CISCO-LWAPP-DOT11-LDAP-MIB

File: CISCO-LWAPP-DOT11-LDAP-MIB.mib (20947 bytes)

Imported modules

SNMPv2-SMI SNMPv2-CONF SNMPv2-TC
INET-ADDRESS-MIB SNMP-FRAMEWORK-MIB CISCO-LWAPP-WLAN-MIB
CISCO-SMI

Imported symbols

MODULE-IDENTITY OBJECT-TYPE Unsigned32
MODULE-COMPLIANCE OBJECT-GROUP DisplayString
RowStatus TruthValue StorageType
TEXTUAL-CONVENTION InetAddressType InetAddress
InetPortNumber SnmpAdminString cLWlanIndex
ciscoMgmt

Defined Types

CldlBindType  
This textual convention represents the kind of authentications done by the LDAP server. The semantics are as follows. anonymous(1) - This indicates that the LDAP server accepts anonymous authentication attempts. authenticated(2) - This indicates that the LDAP server authenticates based on the credentials provided in the form of username/password.
TEXTUAL-CONVENTION    
  INTEGER anonymous(1), authenticated(2)  

CldlServerEntry  
SEQUENCE    
  cldlServerIndex Unsigned32
  cldlServerAddressType InetAddressType
  cldlServerAddress InetAddress
  cldlServerPortNum InetPortNumber
  cldlServerState TruthValue
  cldlServerTimeout Unsigned32
  cldlServerUserBase DisplayString
  cldlServerUserNameAttribute DisplayString
  cldlServerUserName DisplayString
  cldlServerSecurityEnable TruthValue
  cldlServerStorageType StorageType
  cldlServerRowStatus RowStatus
  cldlServerBindType CldlBindType
  cldlServerAuthBindUserName SnmpAdminString
  cldlServerAuthBindPassword SnmpAdminString

CldlWlanLdapEntry  
SEQUENCE    
  cldlWlanLdapPrimaryServerIndex Unsigned32
  cldlWlanLdapSecondaryServerIndex Unsigned32
  cldlWlanLdapTertiaryServerIndex Unsigned32

Defined Values

ciscoLwappDot11LdapMIB 1.3.6.1.4.1.9.9.614
This MIB is intended to be implemented on all those devices operating as Central controllers, that terminate the Light Weight Access Point Protocol tunnel from Cisco Light-weight LWAPP Access Points. Information provided by this MIB is used to manage LDAP features on the controller. The relationship between CC and the LWAPP APs can be depicted as follows: +......+ +......+ +......+ + + + + + + + CC + + CC + + CC + + + + + + + +......+ +......+ +......+ .. . . .. . . . . . . . . . . . . . . . . . . +......+ +......+ +......+ +......+ + + + + + + + + + AP + + AP + + AP + + AP + + + + + + + + + +......+ +......+ +......+ +......+ . . . . . . . . . . . . . . . . . . . +......+ +......+ +......+ +......+ + + + + + + + + + MN + + MN + + MN + + MN + + + + + + + + + +......+ +......+ +......+ +......+ The LWAPP tunnel exists between the controller and the APs. The MNs communicate with the APs through the protocol defined by the 802.11 standard. LWAPP APs, upon bootup, discover and join one of the controllers and the controller pushes the configuration, that includes the WLAN parameters, to the LWAPP APs. The APs then encapsulate all the 802.11 frames from wireless clients inside LWAPP frames and forward the LWAPP frames to the controller. GLOSSARY Access Point ( AP ) An entity that contains an 802.11 medium access control ( MAC ) and physical layer ( PHY ) interface and provides access to the distribution services via the wireless medium for associated clients. LWAPP APs encapsulate all the 802.11 frames in LWAPP frames and sends them to the controller to which it is logically connected. Gratuitous Probe Response (GPR) The Gratuitous Probe Response feature aids in conserving battery power of WLAN-enabled cell phones by providing a high rate packet on the order of tens of milliseconds such that these kind of phones can wake up and wait at predefined intervals, to reduce battery power. The GPR packet is transmitted from the AP at a predefined time interval. Light Weight Access Point Protocol ( LWAPP ) This is a generic protocol that defines the communication between the Access Points and the Central Controller. Mobile Node ( MN ) A roaming 802.11 wireless device in a wireless network associated with an access point. Mobile Node and client are used interchangeably. Lightweight Directory Access Protocol ( LDAP ) LDAP is a protocol used for obtaining directory services and runs over TCP/IP. Transport Layer Security ( TLS ) This is a cryptographic protocol which provides secure communication over the network. REFERENCE [1] Wireless LAN Medium Access Control ( MAC ) and Physical Layer ( PHY ) Specifications [2] Draft-obara-capwap-lwapp-00.txt, IETF Light Weight Access Point Protocol
MODULE-IDENTITY    

