address Displays the Radio MAC address of the user associated to the AP.
Table 78: APs/Devices > Monitor > Connected Clients Fields and Default Values (Continued) Field LAN IP Addresses LAN Hostnames Description Displays the IP assigned to the user MAC. This information is not always available. AirWave can gather it from the ARP cache of switches discovered by AirWave. This column can accommodate multiple IP addresses for a client if it has both IPv4 and IPv6. The DNS hostname(s) broadcast by the client.
Complete ARM statistics from Dell Networking W-Series controllers can be retrieved from the Radio Statistics page by selecting the Run a command drop-down menu and choosing button, as illustrated in Figure 84. Figure 84: Fetch additional radio stats by running a show command When this button is selected, a new browser window launches with the statistics in plain text. Other ARM-tracked metrics are visible in the Radio Statistics page for Dell Networking W-Series APs.
Figure 86: 802.11 Radio Counters Summary table The frame- per-second rate of these and other 802.11 errors over time are tracked and compared in the 802.11 Counters graph on the same page. Radio Statistics Interactive Graphs Time-series graphs for the radio show changes recorded at every polling interval over time when polling with either SNMP or AMON. Clients and Usage data are polled based on the AP's group's User Data Polling Period. Channel, Noise, and Power are based on AP Interface Polling Period.
Table 81: Radio Statistics Interactive Graphs Descriptions (Continued) Graph Title Description Utilization (Dell Networking W and Cisco WLC thin APs on supported firmware versions only) Displays max and average percentages on this radio for busy, interfering receiving and transmitting signals. Special configuration on the controller is required to enable this data. Consult the Dell Networking W-AirWave Best Practices Guide at dell.com/support/manuals for details.
Table 82: ARM Events table Columns and Values Column Description Time The time of the ARM event. Trap Type The type of trap that delivered the change information. Current ARM trap types that display in AirWave are: l Power Change l Mode Change l Channel Change Values that display in the following columns depend on the Trap Type. Previous Tx Power Old value for transmit power before the Power Change event took place. Current Tx Power New transmit power value after the change.
l Bluetooth l Cordless Base Freq Hopper l Cordless Phone Fixed Freq l Cordless Phone Freq Hopper l Generic Fixed Freq l Generic Freq Hopper l Microwave l Microwave Inverter l Unknown l Video Device Fixed Freq l Wi-Fi l XBox Freq Hopper Active BSSIDs Table The Active BSSIDs table maps the BSSIDs on a radio with the SSID it broadcasts to the network, as illustrated in Figure 90. This table appears only for Dell Networking W-Series AP radios.
Figure 91: APs/Devices > Monitor page for a Mesh Device These fields are described in detail in "Viewing Device Monitoring Statistics" on page 136. Monitoring Data for Wired Devices (Routers and Switches) The monitoring page for routers and switches includes basic device information at the top, a bandwidth graph depicting the sum of all the physical interfaces, and beneath that, CPU/Memory utilization graphs as shown in Figure 92. Dell Networking W-AirWave 8.
Figure 92: APs/Devices > Monitor Page for a Mobility Access Switch All managed wired devices also include an Interfaces subtab, as shown in Figure 93. Figure 93: APs/Devices > Interfaces Page for Wired Devices (partial view) . 153 | Discovering, Adding, and Managing Devices Dell Networking W-AirWave 8.
The Interfaces page includes a summary of all the interfaces at the top. In case of the stacked switches, the master includes the interfaces of all the members including its own. The physical and the virtual interfaces are displayed in separate tables, labeled Physical Interfaces and Virtual Interfaces. VLANs are listed below the interface. The Interfaces page for AirMesh APs includes VLANs as part of the Virtual Interfaces.
Figure 95: Individual Interface Information Section Bandwidth, and various standard and enterprise specific error counting information is displayed in the lower section in a tabbed graph, which are shown in "Interface Monitoring Page for a Wired Device" on page 154 above. Connected Clients, if any, are listed in a table below the interactive graphs. What Next? All device lists in AirWave act as portals to management pages if you have the proper read/write privileges.
Figure 96: APs/Devices > Audit Page Illustration 6. Review the list of changes to be applied to the device to determine whether the changes are appropriate. If not, you need to change the Group settings or reassign the device to another Group. Using Device Folders (Optional) The devices on the APs/Devices > List page include List, Up, Down, and Mismatched fields. These devices are arranged in groups called folders.
3. Select the Parent folder. 4. Select Add. Once a new folder has been created, devices can be moved into it using the Modify Devices link or when New Devices are added into AirWave.
Figure 98: APs/Devices > Manage > General Section Illustration 3. Select Manage Read/Write on the Management Mode field. 4. Select Save and Apply, then Confirm Edit on the confirmation page to retain these settings and to push configuration to the device. 5. For device configuration changes that require the device to reboot, use the Schedule function to push the changes at a time when WLAN users will not be affected. 6.
Figure 99: APs/Devices > Manage Page Illustration (partial view) If any changes are scheduled for this AP, they appear in a Scheduled Changes section at the top of the page above the other fields. The linked name of the job takes you to its System > Configuration Change Job Detail page. 2. Locate the General section for information about the AP’s current status. Table 83 describes the fields, information, and settings.
Table 83: APs/Devices > Manage > General Fields and Descriptions (Continued) Field Description Group Links to the Group > Monitoring page for the AP. Template Displays the name of the group template currently configuring the AP. This also displays a link to the Groups > Template page. NOTE: This field is only visible for APs that are managed by templates. Folder Displays the name of the folder containing the AP. Also displays a link to the APs/Devices > List page for the folder.
Table 84: APs/Devices > Manage > Settings Fields and Default Values (Continued) Setting Default Device Type Description RADIUS Server None Instant Text field for specifying the a RADIUS server for the controller. RF Band Selection All Instant Drop-down menu for specifying the RF Band on the controller. Location Read from the device All The SNMP location set on the device. Latitude None All Text field for entering the latitude of the device.
4. Complete additional settings on the APs/Devices > Manage page, to include H-REAP, certificates, radio settings, and network settings. Table 85 describes many of the possible fields. For complete listing and discussion of settings applicable only to Dell Networking W-Series devices, see the Dell Networking W-Series Device Configuration Guide.
Table 85: Additional Settings (Continued) Setting Default Device Type Description Transmit Power Reduction 0 Proxim Transmit Power Reduction determines the APs transmit power. The max transmit power is reduced by the number of decibels specified. Represents the AP’s current RF channel setting. The number relates to the center frequency output by the AP’s RF synthesizer.
Table 85: Additional Settings (Continued) Setting Default Device Type Description Subnet Mask None All Provides the IP subnet mask to identify the sub-network so the IP address can be recognized on the LAN. If DHCP is enabled, the current assigned address will appear grayed out and the field cannot be updated in this area. Gateway None All The IP address of the default internet gateway.
Table 87: APs/Devices > Manage > Interface Fields and Descriptions for Cisco WLC Devices (Continued) Field Default Description Port None The port on the controller to access the interface. IP Address None The IP address of the controller. Subnet Mask None The subnet mask for the controller. Gateway None The controller's gateway. Primary and Secondary DHCP Servers None The DHCP servers for the controller. Guest LAN Disabled Indicates a guest LAN.
4. Enter a name for the maintenance window. 5. In the Occurs field, specify whether the maintenance window should occur one time, or daily, weekly, monthly, or annually. Additional options may display based on the selected value. For example, if you select monthly, the you will be prompted to specify the day of the month for the recurrence. 6. Set the desired start time and the duration (in minutes) of the maintenance window. 7. Click the Add button.
Figure 102: Import Interfaces for Refresh and Reload (lower portion of page) You can view details for each interface on a wired device from its individual interface page as well. For details, see "Understanding the APs/Devices > Interfaces Page" on page 154. You can configure interface settings individually or in groups. For individual settings, select the pencil icon next the interface name in AP/Devices > Interfaces.
Figure 103: Physical Interfaces Monitoring and Configuration Sections Figure 104: Virtual Individual Interfaces Configuration Section To configure interfaces as a group, select Edit Interfaces above the Physical or Virtual Interfaces table as shown in Figure 105. Dell Networking W-AirWave 8.
Figure 105: Edit Multiple Interfaces You will remain on the same page, but will have the option to make changes to the most commonly edited settings in batch mode, as shown in Figure 106. Figure 106: Multiple Interface Editing Page Illustration AirWave assembles the entire running configuration using templates and your modifications to these pages. For a more detailed discussion on templates, see "Creating and Using Templates" on page 178.
Figure 107: APs/Devices > Manage > Device Communication The Device Communication area may appear slightly different depending on the particular vendor and model of the APs being used. 3. Enter and confirm the appropriate Auth Password and Privacy Password. 4. You can disable the View Device Credentials link in AirWave if you are the root user. Contact Dell support at dell.com/support for detailed instructions to disable the link. 5. (Optional.
monitor-only mode in AMP Setup > General or 2) if you are looking at an APs/Devices > Manage page for a controller or autonomous AP that supports firmware upgrades in AirWave. See the Supported Infrastructure Devices document on the Home > Documentation page for a list of the AirWave-supported devices that can perform firmware upgrades. In most cases, you cannot upgrade firmware directly on thin APs. Figure 108 illustrates the page that opens and Table 88 describes the settings and default values.
Figure 108: APs/Devices > Manage Firmware Upgrades Initiating a firmware upgrade will change the Firmware Status column for the device to Pending in APs/Devices > List. You can review the status of all recent firmware upgrade jobs in System > Firmware Upgrade Jobs.
Table 89: Common System Messages for Down Status Message Meaning AP is no longer associated with controller This means the AP no longer shows up in any controller's AP list (on the AirWave server). Either the AP was removed from the controller, or it has roamed to another controller that AirWave does not have visibility to, or it is offline.
