CISCO-LWAPP-WEBAUTH-MIB
File:
CISCO-LWAPP-WEBAUTH-MIB.mib (21788 bytes)
Imported modules
Imported symbols
Defined Types
CLWAExternalWebServerEntry |
|
SEQUENCE |
|
|
|
|
cLWAExternalWebServerIndex |
Unsigned32 |
|
|
cLWAExternalWebServerAddrType |
InetAddressType |
|
|
cLWAExternalWebServerAddr |
InetAddress |
|
|
cLWAExternalWebServerRowStatus |
RowStatus |
|
CLWALocalNetUserEntry |
|
SEQUENCE |
|
|
|
|
cLWALocalNetUserName |
SnmpAdminString |
|
|
cLWALocalNetUserIsGuest |
TruthValue |
|
Defined Values
ciscoLwappWebAuthMIB |
1.3.6.1.4.1.9.9.515 |
This MIB is intended to be implemented on all those
devices operating as Central controllers, that
terminate the Light Weight Access Point Protocol
tunnel from Cisco Light-weight LWAPP Access Points.
This MIB is used to configure web authentication
parameters in the controller to manage clients'
authentication. The mobile nodes are
web-authenticated if they select the WLAN that
has web security enabled.
The relationship between CC and the LWAPP APs
can be depicted as follows:
+......+ +......+ +......+ +......+
+ + + + + + + +
+ CC + + CC + + CC + + CC +
+ + + + + + + +
+......+ +......+ +......+ +......+
.. . . .
.. . . .
. . . . .
. . . . .
. . . . .
. . . . .
+......+ +......+ +......+ +......+ +......+
+ + + + + + + + + +
+ AP + + AP + + AP + + AP + + AP +
+ + + + + + + + + +
+......+ +......+ +......+ +......+ +......+
. . . .
. . . . .
. . . . .
. . . . .
. . . . .
+......+ +......+ +......+ +......+ +......+
+ + + + + + + + + +
+ MN + + MN + + MN + + MN + + MN +
+ + + + + + + + + +
+......+ +......+ +......+ +......+ +......+
The LWAPP tunnel exists between the controller and
the APs. The MNs communicate with the APs through
the protocol defined by the 802.11 standard.
LWAPP APs, upon bootup, discover and join one of the
controllers and the controller pushes the configuration,
that includes the WLAN parameters, to the LWAPP APs.
The APs then encapsulate all the 802.11 frames from
wireless clients inside LWAPP frames and forward
the LWAPP frames to the controller.
GLOSSARY
Access Point ( AP )
An entity that contains an 802.11 medium access
control ( MAC ) and physical layer ( PHY ) interface
and provides access to the distribution services via
the wireless medium for associated clients.
LWAPP APs encapsulate all the 802.11 frames in
LWAPP frames and sends them to the controller to which
it is logically connected.
Central Controller ( CC )
The central entity that terminates the LWAPP protocol
tunnel from the LWAPP APs. Throughout this MIB,
this entity also referred to as 'controller'.
Guest User
A guest user is a temporary user with access
privileges for configuring the wireless network
for a finite life time. The wireless networks
are configured on the controller. The method of
authentication to the controller can be configured
using this MIB instrumentation.
Light Weight Access Point Protocol ( LWAPP )
This is a generic protocol that defines the
communication between the Access Points and the
Central Controller.
Mobile Node ( MN )
A roaming 802.11 wireless device in a wireless
network associated with an access point. Mobile Node,
Mobile Station(Ms) and client are used interchangeably.
Web-Authentication
Clients are web authenticated, when clients open the
web-browser and send HTTP packets. Then user is asked
to enter login and password. This is known as Web
Authentication.
REFERENCE
[1] Wireless LAN Medium Access Control ( MAC ) and
Physical Layer ( PHY ) Specifications.