ciscoLwappDot11LdapMIBNotifs 1.3.6.1.4.1.9.9.614.0
OBJECT IDENTIFIER    

ciscoLwappDot11LdapMIBObjects 1.3.6.1.4.1.9.9.614.1
OBJECT IDENTIFIER    

ciscoLwappDot11LdapMIBConform 1.3.6.1.4.1.9.9.614.2
OBJECT IDENTIFIER    

cldlConfig 1.3.6.1.4.1.9.9.614.1.1
OBJECT IDENTIFIER    

cldlStatus 1.3.6.1.4.1.9.9.614.1.2
OBJECT IDENTIFIER    

cldlServerTable 1.3.6.1.4.1.9.9.614.1.1.1
This table lists the information about LDAP servers configured on the controller. Entries are added or deleted by the user through the use of cldlServerRowStatus.
OBJECT-TYPE    
  SEQUENCE OF  
    CldlServerEntry

cldlServerEntry 1.3.6.1.4.1.9.9.614.1.1.1.1
Each entry corresponds to a row in cldlServerTable and represents the information about an LDAP server the controller would contact for its operations.
OBJECT-TYPE    
  CldlServerEntry  

cldlServerIndex 1.3.6.1.4.1.9.9.614.1.1.1.1.1
This object uniquely identifies an entry in cldlServerTable.
OBJECT-TYPE    
  Unsigned32 1..255  

cldlServerAddressType 1.3.6.1.4.1.9.9.614.1.1.1.1.2
This object represents the type of the network address made available through cldlServerAddress.
OBJECT-TYPE    
  InetAddressType  

cldlServerAddress 1.3.6.1.4.1.9.9.614.1.1.1.1.3
This object represents the address of the LDAP server that can be contacted by the controller for the purpose of authentication, authorization and accounting.
OBJECT-TYPE    
  InetAddress  

cldlServerPortNum 1.3.6.1.4.1.9.9.614.1.1.1.1.4
This object represents the port number at which the controller contacts the LDAP server.
OBJECT-TYPE    
  InetPortNumber  

cldlServerState 1.3.6.1.4.1.9.9.614.1.1.1.1.5
This object indicates whether the LDAP server is currently in use by the controller. A value of 'true' indicates that the LDAP server is in use. A value of 'false' indicates that the LDAP server is not in use.
OBJECT-TYPE    
  TruthValue  

cldlServerTimeout 1.3.6.1.4.1.9.9.614.1.1.1.1.6
This object represents the retransmit time-out value for this LDAP server. If there is no response from the LDAP server, the controller will wait for this duration, before retransmitting.
OBJECT-TYPE    
  Unsigned32 2..30  

cldlServerUserBase 1.3.6.1.4.1.9.9.614.1.1.1.1.7
This object represents the name of the sub-tree in the LDAP server that contains the information about all the users in that sub-tree.
OBJECT-TYPE    
  DisplayString  

cldlServerUserNameAttribute 1.3.6.1.4.1.9.9.614.1.1.1.1.8
This object represents the attribute that stores the name of the user.
OBJECT-TYPE    
  DisplayString  

cldlServerUserName 1.3.6.1.4.1.9.9.614.1.1.1.1.9
This object represents the name of the user. This is the value for the attribute identified by cldlServerUserNameAttribute.
OBJECT-TYPE    
  DisplayString  

cldlServerSecurityEnable 1.3.6.1.4.1.9.9.614.1.1.1.1.10
This object indicates whether the LDAP transactions are secured. A value of 'true' indicates that all the LDAP transactions of the controller are secured the use of TLS tunnel. A value of 'false' indicates that the LDAP transactions are not secured.
OBJECT-TYPE    
  TruthValue  

cldlServerStorageType 1.3.6.1.4.1.9.9.614.1.1.1.1.11
This object represents the storage type for this conceptual row.
OBJECT-TYPE    
  StorageType  

