CISCO-LWAPP-DOT11-LDAP-MIB
File:
CISCO-LWAPP-DOT11-LDAP-MIB.mib (20947 bytes)
Imported modules
Imported symbols
Defined Types
CldlBindType |
|
This textual convention represents the kind of
authentications done by the LDAP server.
The semantics are as follows.
anonymous(1) - This indicates that the LDAP server accepts
anonymous authentication attempts.
authenticated(2) - This indicates that the LDAP server
authenticates based on the credentials provided in the
form of username/password. |
TEXTUAL-CONVENTION |
|
|
|
|
INTEGER |
anonymous(1), authenticated(2) |
|
CldlServerEntry |
|
SEQUENCE |
|
|
|
|
cldlServerIndex |
Unsigned32 |
|
|
cldlServerAddressType |
InetAddressType |
|
|
cldlServerAddress |
InetAddress |
|
|
cldlServerPortNum |
InetPortNumber |
|
|
cldlServerState |
TruthValue |
|
|
cldlServerTimeout |
Unsigned32 |
|
|
cldlServerUserBase |
DisplayString |
|
|
cldlServerUserNameAttribute |
DisplayString |
|
|
cldlServerUserName |
DisplayString |
|
|
cldlServerSecurityEnable |
TruthValue |
|
|
cldlServerStorageType |
StorageType |
|
|
cldlServerRowStatus |
RowStatus |
|
|
cldlServerBindType |
CldlBindType |
|
|
cldlServerAuthBindUserName |
SnmpAdminString |
|
|
cldlServerAuthBindPassword |
SnmpAdminString |
|
CldlWlanLdapEntry |
|
SEQUENCE |
|
|
|
|
cldlWlanLdapPrimaryServerIndex |
Unsigned32 |
|
|
cldlWlanLdapSecondaryServerIndex |
Unsigned32 |
|
|
cldlWlanLdapTertiaryServerIndex |
Unsigned32 |
|
Defined Values
ciscoLwappDot11LdapMIB |
1.3.6.1.4.1.9.9.614 |
This MIB is intended to be implemented on all those
devices operating as Central controllers, that
terminate the Light Weight Access Point Protocol
tunnel from Cisco Light-weight LWAPP Access Points.
Information provided by this MIB is used to manage
LDAP features on the controller.
The relationship between CC and the LWAPP APs
can be depicted as follows:
+......+ +......+ +......+
+ + + + + +
+ CC + + CC + + CC +
+ + + + + +
+......+ +......+ +......+
.. . .
.. . .
. . . .
. . . .
. . . .
. . . .
+......+ +......+ +......+ +......+
+ + + + + + + +
+ AP + + AP + + AP + + AP +
+ + + + + + + +
+......+ +......+ +......+ +......+
. . .
. . . .
. . . .
. . . .
. . . .
+......+ +......+ +......+ +......+
+ + + + + + + +
+ MN + + MN + + MN + + MN +
+ + + + + + + +
+......+ +......+ +......+ +......+
The LWAPP tunnel exists between the controller and
the APs. The MNs communicate with the APs through
the protocol defined by the 802.11 standard.
LWAPP APs, upon bootup, discover and join one of the
controllers and the controller pushes the configuration,
that includes the WLAN parameters, to the LWAPP APs.
The APs then encapsulate all the 802.11 frames from
wireless clients inside LWAPP frames and forward
the LWAPP frames to the controller.
GLOSSARY
Access Point ( AP )
An entity that contains an 802.11 medium access
control ( MAC ) and physical layer ( PHY ) interface
and provides access to the distribution services via
the wireless medium for associated clients.
LWAPP APs encapsulate all the 802.11 frames in
LWAPP frames and sends them to the controller to which
it is logically connected.
Gratuitous Probe Response (GPR)
The Gratuitous Probe Response feature aids in conserving
battery power of WLAN-enabled cell phones by providing
a high rate packet on the order of tens of milliseconds
such that these kind of phones can wake up and wait at
predefined intervals, to reduce battery power. The
GPR packet is transmitted from the AP at a predefined
time interval.
Light Weight Access Point Protocol ( LWAPP )
This is a generic protocol that defines the
communication between the Access Points and the
Central Controller.