Figure 109: View Device Credentials Window The View Device Credentials message may appear slightly different depending on the vendor and model. 5. If the credentials are incorrect, return to the Device Communications area on the APs/Devices > Manage page. Enter the appropriate credentials, and select Apply. 6. Return to the APs/Devices > List page to see if the device appears with a Status of Up.
l Dell Networking W AP Groups running permanently with the default Spectrum profile l Individual APs running temporarily in Spectrum mode while part of a Dell Networking W AP Group set to ap-mode l Controller-level Spectrum Overrides (an alternative to creating new Dell Networking W AP groups or new radio profiles for temporary changes) Setting up a Permanent Spectrum Dell AP Group If you have multiple supported Dell Networking W-Series APs in multiple controllers that you want to run in Spectrum mode
The above steps will use the defaults in the referenced Spectrum Profile. In most cases, you should not change the settings in the default profile. If you must change the defaults, however, navigate to Groups > Controller Config > Profiles > RF > 802.11a/g Radio > Spectrum page, and create a new Spectrum profile with non-default settings.
To disable Spectrum mode on this individual AP after it has collected data, return to the APs/Devices > Manage page for this AP and set the Spectrum Override field back to No. Configuring a Controller to use the Spectrum Profile You can use AirWave to customize individual fields in the profile instance used by a particular controller without having to create new Dell Networking W AP groups and new radio profiles.
Chapter 5 Creating and Using Templates This section provides an overview and several tasks supporting the use of device configuration templates in AirWave, and contains the following topics: l "Group Templates" on page 178 l "Viewing and Adding Templates" on page 180 l "Configuring General Template Files and Variables" on page 183 l "Configuring Templates for Dell Networking W-Instant" on page 188 l "Configuring Templates for AirMesh" on page 189 l "Configuring Cisco IOS Templates" on page 190
Template Variables Variables in templates configure device-specific properties, such as name, IP address and channel. Variables can also be used to configure group-level properties, such as SSID and RADIUS server, which may differ from one group to the next.
l %password% l %power% l %radius_server_ip% l %rf_band% l %server_cert_checkstum% l %syslocation% l %syslog_server% The variable settings correspond to device-specific values on the APs/Devices > Manage configuration page for the specific AP that is getting configured. Changes made on the other Group pages (Radio, Security, VLANs, SSIDs, and so forth) are not applied to any APs that are configured by templates.
Table 90: Groups > Templates Fields and Default Values (Continued) Setting Description Device Type Displays the template that applies to APs or devices of the specified type. If (Any Model) is selected for a vendor, then the template applies to all models from that vendor that do not have a version-specific template defined. If there are two templates that might apply to a device, the template with the most restrictions takes precedence. Status Displays the status of the template.
Table 91: Groups > Templates > Add Template Fields and Default Values Setting Default Description Use Global Template No Uses a global template that has been previously configured on the Groups > Templates configuration page. Available templates will appear in the drop-down menu. If Yes is selected you can also configure global template variables. For Symbol devices you can select the groups of thin APs to which the template should be applied.
Table 91: Groups > Templates > Add Template Fields and Default Values (Continued) Setting Default Description None If the template is updating the Telnet/SSH Username on the AP, enter the new username AirWave should use here. AirWave updates the credentials it is using to communicate to the device after the device has been managed. None If the template is updating the Telnet/SSH password on the AP, enter the new Telnet/SSH password AirWave should use here.
2. Select an AP from the Group to serve as a model AP for the others in the Group. You should select a device that is configured currently with all the desired settings. If any APs in the group have two radios, make sure to select a model AP that has two radios and that both are configured in proper and operational fashion. 3. Go to the Groups > Templates configuration page. Select Add to add a new template. 4. Select the type of device that will be configured by this template. 5.
actual logging facility local6 actual logging queue-limit 100 actual logging trap debugging no service pad actual ntp clock-period 2861929 actual ntp server 209.172.117.194 radius-server attribute 32 include-in-access-req format %h … 10. Once the template is correct and all mismatches are verified on the APs/Devices > Audit configuration page, use the Modify Devices link on the Groups > Monitor configuration page to place the desired devices into Management mode.
config file as "configuration mismatches.” Lines enclosed in are included in the AP startup-config file but AirWave ignores them when verifying configurations. Lines enclosed in cause AirWave to ignore those lines during configuration verification. Ignore_and_do_not_push Command The ignore and do not push directive should typically be used when a value cannot be configured on the device, but always appears in the running-config file.
Table 92: Conditional Variable Syntax Components Variable Values Meaning Dot11Radio0 2.4GHz radio module is installed Dot11Radio1 5GHz external radio module is installed a Installed 5GHz radio module is 802.11a b Installed 2.4GHz radio module is 802.11b only g Installed 2.4GHz radio module is 802.11g capable interface radio_type backup wds_role The WDS role of the AP is the value selected in the dropdown menu on the APs/Devices > Manage configuration page for the device.
Table 93: Substitution Variables in Templates (Continued) Variable Meaning Command Suppressed Default antenna_ receive Receive antenna antenna receive %antenna_ receive% diversity antenna_transmit Transmit antenna antenna transmit %antenna_ transmit% diversity cck_power 802.11g radio module CCK power level power local cck %cck_ power% maximum ofdm_power 802.11g radio module OFDM power level power local ofdm %ofdm_ power% maximum power 802.11a and 802.
organization %organization% %endif% syslog-server 216.31.249.235 syslog-level debug terminal-access clock timezone Pacific-Time -08 00 rf-band 5.
service avt %avt_ingress_interface% %avt_ingress_ip% buffer_time 200 mode %avt_mode% AirWave displays a warning if AirMesh APs attempting to either upgrade or push configurations lack the necessary write permissions. Configuring Cisco IOS Templates Cisco IOS access points have hundreds of configurable settings. AirWave enables you to control them via the Groups > Templates configuration page.
aaa group server radius wds server 10.2.25.162 auth-port 1645 acct-port 1646 wlccp authentication-server infrastructure method_wds wlccp wds priority 200 interface BVI1 wlccp ap username wlse password 7 095B421A1C %endif% The following example sets an AP as a WDS Master Backup with the following lines: %if wds_role=backup% aaa authentication login method_wds group wds aaa group server radius wds server 10.2.25.
%IF interface=Dot11Radio1% interface Dot11Radio1 bridge-group 1 bridge-group 1 block-unknown-source bridge-group 1 spanning-disabled bridge-group 1 subscriber-loop-control no bridge-group 1 source-learning no bridge-group 1 unicast-flooding no ip address no ip route-cache rts threshold 2312 speed basic-6.0 basic-9.0 basic-12.0 basic-18.0 basic-24.0 36.0 48.0 54.
! username admin password 1 5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8 username admin privilege superuser username operator password 1 fe96dd39756ac41b74283a9292652d366d73931f ! ! access-list 100 permit ip 192.168.0.
radio %radio_index% rts-threshold 2345 radio %radio_index% max-mobile-units 25 radio %radio_index% admission-control voice max-perc 76 radio %radio_index% admission-control voice res-roam-perc 11 radio %radio_index% admission-control voice max-mus 101 radio %radio_index% admission-control voice max-roamed-mus 11 %endif% %if radio_type=11an% radio %radio_index% speed basic11a 9 18 36 48 54 mcs 0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 %endif% %if radio_type=11b% radio %radio_index% speed basic1 basic2 basic5p5 b
Figure 115: Group > Templates > Add Page Illustration 4. Use the drop-down menu to select a device from which to build the global template and click the Fetch button. The menus are populated with all devices that are contained in any group that subscribes to the global group. The fetched configuration populates the template field. Global template variables can be configured with the Add button in the Template Variables box, illustrated in Figure 116.
n Group Name—the name of the subscriber group that you wish to update. n Variable Name—the name of the group template variable you wish to update. n Variable Value—the value to set. For example, for a global template with a variable called "ssid_1", the CSV file might resemble what follows: Group Name, ssid_1 Subscriber 1, Value 0 8. Once you have defined and saved a global template, it is available for use by any local group that subscribes to the global group.
| Creating and Using Templates Dell Networking W-AirWave 8.
Chapter 6 Using RAPIDS and Rogue Classification This chapter provides an overview to rogue device and IDS event detection, alerting, and analysis using RAPIDS, and contains the following sections: l "Introduction to RAPIDS" on page 198 l "Viewing Rogues on the RAPIDS > List Page" on page 208 l "Setting Up RAPIDS" on page 200 l "Defining RAPIDS Rules" on page 203 l "Score Override " on page 212 l "Using the Audit Log" on page 214 l "Additional Resources " on page 214 Introduction to RAPIDS Rog
Figure 117: RAPIDS > Overview Page Illustration (partial view) Table 94: RAPIDS > Overview Fields and Descriptions Summary Description IDS Events Displays a list of attack types for the designated folder and subfolders. Field displays events from the past two hours, the past 24 hours, and total IDS events. Names of attacks link to summary pages with more details. NOTE: AirWave should be configured as the SNMP trap receiver on the controllers to receive IDS traps. See the Dell Networking W-AirWave 8.
Table 94: RAPIDS > Overview Fields and Descriptions (Continued) Summary Description Acknowledged RAPIDS Devices A color coded pie chart comparing the number of acknowledged devices to the unacknowledged devices. RAPIDS Changes Tracks every change made to RAPIDS including changes to rules, manual classification, and components on the RAPIDS > Setup page. A link at the top of the list directs you to the RAPIDS > Audit Log page.
Table 95: RAPIDS > Setup > Basic Configuration Fields and Default Values Field Default Description ARP IP Match Timeout (1168 hours) 24 If you have routers and switches on AirWave, and it's scanning them for ARP tables, this can assign a rogue IP address information. This timeout specifies how recent that information needs to be for the IP address to be considered valid. Note that the default ARP poll period is long (several hours).