cldlServerRowStatus 1.3.6.1.4.1.9.9.614.1.1.1.1.12
This object represents the status column for a conceptual row in this table.
OBJECT-TYPE    
  RowStatus  

cldlServerBindType 1.3.6.1.4.1.9.9.614.1.1.1.1.13
This object represents the kind of authentication the Controller does with the LDAP server.
OBJECT-TYPE    
  CldlBindType  

cldlServerAuthBindUserName 1.3.6.1.4.1.9.9.614.1.1.1.1.14
This object represents the name used by the Controller for the authentication with the LDAP server. For values other than 'authenticated', as identified through cldlServerBindType, this object will be populated with an empty string.
OBJECT-TYPE    
  SnmpAdminString  

cldlServerAuthBindPassword 1.3.6.1.4.1.9.9.614.1.1.1.1.15
This object represents the password used by the Controller for authentication with the LDAP server. For security purposes, this object will be populated with the string '****', when a valid password has been configured. For values other than 'authenticated', as identified through cldlServerBindType, this object will be populated with an empty string.
OBJECT-TYPE    
  SnmpAdminString  

cldlWlanLdapTable 1.3.6.1.4.1.9.9.614.1.1.2
This table helps to map LDAP servers for WLANs from cldlServerTable through the use of cldlServerIndex. When a client gets associated to a WLAN, the controller uses those LDAP servers that are mapped to that WLAN for access to information about the clients. The creation of a new row in cLWlanConfigTable, through an explicit network management action, results in creation of an entry in this table. Similarly, deletion of a row in cLWlanConfigTable through user action causes the deletion of corresponding row in this table. This table has an one-to-one relationship with cLWlanConfigTable of CISCO-LWAPP-WLAN-MIB. There exists an entry in this table for each corresponding entry in the cLWlanConfigTable.
OBJECT-TYPE    
  SEQUENCE OF  
    CldlWlanLdapEntry

cldlWlanLdapEntry 1.3.6.1.4.1.9.9.614.1.1.2.1
Each entry represents a conceptual row in cldlWlanLdapTable and represents the LDAP configuration for a particular WLAN identified by cLWlanIndex.
OBJECT-TYPE    
  CldlWlanLdapEntry  

cldlWlanLdapPrimaryServerIndex 1.3.6.1.4.1.9.9.614.1.1.2.1.1
The object represents the value that maps to the primary LDAP server for this WLAN. A value of 0 indicates that the primary LDAP server is not configured for this WLAN.
OBJECT-TYPE    
  Unsigned32 0..255  

cldlWlanLdapSecondaryServerIndex 1.3.6.1.4.1.9.9.614.1.1.2.1.2
The object represents the value that maps to the secondary LDAP server for this WLAN. A value of 0 indicates that the primary LDAP server is not configured for this WLAN.
OBJECT-TYPE    
  Unsigned32 0..255  

cldlWlanLdapTertiaryServerIndex 1.3.6.1.4.1.9.9.614.1.1.2.1.3
The object represents the value that maps to the tertiary LDAP server for this WLAN. A value of 0 indicates that the primary LDAP server is not configured for this WLAN.
OBJECT-TYPE    
  Unsigned32 0..255  

ciscoLwappDot11LdapMIBCompliances 1.3.6.1.4.1.9.9.614.2.1
OBJECT IDENTIFIER    

ciscoLwappDot11LdapMIBGroups 1.3.6.1.4.1.9.9.614.2.2
OBJECT IDENTIFIER    

ciscoLwappDot11LdapMIBCompliance 1.3.6.1.4.1.9.9.614.2.1.1
The compliance statement for the SNMP entities that implement the ciscoLwappDot11LdapMIB module.
MODULE-COMPLIANCE    

ciscoLwappDot11LdapMIBComplianceRev1 1.3.6.1.4.1.9.9.614.2.1.2
The compliance statement for the SNMP entities that implement the ciscoLwappDot11LdapMIB module.
MODULE-COMPLIANCE    

ciscoLwappDot11LdapMIBConfigGroup 1.3.6.1.4.1.9.9.614.2.2.1
This collection of objects specifies the LDAP configuration on the controller.
OBJECT-GROUP    

ciscoLwappDot11LdapMIBConfigGroupSup1 1.3.6.1.4.1.9.9.614.2.2.2
This group of objects supplements the ciscoLwappDot11LdapMIBConfigGroup, to configure the information about the Controller's authentication done with the LDAP server.
OBJECT-GROUP