Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document.
Note: Even the most advanced machine translation cannot match the quality of professional translators.
Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Configuring WLAN Services
Context
Currently, in the centralized gateway solution, WLAN services need to be configured on the web system of the WAC (border node), including authentication profile resources (which cannot be shared because the authentication control points for wired and wireless users are different).
Assume that there are three wireless SSIDs, one each for employees, dumb terminals, and guests, and the RADIUS server and Portal server use the built-in servers of iMaster NCE-Campus. Perform the basic WLAN service settings below.
Plan Example
Table 4-10 Data plan for configuring wireless access services
VAP Profile |
SSID Profile |
Security Profile |
Authentication Profile |
Wireless Service VLAN |
|---|---|---|---|---|
area1-rd-employee |
employee
|
employee
|
employee |
2002 |
area1-rd-dumb |
dumb
|
default |
dumb |
2004 |
area1-guest |
guest
|
default |
guest |
2009 |
Procedure
- Create an AP group and add APs to the AP group.
- Choose Configuration > Wireless Services > AP Group. On the AP Group tab page, click Create. Set AP group parameters and click OK.
- On the AP Group tab page, click Member List in the default column, select the corresponding AP, and click Move AP. On the displayed page, select area-1 and click OK to add the AP to area-1.
- Choose Configuration > Wireless Services > AP Group. On the AP Group tab page, click Create. Set AP group parameters and click OK.
- Configure wireless service parameters for AP group Area-1.
- Configure wireless service access profiles for R&D employees.
- Choose Configuration > Wireless Services > AP Group. The AP Group tab page is displayed. Click the AP group Area-1 and click VAP Configuration. On the VAP Profile List tab page, click Create and create the VAP profile area1-rd-employee for R&D employees.
- Click
before VAP Configuration to expand the VAP profile list. Then click
before area1-rd-employee to expand the referenced profile list of the VAP profile.
- Click SSID Profile. On the SSID Profile tab page, click Create to create an SSID profile named employee. On the profile parameter configuration page that is displayed, set SSID to campus-employee and click Apply.
- Click Security Profile. On the Security Profile tab page, click Create to create a security profile named employee. On the profile parameter configuration page, set Security policy to WPA and Authentication type to Dot1x. Then click Apply.
- Click Authentication Profile. On the Authentication Profile tab page on the right, select the authentication profile employee and click Apply.
- Choose VAP Configuration > area1-rd-employee to access the VAP profile area1-rd-employee. Set the service VLAN ID to VLAN 2002 and set other access parameters, and click Apply.
- Choose Configuration > Wireless Services > AP Group. The AP Group tab page is displayed. Click the AP group Area-1 and click VAP Configuration. On the VAP Profile List tab page, click Create and create the VAP profile area1-rd-employee for R&D employees.
- Repeat Steps a to f to configure other wireless service access profiles.
- Configure wireless service access profiles for R&D employees.
before VAP Configuration to expand the VAP profile list. Then click 
before area1-rd-employee to expand the referenced profile list of the VAP profile.