Table 97: RAPIDS > Setup > Containment Options Fields and Default Values Field Default Description Manage rogue AP containment No Specifies whether RAPIDS will manage the classification of rogue APs on Cisco WLC and Dell controllers to match the classification of those rogues in RAPIDS. This includes the "Contained" classification. If this setting is enabled, then the Maximum number of APs to contain a rogue setting can be configured.
l Use the AMP Setup > General > Performance Tuning page to define the processing priority of RAPIDS in relation to AirWave as a whole. (See in "AMP Setup > General" on page 28.) Defining RAPIDS Rules The RAPIDS > Rules page is one of the core components of RAPIDS. This feature allows you to define rules by which any detected device on the network is classified. This section describes how to define, use, and monitor RAPIDS rules, provides examples of such rules, and demonstrates how they are helpful.
Device OUI Score The Organizationally Unique Identifier (OUI) score is based on the LAN MAC address of a device. RAPIDS can be configured to poll your routers and switches for the bridge forwarding tables. RAPIDS then takes the MAC addresses from those tables and runs them through a proprietary database to derive the OUI score. The OUI score of each device is viewable from each rogue’s detail page. Table 100 provides list the OUI scores definitions.
Figure 119: RAPIDS > Rules Page Illustration Table 101 defines the fields in the RAPIDS > Rules page. Table 101: RAPIDS > Rules Page Field Description Default Classification This drop down specifies the classification that a rogue device receives when it does not match any rules. Add New RAPIDS Classification Rule Select this button to create a RAPIDS classification rule. Rule Name Displays the name of any rule that has been configured.
Figure 120: Classification Rule Page Fill in the settings described in Table 101 then select an option from the drop down menu. Table 102 defines the drop down menu options that are at the bottom left of the RAPIDS Classification Rule dialog box (see Figure 120). After all rule settings are defined, select Add. The new rule automatically appears in the RAPIDS > Rules page.
Table 102: Properties Drop Down Menu (Continued) Option Description Wireline Properties Detected on LAN Rogue is detected on the wired network. Select Yes or No. Fingerprint Scan Rogue matches fingerprint parameters. IP Address Rogue matches a specified IP address or subnet. Enter IP address or subnet information as explained by the fields. OUI Score Rogue matches manufacturer OUI criteria. You can specify minimum and maximum OUI score settings from two drop-down lists.
This means that user’s laptops on your network may appear as Ad-Hoc devices that are broadcasting your SSID. If this happens too frequently, you can restrict the rule to apply to non-ad-hoc devices. l If More Than Four APs Have Discovered a Device, then Classify as Rogue By default, AirWave tries to use Signal Strength to determine if a device is on your premises. Hearing device count is another metric that can be used.
Table 103: RAPIDS > List Column Definitions Column Description Ack Displays whether or not the rogue device has been acknowledged. Devices can be acknowledged manually or you can configure RAPIDS so that manually classifying rogues will automatically acknowledges them. Additionally, devices can be acknowledged by using Modify Devices link at the top of the RAPIDS > List page.
Table 103: RAPIDS > List Column Definitions (Continued) Column Description RSSI Displays Received Signal Strength Indication (RSSI) designation, a measure of the power present in a received radio signal. Network Type Displays the type of network in which the rogue is present, for example: l Ad-hoc—This type of network usually indicates that the rogue is a laptop that attempts to create a network with neighboring laptops, and is less likely to be a threat.
Table 103: RAPIDS > List Column Definitions (Continued) Column Description Current Associations The number of current rogue client associations to this device. Max associations The highest number of rogue client associations ever detected at one time. Overview of the RAPIDS > Detail Page Select a device Name in the RAPIDS > List page to view the Detail page (Figure 122).
l You can use the global filtering options on the RAPIDS > Setup page to filter rogue devices according to signal strength, ad-hoc status, and discovered by remote APs. l VisualRF uses the heard signal information to calculate the physical location of the device. l If the device is seen on the wire, RAPIDS reports the switch and port for easy isolation.
Once a new score is assigned, all devices with the specified MAC address prefix receive the new score. Note that re-scoring a MAC Address Prefix poses a security risk. The block has received its score for a reason. Any devices that fall within this block receive the new score. 1. Navigate to the RAPIDS > Score Override page. This page lists all existing overrides if they have been created. Figure 123: RAPIDS > Score Override Page 2.
5. To remove any override, select that override in the check box, and then click the Delete button. Using the Audit Log The Audit Log is a record of any changes made to the RAPIDS rules, setup page, and manual changes to specific rogues. This allows you to see how something is changes, when it changed, and who made the alteration. The Audit Log can be found at RAPIDS > Audit Log. For more information, see Figure 125.
| Using RAPIDS and Rogue Classification Dell Networking W-AirWave 8.
Chapter 7 Performing Daily Administration in AirWave Daily WLAN administration often entails network monitoring, supporting WLAN and AirWave users, and monitoring AirWave system operations.
Table 105: System pages (Continued) System Page Description Refer to Firmware Upgrade Jobs Displays information about current and scheduled firmware upgrades. "Using the System > Firmware Upgrade Jobs Page" on page 232 Performance Displays basic AirWave hardware information as well as resource usage over time. "Using the System > Performance Page" on page 233 Using the System > Status Page The System > Status page displays the status of all of AirWave services.
The link diagnostics.tar.gz contains reports and logs that are helpful to Dell support in troubleshooting and solving problems. Your Dell support representative may ask for this file along with other logs that are linked on this page. Similarly, the VisualRFdiag.zip link contains VisualRF diagnostic information that might be requested by Dell support. A summary table lists logs that appear on the System > Status page. These are used to diagnose AirWave problems.
Table 107 describes the columns and the information provided in each: Table 107: System > Syslog & Traps Columns and Descriptions Column Description Time The timestamp of the device event. Type Either Syslog or SNMP Trap. Source Device The name of the device that sent the message. Will be a link if you have visibility to the device. Can be empty if AirWave could not correlate the source IP.
Table 108: Event Log Fields Column Description Time Date and time of the event. User The AirWave user that triggered the event. When AirWave itself is responsible, System is displayed. Type Displays the Type of event recorded, which is one of four types, as follows: l Device—An event localized to one specific device. l Group—A group-wide event. l System—A system-wide event. l NMS—An event triggered by an NMS server.
Figure 129: Add New Trigger Page Illustration 2. In the Trigger section, choose the desired trigger Type and Severity. Figure 130 illustrates some of the supported trigger types. The alert summary information at the top of the AirWave screen can be configured to separately display severe alerts. Refer to "Configuring Your Own User Information with the Home > User Info Page" on page 269 for more details. 221 | Performing Daily Administration in AirWave Dell Networking W-AirWave 8.
Figure 130: System > Triggers > Add Trigger Type Drop Down Menu The Add Trigger page changes depending on the trigger type that you select. In many cases, you must configure at least one Condition setting. Conditions, settings and default values vary according to trigger type. Triggers with conditions can be configured to fire if any criteria match as well as if all criteria match.
b. The Alert Notifications settings section allows you to enter a note that will be included with the alert. This note will appear with the alert on the System > Alerts page. The Alert Notification section also allows you to specify whether the alert will be distributed via email, to a network management system (NMS), or to both. n If you select Email, you are prompted to set the sender and recipient email addresses.
Table 110: Device Trigger types (Continued) Trigger Option Description Device Up This trigger type activates when an authorized, previously down AP is now responding to SNMP queries. To set the conditions for this trigger type, select Add in the Conditions section. Configuration Mismatch This trigger type activates when the actual configuration on the AP does not match the defined Group configuration policy. To set the conditions for this trigger type, select Add in the Conditions section.
Table 111: Interfaces/Radio-Related Trigger Types Radio Trigger Options Description Radio Down Indicates that a device’s radio is down on the network. Once you choose this trigger type, select Add New Trigger Condition to create at least one condition. This type requires that a radio capability be set as a condition. The Value drop-down menu supports several condition options. Radio Up Indicates that a device’s radio is up on the network.
1. Choose a trigger type from the Clients category, listed in the Type drop-down menu. See Figure 130 in "Creating New Triggers" on page 220. Table 113 itemizes and describes the Client-related trigger types, and condition settings for each discovery trigger type. Table 113: Client Trigger Types and Condition Settings Client Trigger Option Description New Client This trigger type indicates a new user has associated to a device within a defined set of groups or folders.
2. Repeat this procedure for as many triggers and conditions as desired. Refer to the start of "Creating New Triggers" on page 220 to create a new trigger. Setting Triggers for RADIUS Authentication Issues Perform the following steps to configure RADIUS-related triggers. 1. Choose a trigger type from the RADIUS Authentication Issues list in the drop-down Type menu. Table 114 itemizes and describes the condition settings for each RADIUS Authentication trigger type.
Setting Triggers for AirWave Health After completing steps 1-3 in "Creating New Triggers" on page 220, perform the following steps to configure IDS-related triggers. 1. Choose the Disk Usage trigger type from the drop-down Type menu. See Figure 130 in "Creating New Triggers" on page 220 for trigger types. Table 116 describes the condition settings for this trigger type.
This table displays alerts as follows; select the alert Type to display alert details: l AMP Alerts—Displays details for all device alerts. l IDS Events—Displays details of all Intrusion Detection System (IDS) events and attacks under the RAPIDS tab. You must be enabled as a RAPIDS user to see this page. l RADIUS Authentication Issues—Displays RADIUS-related alerts for devices in the top viewable folder available to the AirWave user.
Figure 134: System > Triggers Page Illustration (partial view) Refer to "Creating New Triggers" on page 220 for additional information. Delivering Triggered Alerts AirWave uses Postfix to deliver alerts and reports via email because it provides a high level of security and queues email locally until delivery. If AirWave is located behind a firewall, preventing it from sending email directly to a specified recipient, use the following procedures to forward email to a smarthost. 1.
l Leave it in active status if it is unresolved. The alert remains on the New Alerts list until you acknowledge or delete it. If an alert already exists, the trigger for that AP or user does not create another alert until the existing alert has been acknowledged or deleted. l Move the alert to the Alert Log by selecting it and selecting Acknowledge. You can see all logged alerts by selecting the View logged alerts link at the top of the System > Alerts page.
A file transfer client that supports SFTP/SCP for Windows is WinSCP: http://winscp.sourceforge.net/eng/ WinSCP allows you to transfer the nightly00[1-4].tar.gz file from your local PC to the new AirWave using the secure copy protocol (SCP). 3. Log onto the new server as root. 4. Change to the scripts directory by typing scripts. 5. Run the restore script by typing ./amp_restore -d /tmp/nightly_data00[1-4].tar.gz.
Successful upgrade jobs are not archived on this page -- generally you visit this page to review failed or pending firmware upgrade jobs. Users with the AP/Device Manager role and higher can view this page. Audit-only users cannot view this page or tab.
l Database Statistics l Disk Space Figure 139 illustrates this page, and Table 118 describes fields and information displayed. Figure 139: System > Performance Page Illustration (Partial Screen) Table 118: System > Performance Page Fields and Graphs Field Description System Information Current Time Displays AirWave's current time. CPU(s) Basic CPU information as reported by the operating system. Memory The amount of physical RAM and Swap space seen by the operating system.
Table 118: System > Performance Page Fields and Graphs (Continued) Field Description System Memory Usage The amount of RAM that is currently used broken down by usage. It is normal for AirWave to have very little free RAM. Linux automatically allocates all free RAM as cache and buffer. If the kernel needs additional RAM for process it will dynamically take it from the cache and buffer. System Disk Throughput The rate of reading and writing from and to the disk in bytes per second.
Table 118: System > Performance Page Fields and Graphs (Continued) Field Description High Performance SNMP Fetcher Requests The number of SNMP get and walk requests per second performed by the high performance SNMP (v2c) fetcher. High Performance SNMP Fetcher Responses The number of SNMP OIDs received per second performed by the high performance SNMP (v2c) fetcher. Redis Statistics Redis Activity Use this chart under the supervision of Dell support to troubleshoot Redis activity.
l "Monitoring WLAN Users in the Clients > Connected and Clients > All Pages" on page 239 l "Monitoring Rogue Clients With the Clients > Rogue Clients Page" on page 243 l "Supporting Guest WLAN Users With the Clients > Guest Users Page" on page 244 l "Supporting VPN Users with the Clients > VPN Sessions Page" on page 247 l "Supporting RFID Tags With the Clients > Tags Page" on page 248 See also "Evaluating and Diagnosing User Status and Issues" on page 249.
Table 119: Clients pages (Continued) Clients Page Description Refer To Diagnostics Displays possible client device issues, diagnostic summary data, user counts, AP information, 802.11 counters summary, and additional information.
Figure 141: Center pane The right pane provides information about the total number of APs, Controllers, Remote Nodes, and Switches on your network and the number of those that are currently down. This information can be useful in identifying potential performance issues. Figure 142: Right pane Monitoring WLAN Users in the Clients > Connected and Clients > All Pages The Clients > All page shows all users that AirWave is aware of, including down clients.
l The Folder field shows the current folder of Connected Clients you are viewing. You can view users under a particular folder from the Go to folder dropdown menu. l Links under the Folder fields showing the Total Devices, Mismatched, Clients, and Usage (a static, unlinked statistic) summarize the device information for this folder.
Figure 143: Clients > Connected Page Illustration (Partial View) Table 120: Clients > Connected Table Columns and Links(Alphabetical) Field Description AOS Device Type The type of client device determined by the Dell controller-- a fallback in case the rules set in AMP Setup > Device Type Setup were unable to determine the device type. AP/Device Displays the name of the AP to which the MAC address is associated as a link to this AP's APs/Devices > Monitor page.
Table 120: Clients > Connected Table Columns and Links(Alphabetical) (Continued) Field Description Device Type The type of device determined by AMP Setup > Device Type Setup rules. Duration The length of time the MAC address has been associated. EAP Supplicant The party being authenticated in the Extensible Authentication Protocol. Forward Mode Forwarding mode for the port: Bridge, Tunnel, or Split Tunnel.
Table 120: Clients > Connected Table Columns and Links(Alphabetical) (Continued) Field Description Serial Number Serial number of the device. Service End Ending timestamp of the device usage. Service Start Beginning timestamp of the device usage. Sig. Qual. The average signal quality the user experienced. SSID The SSID with which the user is associated. Speed The packet and byte counts of data frames successfully transmitted to and received from associated stations.
Table 121: Clients > Rogue Clients Fields Field Description MAC Address Displays the MAC address of the rogue client. Click on this to jump to the Clients > Client Detail page for this rogue. Username The username associated with this client. Rogue AP The name of the Rogue AP. Click on this to jump to the RAPIDS > Detail page for this AP. Device Type The type of device, such as iPhone, Windows 7, etc. SSID The SSID of this client. BSSID The BSSID of this client.
Figure 145: AMP Setup > Users Page Illustration 3. The newly created login information should be provided to the person or people who will be responsible for creating guest access users. 4. The next step in creating a guest access user is to navigate to the Users > Guest Clients tab. From this tab, you can add new guest users, you can edit existing users, and you can repair guest user errors.
Table 122: Clients > Guest Users Fields Field Description Repair Guest User Errors Sets AirWave to attempt to push the guest user again in an attempt to repair any errors in the Status column. Add New Guest User Adds a new guest user to a controller via AirWave Username Randomly generates a user name for privacy protection. This name appears on the Guest User detail page. Name Displays the specified guest user name. Enabled Enables or disables the user status.
Figure 147: Clients > Guest Users > Add New Guest User Page Illustration To make the Username or Password anonymous and to increase security, complete these fields then select Generate. The anonymous and secure Username and Password appear in the respective fields. 6. Select Add to complete the new guest user, or select Cancel to back out of new user creation. The Clients > Guest Users page appears and displays results, as applicable.
Figure 148: Clients > VPN Sessions Page Illustration When a VPN username is selected, a Clients > VPN User Detail page displays with current VPN sessions, a user and bandwidth interactive graph, and a historical VPN sessions list table. Supporting RFID Tags With the Clients > Tags Page Radio Frequency Identification (RFID) supports identifying and tracking wireless devices with radio waves. RFID uses radio wave tags for these and additional functions.
Table 123: Clients > Tags Fields Field Description Name Displays the user-editable name associated with the tag. MAC Address Displays the MAC address of the AP that reported the tag. Vendor Displays the vendor of the tag (Aeroscout, PanGo and Newbury)—display all or filter by type. Battery Level Displays battery information—filterable in drop-down menu at the top of the column; is not displayed for Aeroscout tags.
Figure 150: Clients > Client Detail page illustration (partial view) Mobile Device Access Control in Clients > Client Detail and Clients > Connected Mobile Device Access Control (MDAC) secures, provisions, and manages network access for Apple® iOS and other employee-owned mobile devices by enabling device fingerprinting, device registration, and increased device visibility.
Figure 151: Device Info section in Clients > Client Detail after Show additional properties is selected Classifying Dell Devices in Client Detail If you have deployed Dell Networking W-Series controllers and have WMS Offload enabled on the network, the Clients > Client Detail page allows you to classify the device in the Device Information section, and to push this configuration to the controllers that govern the devices.
Controllers show several more pages in this menu (Security Dashboard, for instance) if the controller is running ArubaOS version 6.1 or greater. l Run a command: A drop-down menu with a list of CLI commands you can run directly from the APs/Devices > Monitor page. Figure 152: Open controller web UI and Run a command Menus Using the Deauthenticate Client Feature Some displays of the Clients > Client Detail page include the Deauthenticate Client feature in the Current Association section.
Viewing the Rogue Association History for a Client Past association details of a rogue client are tracked in the Rogue Association History table, which is located under the Association History table in Clients > Client Detail. Figure 155: Rogue Association History table in Clients > Client Detail Evaluating Client Status with the Clients > Diagnostics Page The Clients > Diagnostics page is accessible from the Clients > Client Detail page.
Managing Mobile Devices with SOTI MobiControl and AirWave Overview of SOTI MobiControl SOTI MobiControl, the mobile device management platform for Windows Mobile, Apple, and Android devices, has been integrated into AirWave to provide direct access to the MobiControl Web Console. MobiControl runs on your Mobile Device Manager (MDM) server. This server provisions mobile devices to configure connectivity settings, enforce security policies, restore lost data, and other administrative services.
The list page for the MDM server also displays: l Last Contacted – The last time AirWave was able to contact the MDM server. l Errors – Issues, if any, encountered during the last contact. During each polling period, AirWave will obtain a list of all device IDs and their WLAN MAC addresses. The information about device OS, device OS Detail, Manufacturer, Model, Name are retrieved from MobiControl and populated to the Clients > Client Detail page for supported mobile devices.
Table 125: Home pages (Continued) Home Page Description Refer to RF Capacity This page provides admin users with a summary of network usage over a one-week period. This information includes the number of clients and the channel utilization percentages. This information is run once per day after nightly maintenance is completed.
Figure 157: Home > Overview Page Illustration Table 126: Home > Overview Sections and Charts Section Clients Description This chart is a graphical summary of the number of users on the network during a period of time. The time can be adjusted. Select Show All to display a list of data series that this graph can display, such as the user count by SSID. Clear the Max Clients or Avg Clients check box to change the display of the graph. The graph displays the maximum number of users by default.
Table 126: Home > Overview Sections and Charts (Continued) Section Alert Summary Description This section displays all known and current alerts configured and enabled in the System > Alerts page (refer to "Viewing, Delivering, and Responding to Triggers and Alerts" on page 228). Alerts can be sorted using the column headers (Type, Last 2 Hours, Last Day, Total, or Last Event).
The Home > AppRF pages may show IP addresses rather than resolved names. AirWave receives this message from the controller via AMON and does not automatically resolve the IP addresses. In addition, the query that performs this function requires an authenticated controller user with the appropriate CLI credentials. Figure 158: Home > AppRF page Using the Home > UCC Page The Home > UCC pages show an aggregated view of the Unified Communication and Collaboration (UCC) calls made in the network.
Call Quality This pane provides information about the quality of calls on the network over the selected time period. Select the type of call quality information displayed on this pane by clicking the Trend, Distribution or APs links in the upper right corner of the call quality chart. The Trend chart shows the number of calls with good, fair, or poor client health over the selected time period.
By default, the data in this table is displayed by the call start time, with the most recent call at the top of the list. Click the heading of any column to sort information in the table according to that column. Information in this table can be filtered using the Filter icon ( ) at the top of column headings. Figure 159 displays an aggregated list of all the UCC call data metrics in Dell Networking W-AirWave.
Figure 161: Drill down to view all clients When the client information is displayed, an additional drill down is available to view information for a specific client, device, or location. When you click on a Username in the Client page, the drill down takes you to the Clients > Diagnostics page. Navigate to the Clients > Client Details page for additional detailed information about the selected client.
Figure 162: The Home > RF Capacity page You can click on a bar in the upper graphs to view a popup showing a detailed list of the devices that connected in the week before the RF Capacity page was run. This popup includes additional drill downs to the device, the controller, and the folder. You can also search in this popup. Figure 163: Example of 2.
Figure 164: Example popup showing channel utilization Viewing the Home > Network Deviations Page The Home > Network Deviations page provides graphs that track your network's Client and Usage information and draw attention to unusual network usage patterns. These graphs can show you, for example, if heavy network traffic is occurring during off hours, or they can be used to detect the time(s) of day when your network traffic peaks.
Figure 165: Home > Network Deviations page The first time this page is launched, the graphs will display information for all devices in the Top folder. To specify a different folder, simply select one from the folder drop down in the upper-right corner, and then refresh the page. AirWave will remember the new setting the next time that the page is launched. By default, the graphs display average and standard deviation information for the current time over the last 40 weeks.
2 +- 5 Normal Range: 3 - 7 SD(2): ------2*SD +- Mean 2*2 +- 5 4 +- 5 Normal Range: 1 - 9 SD(3): ------3*SD +- Mean 3*2 +- 5 6 +- 5 Normal Range: 0 - 11 (-1 is not considered, so 0 is taken) Given the information above, if the Average Client Count over the last 40 weeks is 5, then this is not an anomaly (deviation) for any SD value. On the other hand, if at one point the client count was 8, then this would be an anomaly for SD1, whose normal client range is from 3-7.
Figure 167: Home > Search Page Illustration with Sample Hits on 00: (partial view) Accessing AirWave Documentation The Home > Documentation page provides easy access to all relevant AirWave documentation. All of the documents on this page are hosted locally by your AirWave server. The PDF files can be viewed by any PDF viewer, and the HTML files can be viewed in any supported browser. If you have any questions that are not answered by the documentation, please contact Dell support at dell.com/support.
Figure 168: Home > License Page Illustration Table 128: Home > License Static Fields and Descriptions Field Description Organization Displays the organization listed on your license key. Product This product description is read directly from the license key. Package Displays the license type. For example, this could be a license for an enterprise AirWave, or a smaller license to support additional devices.
Configuring Your Own User Information with the Home > User Info Page The Home > User Info page displays information about the user that is logged into AirWave. This page includes the authentication type (local user, RADIUS, or TACACS+) and access level. This page enables customization some of the information displayed in AirWave, and is the place to change your password. The logged-in users can customize the information displayed in the AirWave header.
Table 129: Home > User Info Fields and Descriptions (Continued) Field Description Customize Header Columns Enables/disables the ability to control which statistics hyperlinks (also known as Top Header Stats) are displayed at the top of every AirWave screen. Stats Select the specific data you would like to see in the Top Header Stats. Refer to the "Status Section" topic in the Dell Networking W-AirWave 8.0 Installation Guide. Note: This field only appears if you selected Yes in the previous field.
Table 129: Home > User Info Fields and Descriptions (Continued) Field Description Customize Columns for Other Roles Allows admin users to determine the columns that should be displayed and the order they should be displayed for specific user roles. To customize lists for other users, navigate to that list and select Choose Columns for roles above the list. Make the desired column changes; select the roles to update and Save.
Figure 170: Master Console Home > Overview Page Illustration l Reports can be run from the Master Console to display information from multiple AirWave stations; because such reports can be extremely large, reports can also be run as summary only so that they generate more quickly and finish as a manageable file size. l The Master Console can also be used to populate group-level configuration on managed AirWave installations using the Global Groups feature.
Figure 171: Public Portal Page Illustration The Public Portal supports configuration of the iPhone interface. This can be configured using the Master Console AirWave page. Adding a Managed AMP with the Master Console Perform the following steps to add a managed AMP console. 1. Navigate to the Home > Managed AMPs page. 2. Select the pencil icon to edit or reconfigure an existing AMP console, or select Add New Managed AMP to create a new AMP console. The Managed AMP page appears.
Using Global Groups with Master Console To push configurations to managed groups using the AirWave Global Groups feature, follow these steps: 1. Navigate to the Master Console's Groups > List page. 2. Select Add to add a new group, or select the name of the group to edit settings for an existing group. 3. Select the Duplicate icon to create a new group with identical configuration to an existing group.
Using AirWave Failover for Backup The failover version of AirWave provides a many-to-one hot backup server. The Failover AirWave polls the watched AirWaves to verify that each is up and running. If the watched AirWave is unreachable for the specified number of polls, the Failover AirWave automatically restores the most recent saved backup from the watched AirWave and begins polling its APs.
Table 132: Home > Watched AMPs page fields and default values Setting Default Description IP/Hostname None Username None A username with management rights on the watched AMP Password None The password for the username with management rights specified above. HTTP Timeout (5-1000 Sec) 60 The amount of time before AirWave considers a polling attempt failed. Polling Enabled Yes Enables or disables polling of the Watched AMP.
| Performing Daily Administration in AirWave Dell Networking W-AirWave 8.
Chapter 8 Creating, Running, and Emailing Reports This section describes AirWave reports, including access, creation, scheduling, and distribution. It includes the following sections: l "Overview of AirWave Reports" on page 278 l "Using Daily Reports" on page 287 l "Defining Reports" on page 281 l "Emailing and Exporting Reports" on page 319 AirWave ships with several reports enabled by default. Default reports may run nightly or weekly, depending on the AirWave release.
Each pane includes a Latest Report column with the most recently run reports for each definition and role created. Run and Delete buttons allow you to select a report from the definitions table to run or delete. Once you define a report from the Definition page, it appears on the Generated page. The Reports > Definition page is shown in Figure 172, and Table 133 describes the fields available when you select a specific report definition.
Figure 172: Reports > Definitions Page Illustration Figure 173: Report Type Drop down Menu in Reports > Definitions Illustration Only admin users have complete access to all report information. The AirWave reports and online displays of information can vary with configuration, User Roles, and Folders. Reports > Generated Page Overview The Reports > Generated page displays reports that have been run, as well as the most recent daily version of any report.
l The latest daily reports for immediate online viewing You can select a check box beside any report and click Rerun to view an updated report. When you run or rerun a report, the Generation Time column changes to pending until the report is completed.
1. To create or edit a report, browse to the Reports > Definition page and click the Add button, or select the pencil icon to edit an existing report definition. Figure 176 illustrates one view of the Reports > Definition page. Figure 176: Defining a Report 2. Complete the fields described in Table 134 and any additional Report Restrictions. The Report Restrictions section changes according to the report type you choose.
Table 134: Reports > Definitions > Add page fields and default values (Continued) Field Default Description Group All Groups Specify the groups and folders to be covered in the report by choosing All Groups (or All Folders) or specifying Use selected groups (or Use selected folders) in the dropdown menu. Folder All Folders If Use selected groups is chosen, a menu with check boxes appears, allowing you to choose the groups to include in the report.
Table 134: Reports > Definitions > Add page fields and default values (Continued) Field Default Description When you select Yes, new fields display that allow you to define a specific time for report creation. The report schedule setting is distinct from the Report Start and Report End fields, as these define the period of time to be covered by the report.
Figure 177: Report Restrictions Illustration By default all data will be included. Deselect the check box to hide specific information. The list can also be reordered by dragging and dropping the separate lines. The order displayed here will match the column order in the report. 3. Do one of the following: l Select Add and Run to generate the report immediately, in addition to saving report settings.
Table 135: Report Types and Scheduling Options Supported for Custom Reports Report Type Can by Run by Time Period Can be Run by Group/Folder Description "Using Custom Reports" on page 288 Yes Yes Summarizes devices based on which have exceeded a defined percentage of their maximum bandwidth capacity. Pulls data for AP radios or interfaces of universal devices (ifSpeed value).
Table 135: Report Types and Scheduling Options Supported for Custom Reports (Continued) Report Type Can by Run by Time Period Can be Run by Group/Folder Description "Using the Network Usage Report" on page 306 Yes Yes Summarizes bandwidth data and number of users. "Using the New Clients Report" on page 308 Yes No Provides a summary list of new clients, including username, role, MAC address, vendor, discovering AP, association time, duration, folder, and group.
Viewing Generated Reports The Reports > Generated page supports the following general viewing options: l By default, the reports on the Reports > Generated page are sorted by Generation Time. You can sort reports by any other column header in sequential or reverse sequential order. You can also choose columns, export the Generated Reports list in CSV, and modify the pagination of this list. l The Reports > Detail page launches when you select any report title from this page.
Figure 178: Custom Options Page Illustration The left pane of the Custom Options section lists all available data that can be included in the report. Drag the desired data from the Available Options list on the left to the Selected Options pane on the right. The order of the data in the Selected Options section is the order that it will appear in the report. The data can be reordered by dragging an item up or down the list. 5. Below the Custom Options panes is a Report Restrictions section.
Figure 179: Dell Networking W Detail Page Using the Capacity Planning Report The Capacity Planning Report tracks device bandwidth capacity and throughput in device groups, folders, and SSIDs. This report is based on interface-level activity and can be used to assist in analyzing device capacity and performance on the network. This analysis can help to achieve network efficiency and an improved user experience.
Figure 180: Capacity Planning Report Detail Page (partial view) Table 137: Capacity Planning Report output details Field Description Device Displays the device type or name. Interface Displays the type of 802.11 wireless service supported by the device. Group Displays the device group with which the device is associated. Folder Displays the folder with which the device is associated. Controller Displays the controller with which a device operates.
Using the Client Inventory Report The Client Inventory Report can be used for viewing information about clients that have connected to you network. Similar to the Inventory Report, you can filter this report to search for specific devices (such as, "Aruba"). You can also filter this report based on the connection mode (wired or wireless). This report also gives you the option to filter instead on specific devices and/or users.
l Last Connection Mode Summary l Last SSID Summary 5. Specify "Matching" in the Model section, and select the following options: l iPad l iPhone l iPod 6. Click the Save and Run button. Output Figure 181 illustrates the output of this Client Inventory Report. The fields on this page are described in Table 138. Figure 181: Reports > Generated > Client Inventory (split view) Table 138: Client Inventory Report output details Field Description AOS Device Type Displays the device type or name.
Table 138: Client Inventory Report output details (Continued) Field Description Count Shows the total number of each device current included in the client inventory. % of Total Shows the percentage of each of those devices that are included in the client inventory. Last SSID Summary The SSID that each device most recently connected to. This includes the total number of clients and the percentage of each of those devices that connected to the SSID.
Finally, you can specify the details that you want to include in the Sessions information, such as the MAC Address, Username, Role, SSID, and more. Figure 182: Client Session Detail Partial View Each Client Session Report includes a Client Session Summary section. Table 139 describes the fields that display in this summary. Table 139: Client Session Summary Fields and Descriptions Field Description Sessions The number of client sessions that occurred during the time range specified in this report.
Table 139: Client Session Summary Fields and Descriptions (Continued) Field Description Total traffic Out (MB) The total amount of traffic that passed out of the network. Avg traffic per session (MB) The average amount of traffic generated by each session. Avg traffic in per session (MB) The average amount of traffic in generated by each session. Avg traffic out per session (MB) The average amount of traffic out generated by each session.
Figure 183: Daily Configuration Audit Report Page, partial view Table 140: Daily Configuration Audit Report Field Description Name Displays the device name for every device on the network. Selecting a given device name in this column allows you to display device-specific configuration. Folder Displays the folder in which the device is configured in AirWave. Selecting the folder name in this report displays the APs/Devices > List page for additional device, folder and configuration options.
l Least Utilized by Bandwidth—By default, this list displays the 10 devices that are the least used, according to the bandwidth throughput. l Devices—This list displays all devices in AirWave. By default it is sorted alphabetically by device name. You can specify the number of devices that appear in each of the first four categories in the Reports > Definitions > Add page. Any section of this report can be sorted by any of the columns.
Table 141: Daily Device Summary Report Unique Fields and Descriptions (Continued) Field Description Average Usage Displays the average rate of data in that traveled through device during the period of time covered by the report. Location Displays the location information if available. Controller The controller that the device is associated to. Folder/Group Displays the folder and group information for the device.
Figure 185: Device Uptime Report Illustration Table 142: Device Uptime Report Unique Fields and Descriptions Field Description SNMP Uptime Displays the percentage of time the device was reachable via ICMP. AirWave polls the device via SNMP at the rate specified on the Groups > Basic page. ICMP Uptime Displays the percentage of time the device was reachable via ICMP. If the device is reachable via SNMP it is assumed to be reachable via ICMP.
The Home > Overview page also cites IDS events. Triggers can be configured for IDS events. Refer to "Creating New Triggers" on page 220 for additional information. Figure 186 and Table 143 illustrate and describe the IDS Events Detail report. Selecting the AP device or controller name takes you to the APs/Devices > List page.
Table 143: IDS Events Detail Unique Fields and Descriptions (Continued) Field Description Precedence Displays precedence information associated with the IDS event, when known. Time Displays the time of the IDS event. Using the Inventory Report The Inventory Report itemizes all devices on the network. The output breaks down this information by vendor, model (including firmware and bootloader), and device type. Example The following example creates a sample Inventory report.
Figure 187: Inventory Report Illustration (partial view) Table 144: Inventory Report output details Field Description Vendor Displays the device type or name. In the example above, the only vendor specified in the report definition was Cisco. Count Shows the total number of each device current included in the client inventory. % of Total Shows the percentage of each of those devices that are included in the client inventory. Firmware Version The firmware version on each device.
Table 144: Inventory Report output details (Continued) Field Description Model/Firmware Version This field further breaks down the firmware version into specific device models and specific versions. This includes the total number of devices and the percentage of each of those devices compared to other devices. As indicated previously, the example above shows that 2 of the Cisco devices are on firmware Cisco_7.2.111.3. Each is a separate model, though.
Table 145: Match Event Report output details Field Description Folder/AP/Client The total number of matches that occurred in each folder, each AP, and each Client. The tables also include a reason for the match event. This information is obtained directly from the controller. Data will only display for a Folder, AP, and Client if each has experienced at least one match event.
Figure 189: Daily Memory and CPU Usage Report Illustration Using the Network Usage Report The Network Usage Report contains network-wide information in two categories: l Usage—maximum and average bandwidth l Clients—average bandwidth in and out This information can be broken down by Groups and Folders. It can also be summarized by Usage, Client Count, and by both for folders. When you create this report, you can specify to view information for all or specific device types and all or specific SSIDs.
Figure 190: Network Usage Report Illustration Table 146: Total Usage table output details Field Description Interval This table is broken down in five-minute intervals. The Interval column describes the network usage information during these specific five minutes. Max Clients The maximum number of clients that were connected during this interval. Max Usage In Shows the maximum amount of incoming traffic on the network during this interval. This value is shown in Mbps.
Using the New Clients Report The New Clients Report lists all new users that have appeared on the network during the time duration defined for the report. This report covers the user identifier, the associated role when known, device information and more. This report gives you the option to filter instead on specific devices and/or users. Whether viewing information for devices or clients, the report can configured to display additional options.
Table 147: New Clients Report output details Field Description Username The client name, if available. Role The client's role, if available MAC Address The new client's MAC address Vendor The vendor for the client device. AP/Device The AP/Device that the client is currently connected to. Association Time The time when the client last associated with the device. Duration How long the client has been connected to the device.
Figure 192: New Rogue Devices Report Illustration (partial view) The rogue device inventories that comprise this report contain many fields, described in Table 148. Table 148: New Rogue Devices Report Fields Field Description Name Displays the device name, as able to be determined. RAPIDS Classification Displays the RAPIDS classification for the rogue device, as classified by rules defined on the RAPIDS > Rules page.
Table 148: New Rogue Devices Report Fields (Continued) Field Description Operating System Displays the operating system for the device type, when known. IP Address Displays the IP address of the rogue device when known. SSID Displays the SSID for the rogue device when known. Network Type Displays the network type on which the rogue was detected, when known. Channel Displays the wireless RF channel on which the rogue device was detected. WEP Displays WEP encryption usage when known.
Figure 193: PCI Compliance Report Illustration Example Using the Port Usage Report You can generate a wide array of port usage statistics from the Port Usage Report including each of the following: l List of all the switches and ports in your network by folder l List of unused ports l List of access and distribution ports l Histogram displaying unused ports vs.
Figure 194: Port Usage Report Detail Page (partial view) Table 149: Switches table fields Field Description Device The name of the device Folder/Group The folder and group that this devices belongs to Type The switch type 313 | Creating, Running, and Emailing Reports Dell Networking W-AirWave 8.
Table 149: Switches table fields (Continued) Field Description Contact Displays the contact info for the switch, if available Location Displays the location information for the switch, if available Total Ports The total number of ports available on the device Access Ports The total number of Access Ports available on the device Unused Ports (%) The percentage of the ports on the device that are unused Traffic In The amount of incoming traffic on the device Traffic Out The amount of outbound t
Figure 195: RADIUS Authentication Issues detail page illustration (partial view( Using the RF Health Report The RF Health Report tracks the top AP radio issues by noise, MAC/Phy errors, channel changes, transmit power changes, mode changes, and interfering devices (the last two apply only if there are ARM events). This report assists in pinpointing the most problematic devices on your network, and lists the top devices by problem type.
Figure 196: Daily RF Health Report Page Illustration (partial view) All tables in RF Health indicate the rank, device type, number of users, bandwidth, location, controller, folder, and group, and all are sorted according to rank. Selecting a value under the Device column in any table will take you to the APs/Devices > Monitor > Radio Statistics page for the band indicated in the table title (5 GHz or 2.4 GHz).
Figure 197: Rogue Clients Report Page Illustration Table 150: Rogue Clients fields and descriptions Field Description Misassociations by Unique Rogue APs For each Rogue AP, this table includes the SSID of the device, the number of misassociations, and the RAPIDS Classification. Misassociations by Unique MAC addresses This table shows details about MAC address that are being registered as rogue clients, including the username (if available) and the number of misassociations.
Table 150: Rogue Clients fields and descriptions (Continued) Field Description Ch BW The channel bandwidth of the client, if avaialble Radio Mode The radio mode that the rogue client is using. SNR The signal-to-noise ratio, if available. Channel The channel of the rogue device, if available. Loation The location of the rogue client, if available RAPIDS Classification The current classification of the rogue client.
report. Finally, you can specify to include summary or detailed information about VPN sessions and users. The output can display in chart and table form.
All reports contain a link to export the report to an XML, CSV, or PDF file. Reports can also be e-mailed in either HTML, PDF, or CSV format. Select Email This Report to email the report, and then specify the email addresses, separated by commas, to which reports are sent along with the sender address. Finally, specify whether the report should be sent in HTML or PDF format.
