Skip to end of metadata
Go to start of metadata


This document describes how you secure LANCOM access points that are managed by a WLC and provide Public Spot access, by preventing users who are logged on to the Public Spot from accessing the configurations of the managed access points.

    Extra protection of your access point is unnecessary if you have configured for access to your Public Spot via WLAN layer-3 tunneling (WLC tunnel ) . This is because only the WLAN controller is accessible via the WLC tunnel, and anybody accessing by web browser will always load the Public Spot login page.



1) In LANconfig, open the configuration for a LANCOM access point and navigate to the menu item Management -> Admin Access Settings -> Access rights -> From a WLAN interface.

2) For all of the protocols set the access rights to denied. Then write the configuration back to the access point.

3) Repeat steps 1 and 2 for all of your managed access points.

    Optionally you could upload the following script to the managed access points . This also sets the access rights from a WLAN interface to denied for all protocols.

    You can use the central script management of the LANCOM WLC to roll it out to all of your managed access points (see ).