[2] Draft-obara-capwap-lwapp-00.txt, IETF Light
Weight Access Point Protocol |
MODULE-IDENTITY |
|
|
|
cLWAWebAuthType |
1.3.6.1.4.1.9.9.515.2.1.1 |
The type of web authentication for the clients.
Web Authentication can be of three types;
internalDefault - The default login page will be
presented to the client for authentication.
internalCustom - The administrator has created and
uploaded a custom login page and it will be
presented to the clients for authentication.
external - This value indicates that the login page
will be served from the external web server. Note
that cLWAWebAuthType can be successfully set to this
value when the cLWAExternalWebAuthURL object has been
set to string with non-zero length. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
internalDefault(1), internalCustom(2), external(3) |
|
cLWAManufacturerLogo |
1.3.6.1.4.1.9.9.515.2.1.2 |
This object is used to control the display of the
Manufacturer Logo on the login page.
A value of 'true' indicates that the Manufacturer
logo will be displayed on the login page.
A value of 'false' indicates that the Manufacturer
logo won't be displayed on the login page. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
TruthValue |
|
|
cLWACustomLogoFileName |
1.3.6.1.4.1.9.9.515.2.1.3 |
The name of the custom logo file. The logo
in this file will appear on the login page
when the value of cLWebAuthType is
'internalDefault'. |
Status: current |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
SnmpAdminString |
|
|
cLWACustomWebTitle |
1.3.6.1.4.1.9.9.515.2.1.4 |
The title text that appears on the login page
of the clients when the value of cLWebAuthType
is 'internalDefault'. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
SnmpAdminString |
Size(0..128) |
|
cLWACustomWebMessage |
1.3.6.1.4.1.9.9.515.2.1.5 |
The message that appears on the login page of
clients when the value of cLWebAuthType is
'internalDefault'. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
SnmpAdminString |
|
|
cLWAExternalWebAuthURL |
1.3.6.1.4.1.9.9.515.2.1.7 |
The URL to which the client web page will be
directed for authentication. This object will
be used when the cLWebAuthType object is set to
'external'. The configured URL should resolve to
one of the Web Server IP addresses configured
through cLWAExternalWebServerTable. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
CiscoURLString |
|
|
cLWAExternalWebServerTable |
1.3.6.1.4.1.9.9.515.2.2.1 |
This table provides the list of external web
servers used for external web authentication.
These are the addresses from which the
controller will allow traffic before client
authentication to show the login page.
The controller is expected to use the services
of these web servers for performing the
authentication. The user is expected to provide
correct Internet addresses of those servers
available for authentication through this table.
The web authentication is done with the help of
only those Web Servers configured through this
table only when the cLWAWebAuthType is
configured as 'external'. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
SEQUENCE OF |
|
|
|
|
CLWAExternalWebServerEntry |
|
cLWAExternalWebServerEntry |
1.3.6.1.4.1.9.9.515.2.2.1.1 |
A conceptual row in cLWAExternalWebServerTable. Each
entry corresponds to one external web authentication
server whose address is represented by
cLWAExternalWebServerAddr. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
CLWAExternalWebServerEntry |
|
|
cLWAExternalWebServerIndex |
1.3.6.1.4.1.9.9.515.2.2.1.1.1 |
This object uniquely identifies one specific entry
in this table. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
Unsigned32 |
1..32 |
|
cLWAExternalWebServerAddrType |
1.3.6.1.4.1.9.9.515.2.2.1.1.2 |
The type of the Web Server address as represented
by the value of the corresponding instance of
'cLWAExternalWebServerAddr'. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
InetAddressType |
|
|
cLWAExternalWebServerAddr |
1.3.6.1.4.1.9.9.515.2.2.1.1.3 |
The Internet address of the Web Server from which
traffic is allowed before client's authentication.
Please note that the row creation will be
successful only if the address of the Web Server
represented by the values of
cLWAExternalWebServerAddrType and
cLWAExternalWebServerAddr is unique across all
the entries. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
InetAddress |
|
|
cLWAExternalWebServerRowStatus |
1.3.6.1.4.1.9.9.515.2.2.1.1.4 |
The status of the conceptual row used to create and
delete specific instances of rows in this table.
