04-15-2016 04:34 PM - edited 07-05-2021 04:54 AM
I have had several co-workers help me with my problem having a local 2504 being hacked and changing the admin password and the AP passwords. We believe they are somehow using the Recover-Password option. Is there a way to disable this on the device?
04-18-2016 07:38 AM
Hi Scott,
It has to be done through the console,means physical access to the device and I don't think you could disable this function.
If you don't have the WLC admin password,alternative possible ways would be through SNMP,Sniffing(telnet) and of course through a compromised admin pc
With routers and Switches, you could get almost full access quite easily if you have access to
assuming you do not have WCS or Prime
I suggest you to,disable snmpv1,2 and implement snmpv3 with new credentials,enable ssh and disable telnet,disable http and enable https(well you'd need appropriate certificates).disable management over the wireless,if you have that enabled.
You can disable remote management of APs through WLC if you like
You also can carefully add a CPU access list to limit the management of
Prabath
04-18-2016 07:38 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide