No relevant resource is found in the selected language.
Enterprise
Worldwide
Huawei Global - English
Support Documentation
WLAN AC V200R010C00 Command Reference
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
display ap authentication-file status

display ap authentication-file status

Function

The display ap authentication-file status command displays certificate loading information about APs.

Format

display ap authentication-file status { ap-id ap-id | ap-name ap-name | ap-mac ap-mac | branch-group branch-group [succeed | fail ] | all [ succeed | fail ] }

Parameters

Parameter

Description

Value
ap-id ap-id

Displays certificate loading information about the AP with a specified ID.

The AP ID must exist.
ap-name ap-name

Displays certificate loading information about the AP with a specified name.

The AP name must exist.
ap-mac ap-mac

Displays certificate loading information about the AP with a specified MAC address.

The AP's MAC address must exist.
branch-group branch-group

Displays certificate loading information about APs in a specified branch AP group.

The branch AP group must exist.
branch-group branch-group succeed

Displays information about APs in a specified branch AP group on which certificates are successfully loaded.

The branch AP group must exist.
branch-group branch-group fail

Displays information about APs in a specified branch AP group on which certificates fail to be loaded.

The branch AP group must exist.
all

Displays certificate loading information about all APs.

-
all succeed

Displays information about all APs on which certificates are successfully loaded.

-
all fail

Displays information about all APs on which certificates fail to be loaded.

-

Views

User view

Default Level

1: Monitoring level

Usage Guidelines

Usage Scenario

In WAN 802.1X authentication escape scenarios, after CAPWAP tunnels between the AC and APs are disconnected, you can initiate 802.1X authentication on the built-in local RADIUS servers of the APs to implement WAN escape. The built-in RADIUS servers of APs support the following EAP authentication protocols: EAP-TLS, EAP-PEAP, and EAP-TTLS. If EAP-TLS is selected, configure a CA certificate, local certificate of the local RADIUS server, and private key of the local RADIUS server.You can run this command to check certificate loading information about APs.

Example

# Display certificate loading information about all APs.

<AC6605> display ap authentication-file status all
---------------------------------------------------------------------- 
ID      AP MAC            Name       Branch Group     Status      
----------------------------------------------------------------------
1       0000-0000-0007    123        branchgroup1     unload
2       0000-0000-0008    234        branchgroup1     normal         
4       0000-0000-0010    345        branchgroup3     loadfail(write flash error)
5       0000-0000-0011    456        branchgroup4     NA
----------------------------------------------------------------------
Total: 4
Table 23-1  Description of the display ap authentication-file status command output

Item

Description
ID

AP ID.
AP MAC

MAC address of an AP.
Name

AP name.
Branch Group

Branch AP group.
Status

Certificate loading status on the AP.

For the causes of AP certificate loading status and handling suggestions, see Table 23-2.
Table 23-2  Causes of AP certificate loading status and handling suggestions

Status

Cause

Handling Suggestion
NA

No certificate file needs to be loaded.

No action is required.
normal

A certificate file is successfully loaded.

No action is required.
unload

A certificate file is updated on the AC but has not been delivered to the AP.

Load the certificate file.
loading

A certificate file is being loaded.

No action is required.
loadfail(user canceled)

Certificate file loading is canceled.

Re-load the certificate file.
loadfail(write flash error)

The certificate file fails to be written to the flash memory of the AP.

Ensure that the storage space of the AP is sufficient and reload the certificate file.
loadfail(file not exist)

The certificate file does not exist on the AC.

Load the certificate file to the AC and then reload the file to the AP.
loadfail(timeout)

Certificate file transmission times out.

Re-load the certificate file.
loadfail(exception)

An exception occurs during certificate file transmission.

Reload the certificate or contact Huawei engineers.
loadfail(file illegal)

The certificate file is invalid.

Load a valid certificate file.
Translation
简体中文
Download
Updated: 2021-02-27

Document ID: EDOC1100064351

Views: 3199969

Downloads: 595

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Share
Previous Next
Huawei e+ App Huawei e+

Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

You are going to visit :