This object can not be set to 'active' unless the
values of the corresponding instances of
cLWAExternalWebServerAddr and
cLWAExternalWebServerAddrType are set. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
RowStatus |
|
|
cLWALocalNetUserTable |
1.3.6.1.4.1.9.9.515.2.3.1 |
The table lists the user type for each user present
in the controller. The user type can be guest or
permanent. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
SEQUENCE OF |
|
|
|
|
CLWALocalNetUserEntry |
|
cLWALocalNetUserEntry |
1.3.6.1.4.1.9.9.515.2.3.1.1 |
This is a row in the cLWALocalNetUserTable.
Each entry corresponds to a guest/permanent user present
in the controller. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
CLWALocalNetUserEntry |
|
|
cLWALocalNetUserName |
1.3.6.1.4.1.9.9.515.2.3.1.1.1 |
This object identifies the user name of the guest
user or the permanent user in the controller. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
SnmpAdminString |
Size(1..50) |
|
cLWALocalNetUserIsGuest |
1.3.6.1.4.1.9.9.515.2.3.1.1.2 |
This object is used to specify the type of user in
the controller. A value of 'true' is used to specify
a guest user and a value of 'false' is used to specify
a permanent user. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
TruthValue |
|
|
cLWAGuestUserName |
1.3.6.1.4.1.9.9.515.1.1 |
This object indicates the name of the guest user. |
Status: current |
Access: accessible-for-notify |
OBJECT-TYPE |
|
|
|
|
OCTET STRING |
Size(1..24) |
|
cLWAGuestUserRemoved |
1.3.6.1.4.1.9.9.515.0.1 |
This notification is generated when the lifetime of the
guest-user expires and the guest-user's accounts are
removed. |
Status: current |
Access: accessible-for-notify |
NOTIFICATION-TYPE |
|
|
|
cLWebAuthMIBCompliance |
1.3.6.1.4.1.9.9.515.3.1.1 |
The compliance statement for the SNMP entities that
implement the ciscoLwappWebAuthMIB module. |
Status: deprecated |
Access: accessible-for-notify |
MODULE-COMPLIANCE |
|
|
|
cLWebAuthMIBComplianceRev1 |
1.3.6.1.4.1.9.9.515.3.1.2 |
The compliance statement for the SNMP entities that
implement the ciscoLwappWebAuthMIB module. |
Status: current |
Access: accessible-for-notify |
MODULE-COMPLIANCE |
|
|
|
cLWACustomWebAuthGroup |
1.3.6.1.4.1.9.9.515.3.2.1 |
This collection of objects is used for internal-
default and internal-custom web-authentication. |
Status: current |
Access: accessible-for-notify |
OBJECT-GROUP |
|
|
|
cLWAExternalWebAuthGroup |
1.3.6.1.4.1.9.9.515.3.2.2 |
This collection of objects is used for configuring
Web servers for external web-authentication. |
Status: current |
Access: accessible-for-notify |
OBJECT-GROUP |
|
|
|
cLWAGuestAccessNotifObjGroup |
1.3.6.1.4.1.9.9.515.3.2.3 |
This collection of objects are part of the Guest
Access related notifications by the controller. |
Status: current |
Access: accessible-for-notify |
OBJECT-GROUP |
|
|
|
cLWAGuestAccessNotifGroup |
1.3.6.1.4.1.9.9.515.3.2.4 |
These notifications are sent to the network
management station to indicate the access status
of guest users. |
Status: current |
Access: accessible-for-notify |
NOTIFICATION-GROUP |
|
|
|
cLWAGuestUserConfigGroup |
1.3.6.1.4.1.9.9.515.3.2.5 |
This collection of objects is used for configuring
guest user parameters. |
Status: current |
Access: accessible-for-notify |
OBJECT-GROUP |
|
|
|