Operation Manual

ManualsBrandsTrapeze smart mobile ManualsSoftwareMobility System Software 7.3

251

252

253

254

255

256

257

258

259

260

MP Access Point Commands

Mobility System Software Command Reference Guide

Version 7.3

12 – 256

Syntax

set ap security secsetting {require | optional | none}

Defaults

The default setting is optional.

Access

Enabled.

History

Usage

This parameter applies to all Distributed MPs managed by the MX. If you change the

setting to required, the MX requires Distributed MPs to have encryption keys. The MX also

requires their fingerprints to be verified in MSS. When MP security is required, an MP can

establish a management session with the MX only if its fingerprint has been verified by you in

MSS.

A change to MP security support does not affect management sessions that are already

established. To apply the new setting to an MP, restart the MP.

Examples

The following command configures an MX to require Distributed MPs to have

encryption keys:

MX# set ap security require

See Also

● set ap fingerprint on page 12-242

● show ap config radio on page 12-328

● show ap status on page 12-340

set ap tunnel-affinity

The MP-MP tunneling feature extends the MX-MX tunnel feature to allow MPs with

local-switching enabled to create and terminate client VLAN tunnels. Therefore, a VLAN is not

required on every MP.

Defaults

None

Access

Enabled

Note:

The maximum transmission unit (MTU) for encrypted MP management

traffic is 1498 bytes, whereas the MTU for unencrypted management traffic

is 1474 bytes. Make sure the devices in the intermediate network between

the MX switch and Distributed MP can support the higher MTU.

security

secsetting

Name of the security setting.

require Requires all Distributed MPs to have encryption keys that have been verified

in the CLI by an administrator. If an MP does not have an encryption key or

the key has not been verified, the MX does not establish a management

session with the MP.

optional Allows MPs to be managed by the switch even if they do not have encryption

keys or their keys have not been verified by an administrator. Encryption is

used for MPs that support it.

none Encryption is not used, even for MPs that support it.

Version 4.0 Command introduced.

Version 6.0 Option dap removed.