Mobile Node ( MN )
A roaming 802.11 wireless device in a wireless
network associated with an access point. Mobile Node
and client are used interchangeably.
Lightweight Directory Access Protocol ( LDAP )
LDAP is a protocol used for obtaining directory services
and runs over TCP/IP.
Transport Layer Security ( TLS )
This is a cryptographic protocol which provides secure
communication over the network.
REFERENCE
[1] Wireless LAN Medium Access Control ( MAC ) and
Physical Layer ( PHY ) Specifications
[2] Draft-obara-capwap-lwapp-00.txt, IETF Light
Weight Access Point Protocol |
MODULE-IDENTITY |
|
|
|
cldlConfig |
1.3.6.1.4.1.9.9.614.1.1 |
OBJECT IDENTIFIER |
|
|
|
cldlStatus |
1.3.6.1.4.1.9.9.614.1.2 |
OBJECT IDENTIFIER |
|
|
|
cldlServerTable |
1.3.6.1.4.1.9.9.614.1.1.1 |
This table lists the information about LDAP servers
configured on the controller. Entries are added or deleted
by the user through the use of cldlServerRowStatus. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
SEQUENCE OF |
|
|
|
|
CldlServerEntry |
|
cldlServerEntry |
1.3.6.1.4.1.9.9.614.1.1.1.1 |
Each entry corresponds to a row in cldlServerTable and
represents the information about an LDAP server the
controller would contact for its operations. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
CldlServerEntry |
|
|
cldlServerIndex |
1.3.6.1.4.1.9.9.614.1.1.1.1.1 |
This object uniquely identifies an entry in
cldlServerTable. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
Unsigned32 |
1..255 |
|
cldlServerAddressType |
1.3.6.1.4.1.9.9.614.1.1.1.1.2 |
This object represents the type of the network
address made available through cldlServerAddress. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
InetAddressType |
|
|
cldlServerAddress |
1.3.6.1.4.1.9.9.614.1.1.1.1.3 |
This object represents the address of the LDAP server
that can be contacted by the controller for the purpose
of authentication, authorization and accounting. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
InetAddress |
|
|
cldlServerPortNum |
1.3.6.1.4.1.9.9.614.1.1.1.1.4 |
This object represents the port number at which the
controller contacts the LDAP server. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
InetPortNumber |
|
|
cldlServerState |
1.3.6.1.4.1.9.9.614.1.1.1.1.5 |
This object indicates whether the LDAP server is currently
in use by the controller. A value of 'true' indicates that
the LDAP server is in use. A value of 'false' indicates that
the LDAP server is not in use. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
TruthValue |
|
|
cldlServerTimeout |
1.3.6.1.4.1.9.9.614.1.1.1.1.6 |
This object represents the retransmit time-out value for
this LDAP server. If there is no response from the LDAP
server, the controller will wait for this duration,
before retransmitting. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
Unsigned32 |
2..30 |
|
cldlServerUserBase |
1.3.6.1.4.1.9.9.614.1.1.1.1.7 |
This object represents the name of the sub-tree in
the LDAP server that contains the information about all
the users in that sub-tree. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
cldlServerUserName |
1.3.6.1.4.1.9.9.614.1.1.1.1.9 |
This object represents the name of the user.
This is the value for the attribute identified by
cldlServerUserNameAttribute. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
cldlServerSecurityEnable |
1.3.6.1.4.1.9.9.614.1.1.1.1.10 |
This object indicates whether the LDAP transactions are
secured. A value of 'true' indicates that all the
LDAP transactions of the controller are secured the use
of TLS tunnel. A value of 'false' indicates that the LDAP
transactions are not secured. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
TruthValue |
|
|
cldlServerStorageType |
1.3.6.1.4.1.9.9.614.1.1.1.1.11 |
This object represents the storage type for this conceptual
row. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
StorageType |
|
|
cldlServerRowStatus |
1.3.6.1.4.1.9.9.614.1.1.1.1.12 |
This object represents the status column for a
conceptual row in this table. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
RowStatus |
|
|
cldlServerBindType |
1.3.6.1.4.1.9.9.614.1.1.1.1.13 |
This object represents the kind of authentication the
Controller does with the LDAP server. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
CldlBindType |
|
|
cldlServerAuthBindUserName |
1.3.6.1.4.1.9.9.614.1.1.1.1.14 |
This object represents the name used by the Controller
for the authentication with the LDAP server.