Support for graphics and links is included when exporting. This method of exporting also prevents Missing File C:\filename.css error messages. 321 | Creating, Running, and Emailing Reports Dell Networking W-AirWave 8.
Chapter 9 Using VisualRF This chapter contains information about VisualRF and includes the following topics: l "Features" on page 323 l "Useful Terms" on page 323 l "Starting VisualRF" on page 324 l "Basic VisualRF Navigation" on page 324 l "Advanced Settings in VisualRF > Setup " on page 333 l "Planning and Provisioning" on page 340 l "Increasing Location Accuracy " on page 352 l "Using VisualRF to Assess RF Environments" on page 359 l "Importing and Exporting in VisualRF" on page 365 l
Features l Mesh monitoring page specially for viewing Dell AirMesh devices. VisualRF automatically renders Mesh APs based on GPS coordinates. l Floor plan upload wizard enables direct importation of JPG/JPEG, GIF, PNG, PDF (single page only) and CAD files for floor plans. NOTE: PDF floor plans must be generated from a source file. Other PDFs, such as those scanned from a printer, will not import properly. Similarly, CAD files must be generated by AutoCAD.
l Session - A session is an instance when a client connects to the network.The period of time in which the client remains connected to the network is typically calculated as a single session. However, if a client roams between APs, the periods of time the client connected to the different APs may be calculated as separate sessions. l Unassociated Client Information - Some APs/Controllers have the ability to report the signal strength of visible clients that are associated to a radio on a neighboring AP.
Network View Navigation The Network view provides page specially for viewing campuses, buildings and floors within your network. You can select any campus or building to view the numbers of APs and clients at that location. Figure 204 displays an example of a campus view with a building icon selected: Figure 204: Viewing a Campus Networks in VisualRF Click on an building within the selected campus, then select a floor to display the APs and clients on that floor.
Floorplan View Navigation When viewing a floor plan in the Floorplan view, the View menu displays controls to display selected Devices, Overlays, Display Lines, and Floorplan Features. Display Devices Click any of the icons below to display these devices on the floorplan. Click the arrow beside these icons to select the size of the device icon. l APs - Turns the display of APs on or off. APs on the floor plan indicated by the icon. l Clients - Turns the display of wireless users on or off.
l Voice - Provides color-coded overlay based on number of radios covering each grid cell based on the selected signal cutoff. When this option is selected, the Signal Cutoff drop-down menu displays. From this drop-down, you can select a common cutoff value or you can specify a custom value. The Channel Utilization, Channel, Heatmap and Speed overlays can display information for adjacent floors to determine how the bleed through from adjacent floors affects the viewed floor.
Figure 206: Viewing Mesh Networks in VisualRF Click on an AirMesh network to display the APs with labels, as shown in Figure 207 Figure 207: APs in a mesh network Select an AirMesh AP icon to bring up the popup menu showing the Mesh Node Properties by default. This window shows the node’s name, MeshID, MAC, Manufacturer, and other information. Clicking the blue Monitor link inside this window opens the APs/Devices > Monitor page in a new tab.
Table 153: Top Level Icons and Descriptions (Continued) Operation Icon Description Preferences Configure personal viewing preferences. The Preferences menu allows you to configure user preferences (APs, Clients, overlay types, grid lines, alerts, icon sizes, etc.). See "Configuring Flash UI Personal Preferences" on page 329 for more details. Help Launch the online help. NOTE: This User Guide currently contains the most up-to-date help information for the VisualRF interface.
Figure 209: VisualRF General preferences This menu allows you to configure the following settings: l Enable auto-refresh toggle.
This menu allows you to configure the following settings: l Usage - select the kbps threshold for normal (green), high (yellow), and excessive (red) l # of Clients per Radio - select the number of number of clients per radio for normal (green), high (yellow), and excessive (red) l % of Uptime for the last 24 hours for normal (green) and excessive (red) l AP Location - specify whether to display green for a good location or red for a suspect location within a floor plan l Radio Status - specify whet
Figure 212: VisualRF Overlays preferences This menu allows you to configure the following settings: l Grid - non vector overlay l Vector - provides a smoother overlay with mouse-over capabilities Grid Lines Flash UI Preferences From the VisualRF > Floor Plans page, click the Preferences icon, then select Grid Lines from the Configuration Preferences for drop down to toggle grid lines on or off.
Figure 214: VisualRF Navigation preferences This menu allows you to configure the following settings: l Define the percentage of APs that must be up at a location over the last 24 hours for the campus or building to display a normal (green) icon or an excessive (red) icon. l Icon Size for campus, building, and floor. Specify Tiny, Small, Medium, Large, or Huge icons. Advanced Settings in VisualRF > Setup The VisualRF > Setup page, illustrated in Figure 215, configures advanced settings for VisualRF.
Figure 215: The VisualRF > Setup Page (partial view) Server Settings To enable VisualRF and tune memory and performance, navigate to the Server Settings section on this page. The settings in this section are detailed in Table 154. Table 154: Server Settings Section of the VisualRF > Setup Page Setting Default Description Enable VisualRF Engine No Enables or disables the VisualRF engine. This setting must be enabled to use VisualRF. If you do not have a license for VisualRF, this page will not appear.
Table 154: Server Settings Section of the VisualRF > Setup Page (Continued) Setting Memory Allocation Default 512 MB Description The amount of memory dedicate to VisualRF. It is not dynamically allocated and all the memory is consumed upon starting the service. Be sure to check the memory and swap utilization in the Systems > Performance page before making any changes.
Table 155: Location Settings Section in VisualRF > Setup Setting Default Description When VisualRF locates a client or rogue it utilizes signal metrics from all the APs that hear the client or rogue device. VisualRF builds a fingerprint location for all clients with similar transmit-power capability. All subsequent clients that fall within the deviation is placed on the same location fingerprint or x, y coordinates.
Table 156: Location Calculation Timer Settings Section of VisualRF > Setup (Continued) Setting Default Description Laptop Min/Max (sec) 90/360 This timer determines how often to calculate the location for laptop (nonlegacy) devices.
Table 156: Location Calculation Timer Settings Section of VisualRF > Setup (Continued) Setting Default Description Printer Min/Max (sec) 120/480 This timer determines how often to calculate the location of printers.
Table 157: Wall Attenuation Settings in VisualRF > Setup Setting Default dB Description Concrete Attenuation (dB) 15 Specifies the attenuation for any concrete walls drawn in VisualRF. Cubicle Attenuation (dB) 4 Specifies the attenuation for any cubicle walls drawn in VisualRF. Drywall Attenuation (dB) 6 Specifies the attenuation for any drywall walls drawn in VisualRF. Glass Attenuation (dB) 6 Specifies the attenuation for any glass walls that are drawn in VisualRF.
Planning and Provisioning VisualRF provides the capability to plan campuses, buildings, floors, and access points prior to the actual access point deployment.
Table 159: New Building Fields and Descriptions Field Description Name Name of the building located in an existing campus. Address Building or Campus address Longitude & Latitude These fields are used to represent a building on Google Earth. Ceiling Height The normal distance between floors in the building. This value can be overridden as each floor is created, but this is the default value for every new floor added to the system.
Creating a Floor Plan The following steps show how to import a floor plan background image file. Floor plans can be added (imported), edited, and deleted. Currently, functionality does not exist to replace a floor plan. If you want to import a newer floor plan to replace a current one, you must first delete the original plan and then add the new plan. When importing RF plans, be sure that the devices to be included are also available in the device catalog. 1.
By default the importation wizard allocates 2,500 grid cells to each site based on dimensions. If you have a site that is 250 ft. by 100 ft, the Floor Plan importation wizard would calculate the grid cell size at 10 feet. 250 ft. x 100 ft. = 25,000 ft. 25,000 ft. / 2,500 ft. = 10 ft. Decreasing the grid cell size will increase accuracy, but it also increase CPU consumption by the floor caching threads and the location caching threads.
6. Click OK. Defining Floor Plan Boundaries Use the Floorplan Boundary section of the HTML5 Floor Upload Wizard to refine the floor plan to remove whitespace, or to create a floorplan based on a portion of the interior of the graphic, such as an atrium. To define a floorplan boundary: 1. Click the Define Floorplan Boundary button. The pointer changes to a cross-hair icon. 2. Click on the floor plan graphic to define the boundaries of the floor plan.
Figure 219: Checking for CAD errors Controlling the Layers in the Uploaded Floor Plan (CAD only) Follow these steps to controller layers in CAD images: 1. Find the CAD Layers section on the page. 2. Unselect the layers which are not required. There is slight delay because each request makes a round trip to the server. Defining Floor Plan Regions Define regions within a floor plan that have different wireless networking requirements than the rest of the floor.
4. Click on the floor plan graphic to define the edge of the new region. Use the slider bar at the upper left corner of the wizard to zoom in to a section of the floor plan, if necessary. 5. Once the floor plan region is defined, select the region and click the Properties menu. The Name field shows the current name for that region. You can rename a region by entering a a new name into this field. 6. Click Type to specify a region type.
2. Right-click the floor and select Duplicate. 3. Enter the following information: l Starting and ending floors l Select the toggles to copy walls, regions, data rates (speeds), and AP placement The starting floor will add one to the highest floor in the building and the ending floor defaults to 10 more than the starting floor. 4. Select OK to save your changes. 5. Manually refresh page and your is redirected to the VisualRF > Floor Plan page. The Building view will reflect the new floors.
Figure 221: Provisioning Devices Wired devices that are added to a wired closet are included in any BOM report covering that floor. Deployed switches on a rack will display the port status as red (down) and green (up) interface icons, which corresponds with the operationally up devices on the APs/Devices > Interfaces list. Planned switches do not display these status indicators in VisualRF. Figure 222: Deployed switch showing red and green port status icons Dell Networking W-AirWave 8.
