https://community.cisco.com/t5/wireless/securing-access-to-access-points-via-https/m-p/200430#M13477 <P>For a particular customer we have AP's placed outside the protected network, with clients establishing VPN connectivity to the protected network after they are associated with the AP. That works fine and provides compliance with the customer's security policy. </P><P></P><P>However, secure management of the AP's is a problem. While access to the AP's can be limited to console access, this is a hassle when they are located on towers, rooftops, etc. </P><P></P><P>When will https access be available for AP's?</P><P></P><P>What other options are there for locking down the AP's for management access? (I know we can authenticate administrative users, but the http stream is still unsecured.)</P><P></P><P>WSE is a kool, almost requirement for any reasonably large scale deployment for configuration and version management, however, it has the same issue - communication between the WSE and the AP is insecure.</P><P></P><P>Any other ideas for securing AP administrative access is greatly appreciated.</P><P></P><P>Jeff</P><P></P><P></P><P></P><P></P><P></P><P></P> Sun, 04 Jul 2021 15:39:54 GMT jeff.k 2021-07-04T15:39:54Z https://community.cisco.com/t5/wireless/securing-access-to-access-points-via-https/m-p/200430#M13477 <P>For a particular customer we have AP's placed outside the protected network, with clients establishing VPN connectivity to the protected network after they are associated with the AP. That works fine and provides compliance with the customer's security policy. </P><P></P><P>However, secure management of the AP's is a problem. While access to the AP's can be limited to console access, this is a hassle when they are located on towers, rooftops, etc. </P><P></P><P>When will https access be available for AP's?</P><P></P><P>What other options are there for locking down the AP's for management access? (I know we can authenticate administrative users, but the http stream is still unsecured.)</P><P></P><P>WSE is a kool, almost requirement for any reasonably large scale deployment for configuration and version management, however, it has the same issue - communication between the WSE and the AP is insecure.</P><P></P><P>Any other ideas for securing AP administrative access is greatly appreciated.</P><P></P><P>Jeff</P><P></P><P></P><P></P><P></P><P></P><P></P> Sun, 04 Jul 2021 15:39:54 GMT https://community.cisco.com/t5/wireless/securing-access-to-access-points-via-https/m-p/200430#M13477 jeff.k 2021-07-04T15:39:54Z https://community.cisco.com/t5/wireless/securing-access-to-access-points-via-https/m-p/200431#M13478 <HTML><HEAD></HEAD><BODY><P>Right now ,HTTP and Telnet are the only means of remotely managing the Cisco Aironet equipments. I am not very sure when it will be supported in future. For finding some information on configurations for securing AP administrative access,you can go through the following document.</P><P><A class="jive-link-custom" href="http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/csnt26/usergd26/ch3.htm" target="_blank">http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/csnt26/usergd26/ch3.htm</A></P></BODY></HTML> Fri, 02 May 2003 13:52:33 GMT https://community.cisco.com/t5/wireless/securing-access-to-access-points-via-https/m-p/200431#M13478 sbilgi 2003-05-02T13:52:33Z https://community.cisco.com/t5/wireless/securing-access-to-access-points-via-https/m-p/200432#M13479 <HTML><HEAD></HEAD><BODY><P>Newer APs can use SSH as a method of remote management.</P></BODY></HTML> Fri, 02 May 2003 19:28:44 GMT https://community.cisco.com/t5/wireless/securing-access-to-access-points-via-https/m-p/200432#M13479 bchauvn 2003-05-02T19:28:44Z