Professional Documents
Culture Documents
01-02 Getting Started
01-02 Getting Started
01-02 Getting Started
2 Getting Started
Applicable Mode
This login mode is applicable to Fat APs and cloud APs.
NOTE
Connecting to an AP
● Through an Ethernet cable
You can connect a PC to any network port on an AP or a network port on a
switch reachable to the AP (IP addresses of the PC and AP on the same
network segment).
For a cloud AP or cloud central AP, the locally changed password is valid only before the device
registers with the iMaster NCE-Campus. After the device registers, the iMaster NCE-Campus
uniformly delivers an administrator password. The delivered password will overwrite the locally
configured one and is permanently valid.
1. Select a language.
The system supports English and Chinese. By default, the system uses the
same language as the browser.
2. Enter a user name and password.
Upon the first login to the web platform, you are prompted to set the user
name and password for subsequent login through the web platform or
STelnet, which will be delivered to managed Fit APs for logging in to them.
Additionally, the specified password is used as the password for console port
login. This password will be also used as the key for the offline management
VAP, allowing for wireless connections to the management SSID.
3. Click Login.
NOTE
If the login fails, the following possible causes are displayed at the same time:
● The user name or password is incorrect: indicates that the entered user name or
password is incorrect. Click OK to check the user name and password. If they are
incorrect, enter them again.
● The user does not have the right to log in or the login right expires: indicates that
the current online user has no permission to log in to the web platform. Contact
network administrators.
● The number of login users has reached the maximum value: indicates that the
number of online web users reaches the upper limit. By default, the maximum number
of online web users is 2.
● The number of times the password is incorrectly entered has reached the limit, and
the user is locked: indicates that the current login account is locked and will be
automatically unlocked after 5 minutes.
Step 3 Click Logout in the upper right corner to Log out of the web platform. The login
page is displayed.
Step 4 If you do not perform any operation within a specified duration (10 minutes by
default), you are logged out. To return to the login page, click OK.
----End
Ensure that you have obtained the local certificate abc_local.pem, CA certificate
abc_ca.pem, and RSA key pair privatekey.pem and uploaded them to the storage medium
of the device. If multiple CA certificates are available, perform the same operation to load
the certificates to the memory of the device. The key for generating privatekey.pem is
YsHsjx_202206.
2. Load the certificates and RSA key pair.
[HUAWEI] pki realm abc
[HUAWEI-pki-realm-abc] quit
If you select Enable, the file can be uploaded directly. If you select
Prompt, the message "An ActiveX control on this page might be unsafe
to interact with other parts of the page. Do you want to allow this
interaction?" is displayed. If you click Yes, the file can be uploaded.
c. Select Enable for Include local directory path when uploading files to
a server.
● After the device software version changes (for example, the software version
is upgraded or rolled back) or the HTTP/HTTPS port number is changed, clear
the browser cache before using the web platform. Otherwise, web pages may
be incorrectly displayed.
– When you log in to the web platform using Internet Explorer, choose
Tools > Internet Options > General, click Delete, select Temporary
Internet files and website files and Cookies and website data, and
click Delete to clear the browser cache.
– When you log in to the web platform using the Firefox browser, choose
Options > Privacy & Security and click Clear History. In the displayed
Clear Recent History dialog box, choose Everything from the Time
range to clear drop-down list. Select all options in the History and Data
areas, and click Clear Now to clear the browser cache.
– When you log in to the web platform using Google Chrome, choose
History from the menu bar of the browser, click Clear browsing data,
select Cookies and other site data and Cached images and files, and
click Clear browsing data to clear the browser cache.
● The web platform does not support back, forward, and refresh buttons on the
browser. If you click these buttons, the web platform may return to the login
page.
● The web platform provides the following administrator roles. Only users of
level 2 or higher have the management rights. Users of levels lower than 2
have only the visit right. It is recommended that you set the level of web
management users to level 2 or higher.
– Common administrator: user level 1
– Enterprise administrator: user level 2
– Guest administrator: user level 3
– Super administrator: user level 3–15
● The web platform allows for login only when the administrator level is at
least 1. If the server does not deliver the administrator level during remote
authentication, the administrator level is 0 by default. In this case, to enable
the administrator to log in to the web platform, run the admin-user privilege
level command in the service scheme view to upgrade the administrator level
in local authorization mode. If both authorization provided by the remote
server and local authorization are available, authorization provided by the
remote server takes precedence.
NOTE
The option layout in the browser settings provided in this topic is for reference only. The
actual option layout may vary depending on the browser version.
This section describes elements on the main page of the web platform and their
functions.
Layout
The main page of the web platform mainly includes the following areas, as shown
in Figure 2-4.
1 Button You can click these buttons to save settings, get help
information, and log out of the platform.
Button
Buttons locate in the upper right corner of the main page.
Button Function
Button Function
Alarm &
You can click to quick open Alarm & Event page.
Event
Create Displays the page for creating table entries and profiles.
To ensure that alarms can be reported to the web platform, you need to run
commands to enable the alarm function for a specific module. Note that an
interface status alarm is generated when the interface status changes, and you
need to enable the alarm function of the standard module both globally and on
the required interface.
Configuring the Device to Send Alarms to the Web Platform Through the CLI
Step 1 Run the system-view command to enter the system view.
● To enable the alarm function for all modules at a time, run the snmp-agent
trap enable command.
● To enable the alarm function for a specified module, run the snmp-agent
trap enable feature-name command.
By default, the alarm function for the interface status is disabled globally. After
the linkdown and linkup alarm functions of the ifnet module are enabled
globally, an alarm is generated when the interface status changes. When an
interface flaps, the interface frequently sends alarms to the web platform, which
increases the processing load of the web platform. In this case, you can disable the
alarm function on the specified interface. The procedure is as follows:
After the source interface is specified, the IP address of the source interface is used
as the source IP address for sending trap messages. This helps the web platform
identify the alarm source. The source interface that sends trap messages must
have an IP address configured. Otherwise, the command does not take effect. To
ensure device security, you are advised to configure the local loopback address as
the source address.
The source interface of trap messages specified on the wireless access point must
be the same as that specified for the wireless access point on the web platform.
Otherwise, the web platform cannot receive trap messages from the wireless
access point.
Step 4 Run the snmp-agent trap queue-size size command to configure the queue
length of trap messages sent to the target host.
By default, the queue length of trap messages sent to the target host is 100.
To ensure that trap messages can be received by the web platform, determine the
length of the trap queue by the number of generated trap messages. When the
wireless access point sends trap messages frequently, you can prolong the queue
length to reduce alarm loss.
Step 5 Run the snmp-agent trap life seconds command to set the TTL of trap messages.
By default, the TTL of trap messages is 120 seconds.
To ensure that trap messages can be received by the web platform, determine the
saving time by the number of generated trap messages. When the wireless access
point sends trap messages frequently, you can run this command to increase the
TTL of trap messages to reduce alarm loss.
----End