User's Manual

ManualsBrandsDell ManualsComputer equipmentPowerConnect W-6000

111

112

113

114

115

116

117

118

119

120

114 | Control Plane Security Dell Networking W-Series ArubaOS 6.4.x| User Guide

Command Description

show whitelist-db cpsec

[mac-address <macaddr>]

Shows detailed information for each AP in the whitelist,

including the AP’s MAC address, approved state,

certificate type, and description. Include the optional mac-

address <macaddr> parameters to view data for a

single entry.

show whitelist-db cpsec-status

The command gives aggregate information for the

numbers of APs in each of the following categories:

l Total entries

l Approved entries

l Unapproved entries

l Certified entries

l Certified hold entries

l Revoked entries

l Marked for deletion entries

Table 16: View the Campus AP Whitelist via the CLI

Modifying an AP in the Campus AP Whitelist

Use the following procedure to modify a campus AP entry’s certificate type, state, description, and revoked

status via the WebUI:

1. Access the master controller WebUI, and navigate to Configuration>AP Installation.

2. Click the Campus AP Whitelist tab.

3. Select the checkbox by the entry for the AP you want to edit, then click Modify.

If your campus AP whitelist is large and you cannot immediately locate the AP entry you want to edit, select

the Search link by the upper right corner of the whitelist. The Campus AP Whitelist tab displays several

fields that allow you to search for an AP with a specified MAC address, certificate type or state. Specify the

values that match the AP you want locate, then click Search . The whitelist displays a list of APs that match

your search criteria. Select the AP from this list, then click Modify.

4. Update the AP’s whitelist entry with the new settings. Some of the configurable parameters were available

when you first defined the entry, and are described in Table 13 above. When you modify an existing

whitelist entry, you can also configure the following additional parameters that were not configurable when

you first created the entry:

l Cert-type: The type of certificate used by the AP.

n switch-cert: The campus AP is using a certificate signed by the controller.

n factory-cert: The campus AP is using a factory-installed certificate.

l State: When you click the State drop-down list to modify this parameter, you may choose one of the

following options:

n approved-ready-for-cert: The AP has been approved state and is ready to receive a certificate.

n certified-factory-cert: The AP is certified and has a factory-installed certificate.

l Revoke: Click the Revoke checkbox to revoke an AP’s secure status. When you select this checkbox, you

can enter a brief comment explaining why the AP is being revoked.

5. Click Update to update the campus AP whitelist entry with its new settings.

To modify an entry in the campus AP whitelist via the command-line interface, issue the following commands:

whitelist-db cpsec modify mac-address

cert-type switch-cert|factory-cert

description <description>

mode disable|enable

revoke-text <revoke-text>