Editing a Planning Region You can edit a region by right-clicking within the region to see the following options: l Select All - Selects all regions on the floorplan. l Draw Walls Around Region - This action surrounds the region with walls of the last used wall type (concrete, cubicle, drywall or glass). For information on defining different wall types, see Adding Exterior Walls.
AirWave recalculates path loss and client locations after adding a deployed AP. All changes may not be visible on a refresh until this process complete. The Floor Upload wizard is available only in the default HTML5 UI. If you are using the legacy Flash-based UI, you must create a new floor plan before you can add devices to that floor. 1. Determine if you want to add APs to a new floor plan, or an existing floor plan.
1. Determine if you want to plan for APs on a new floor using the Floor Upload wizard, or plan for APs on an existing floor plan. l To add APs to a new floor plan using the Floor Upload Wizard, click Access Points in the wizard navigation bar, then select Plan APs. l To add APs to an existing floor plan, open the selected floor plan, then click Edit menu in the navigation bar. 2. Click the Type drop-down list and select a device type from the list of available devices. 3.
Figure 224: Bill of Materials Report Illustration Increasing Location Accuracy The Location Service will use all RF information available to increase location accuracy of clients, tags, and rogue devices. Understanding your infrastructure's inherent capabilities helps you learn the extra effort required to ensure location accuracy.
Table 163: Elements Read From Controllers to Increase Location Accuracy (Continued) MFG/Model Client Signal Associated AP AP-to-AP Signals (Dynamic Attenuation) Unassociated Client Signal Rogue AP Signal Proxim Yes Yes Yes Yes Symbol Auton.
Figure 225: Drawing a wall 4. (Optional) Change the attenuation of a wall by selecting the appropriate building material for that wall. l To define the wall material using the HTML5 UI, select the wall, click the Properties tab, then select the building material type from the Material drop-down list. l To define the wall material using the Flash-based UI, right-click the wall and and select the appropriate building material. 5.
3. Click the Add button for Static Training, as shown in Figure 227: Figure 227: Marking a Device as Static Fine-Tuning Location Service in VisualRF > Setup There are several options on the VisualRF > Setup page which increase client location accuracy. All of these items will increase the processing requirements for the location service and could negatively impact the overall performance of AirWave.
Figure 228: Timing Factors Impacting Location Accuracy These best practices are recommended when configuring hardware infrastructure: l For legacy autonomous APs, ensure on the Group > Radio page that Rogue Scanning is enabled and the interval is accurate, as shown in Figure 229: Figure 229: Group Rogue Scanning Configuration l For thin APs, ensure that the controllers are configured to gather RF information from the thin APs frequently.
Figure 230: Rectangular Floor Plan AP Deployment Adding Client Surveys Client surveys within VisualRF use data from access points to understand which clients those access points hear and at what signal strength. The legacy flash-based VisualRF UI allows you to run client surveys to increase the accuracy of the attenuation grid by taking real signal samplings from client devices associated with the WLAN. This feature is not available in the default HTML5 VisualRF UI.
Figure 231: Client Surveys 3. Select the Surveys and Training option. 4. Select the appropriate transmit power for the wireless client. Leave the default to 30mW if you are unsure. 5. Select the Duration or the time that you want to sample the client's signal measurements. Longer durations will increase Path Loss accuracy and location accuracy. 6. Select OK to begin the survey. To display survey locations, select the Display menu and select Surveys.
Table 164: Auto-assigned Client Type and Transmit Power (Continued) Client Type Transmit Power 11g iPhone 20 mW Desktop 100 mW Cisco Cards 100 mW Using VisualRF to Assess RF Environments VisualRF has four distinct views or entry points: client view, access point view, floor plan view, and network, campus, and building view.
Figure 234: VisualRF thumbnail in Clients > Client Detail This view is focused on the wireless user enabling you quick resolution of a user's issues and therefore disables most RF objects by default.
Figure 235: Show Location History A location history player, illustrated in Figure 236, appears at the bottom of the VisualRF window. Figure 236: Location History Player Checking Signal Strength to Client Location 1. On a floor plan, locate the Signal Cutoff menu. 2. Select the desired signal level to display, as shown in Figure 237. The heatmap updates immediately.
Figure 238: VisualRF Thumbnail in APs/Devices > Monitor page for an AP A fully interactive VisualRF display opens below the graphs on the same page (not in a new window).
Table 165: Floor Plans list columns Field Description Campus Campus associated to the floor. Building Building associated to the floor. Floor Floor number. The decimal place can be used for mezzanine levels. Name Optional name of a floor. (If the name is not changed, it displays the name as Floor [Number] by default.) Size The height and width in feet of the floor plan, including white space. Grid Cell Size The size of the grid cells, in feet. APs The number of access points on the floor.
Figure 240: Network List View 3. Click any of the links to view that location, or click a column heading to sort the list by that column criteria. The Original Floor Plan column contains links to download the floor plan graphic for the selected floor. 4. To return to the Map view, click the Map link at the top right of the page. Viewing Campuses, Buildings, or Floors from a Tree View The legacy flash-based UI includes a Tree View to view floors from a hierarchical tree, as follows: 1.
Importing and Exporting in VisualRF Exporting a campus To export a campus from VisualRF so you can import it into another AirWave, follow these steps: 1. Navigate back to the Network view. 2. Right-click the Campus icon. 3. Select Export. An object selection window appears. 4. Select the objects to export and select Export. A File Download window appears. 5. Select Save and save the zipped file to your local hard drive for importation to another AirWave.
Pre Processing Steps 1. Increase Memory Allocation in VisualRF > Setup as follows: l 25 floors or less - 512 MB l 25 to 75 floors - 1 GB l More than 75 floors - 1.5 GB 2. Massage the output data. 3. Increase the Location Caching Timer to 1 hour so that VisualRF does not overload the server calculating client locations while calculating path loss and process floor plan images. Upload Processing Steps 1.
PAGE 368VisualRF Location APIs VisualRF provides the following location APIs: Site Inventory: https://[amp_host]/visualrf/site.xml?site_id=... l You can find the site_id from the Floor Plan List query defined on the XML API page l This interface provides floor details including access points, walls, regions, surveys, etc. l The corresponding example XML and schema are attached in visualrf_site_inventory.* Device Location: https://[amp_host]/visualrf/location.xml?mac=...
0 0 down 0.0 PAGE 370Table 166: VisualRF vs. VisualRF Plan (Continued) Feature VisualRF Track users X Track interferers X VisualRF APIs X Location accuracy X VisualRF preferences X Resource utilization X Add external walls X Client surveys X Wiring Closet X View deployed switches X View signal strength X Planning and provisioning X X Import and Export X X Dell Networking W-AirWave 8.
Index 8 802.
Configuration AMP 17, 28 WMS Offload 76 Change Jobs, Viewing 159, 232 Compliance chart 257 Controllers 14 Templates and Variables 183 Whitelists 49 Configuration, WLC 104 Configuration, WLSE 66, 68 Connected Users table 155 Contents 3 Controllers Backup and Restore 274 Classification WMS Offload 203 Disk Space charts 236 DNS Hostname Lifetime 32 Documentation 267 E Editing Interfaces 154 Error fetching existing configuration 173 Expand folders to show all APs 136 Export CSV 21 external logging 33 F Failo
Configuring Security Settings 92 Deleting 116 Deleting a Group 116 Global Groups 81, 120 MAC ACLs 113 Overview 80 Radio Settings 100 Security 92 Viewing 81 Guest Access Sponsor role 47 Guest User Configuration 32 Guest Users 35 H Health Setting Triggers 228 Historical Data Retention 34 HP ProCurve 90, 178 HTTP Timeout 60 I ICMP settings 60 IDS Events 229 ignore device 134 Incidents 229 Index 371 Installation 17 Instant APs 14 Instant Config 14 Interface Monitoring page 154 Interfaces/Radios Setting Trigge
P pagination records setting, resetting 20 pagination widget, using 21 PCI Compliance Default Credential Compliance 76 PCI Requirements 74 Physical Interfaces table 154 planned maintenance mode 158, 160 Poll Now button 140 Primary Network Interface Settings 40 product overview 13 defining a scan 126 executing a scan 127 Proxim 4900M 103 Q Quick Links 251, 258 R Radio Enabled option 163 Radio Role field 176 radio settings Configuring for Groups 100 radio statistics 146, 151 Radio Table 142 RADIUS 91 authen
S T Sample Response Device Location 368 Site Inventory 368 Scan Sets 126 Scanning Credentials 125 Search Method 31 Secondary Network Interface Settings 40 Security auditing PCI compliance 73 Configuring ACS servers 70 Configuring Group Security Settings 92 configuring group SSIDs and VLANs 96 configuring LDAP 48 configuring RADIUS 48 configuring TACACS+ 48 integrating NMS 71 RAPIDS and rogue classification 198 Security and Authentication > ACS 68 Security and Authentication > Certificates 50 Server Settin
Clients > Clients Detail 255 Clients > Connected 239-240 Clients > Diagnostics 253 Clients > Guest Users 245 Clients > Tags 248 Clients > User Detail 251 Clients > VPN Sessions 247 Configuration Change Confirmation 117 Device Setup > Add 129, 133-134 Device Setup > Communication 58-61 Device Setup > Discover 125-127 Device Setup > Firmware Files 61 flash graphs 23, 28 Flash Graphs 22 Group SNMP Polling Period 85-86 Groups > Basic 84-85, 87, 89-90, 121 Groups > Cisco WLC Config 104 Groups > Firmware 114 Grou
QuickView 145, 324 Removing Color 344 Roles 43 Settings Adding a New Attenuation 339 Setup Attenuation Settings 338 Controller 367 Location Calculation Timer Settings 336 Location Settings 335 Resource Utilization 339 Server Settings 334 Setup page 333 Terninology 323 Tree view 363 Viewing a Wireless User 359 Viewing AP RF Environment 361 Viewing Floor Plan RF Environment 362 VisualRF Plan 369 Installation 369 Requirements 369 VisualRF vs.