For values other than 'authenticated', as identified through
cldlServerBindType, this object will be populated with an
empty string. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
SnmpAdminString |
|
|
cldlServerAuthBindPassword |
1.3.6.1.4.1.9.9.614.1.1.1.1.15 |
This object represents the password used by the Controller
for authentication with the LDAP server.
For security purposes, this object will be populated with
the string '****', when a valid password has been configured.
For values other than 'authenticated', as identified through
cldlServerBindType, this object will be populated with an
empty string. |
Status: current |
Access: read-create |
OBJECT-TYPE |
|
|
|
|
SnmpAdminString |
|
|
cldlWlanLdapTable |
1.3.6.1.4.1.9.9.614.1.1.2 |
This table helps to map LDAP servers for WLANs
from cldlServerTable through the use of
cldlServerIndex. When a client gets associated to a WLAN,
the controller uses those LDAP servers that are
mapped to that WLAN for access to information about
the clients.
The creation of a new row in cLWlanConfigTable,
through an explicit network management action,
results in creation of an entry in this table.
Similarly, deletion of a row in
cLWlanConfigTable through user action causes the
deletion of corresponding row in this table.
This table has an one-to-one relationship with
cLWlanConfigTable of CISCO-LWAPP-WLAN-MIB. There
exists an entry in this table for each corresponding
entry in the cLWlanConfigTable. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
SEQUENCE OF |
|
|
|
|
CldlWlanLdapEntry |
|
cldlWlanLdapEntry |
1.3.6.1.4.1.9.9.614.1.1.2.1 |
Each entry represents a conceptual row in
cldlWlanLdapTable and represents the LDAP
configuration for a particular WLAN
identified by cLWlanIndex. |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
CldlWlanLdapEntry |
|
|
cldlWlanLdapPrimaryServerIndex |
1.3.6.1.4.1.9.9.614.1.1.2.1.1 |
The object represents the value that maps to the
primary LDAP server for this WLAN. A value of 0
indicates that the primary LDAP server is not
configured for this WLAN. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
Unsigned32 |
0..255 |
|
cldlWlanLdapSecondaryServerIndex |
1.3.6.1.4.1.9.9.614.1.1.2.1.2 |
The object represents the value that maps to the
secondary LDAP server for this WLAN. A value of 0
indicates that the primary LDAP server is not
configured for this WLAN. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
Unsigned32 |
0..255 |
|
cldlWlanLdapTertiaryServerIndex |
1.3.6.1.4.1.9.9.614.1.1.2.1.3 |
The object represents the value that maps to the
tertiary LDAP server for this WLAN. A value of 0
indicates that the primary LDAP server is not
configured for this WLAN. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
Unsigned32 |
0..255 |
|
ciscoLwappDot11LdapMIBCompliance |
1.3.6.1.4.1.9.9.614.2.1.1 |
The compliance statement for the SNMP entities that
implement the ciscoLwappDot11LdapMIB module. |
Status: deprecated |
Access: read-write |
MODULE-COMPLIANCE |
|
|
|
ciscoLwappDot11LdapMIBComplianceRev1 |
1.3.6.1.4.1.9.9.614.2.1.2 |
The compliance statement for the SNMP entities that
implement the ciscoLwappDot11LdapMIB module. |
Status: current |
Access: read-write |
MODULE-COMPLIANCE |
|
|
|
ciscoLwappDot11LdapMIBConfigGroup |
1.3.6.1.4.1.9.9.614.2.2.1 |
This collection of objects specifies the LDAP
configuration on the controller. |
Status: current |
Access: read-write |
OBJECT-GROUP |
|
|
|
ciscoLwappDot11LdapMIBConfigGroupSup1 |
1.3.6.1.4.1.9.9.614.2.2.2 |
This group of objects supplements the
ciscoLwappDot11LdapMIBConfigGroup,
to configure the information about the Controller's
authentication done with the LDAP server. |
Status: current |
Access: read-write |
OBJECT-GROUP |
|
|
|