This MIB module provides network management  
support for Cisco IEEE 802.11 Wireless LAN
devices association and authentication.

    Advanced Encryption Standard.

    Access point.

    Association IDentifier for wireless stations.  

    IEEE 802.11 Basic Service Set.

    Basic SSID, a MAC address.

    Cisco Central Key Management.

    Code Mode/CBC Mac Protocol.

    Cisco per packet key hashing.

    Cisco MMH MIC.

    Cyclic Redundancy Check.  

    Data Traffic Indication Map

    Extensible Authentication Protocol.  

    Generic Routing Encapsulation

    Inter-Access-Point Protocol.  

    Integrity Check Value.  

    Multiple Basic SSID.

    Message Integrity Check.  

    Multi-Modal Hashing.

    Michael MIC.

    Radio Frequency.

    Radio Service Set Id.  

    SSID List Information Element

    IEEE 802.11 wireless station.

    WPA Temporal Key encryption.

    Virtual LAN.

    Wired Equivalent Privacy.

    Wi-Fi Protected Access.

    Wireless Provisioning System.


Access point    
    Transmitter/receiver (transceiver) device
    that commonly connects and transports data 
    between a wireless network and a wired network.

    The service used to establish access point
    or station mapping and enable STA invocation
    of the distribution system services.
    (Wireless clients attempt to connect to 
    access points.)

Basic Service Set
    The IEEE 802.11 BSS of an AP comprises of the 
    stations directly associating with the AP.

Backup VLAN
    Wireless clients found to be running outdated/
    unsupported virus software and not compliant to
    network admission control guidelines need to be 
    placed on different VLANs than the intended normal
    VLAN.  These VLANs on which the non-compliant
    clients are placed are termed as Backup VLANs.
    Backup VLANs are used to quarantine the 
    non-compliant clients running incorrect software
    till they upgrade their software to the correct

    Device that connects two or more segments 
    and reduces traffic by analyzing the 
    destination address, filtering the frame,
    and forwarding the frame to all connected 

Bridge AP 
    It is an AP that functions as a transparent 
    bridge between 2 wired LAN segments.  

Broadcast SSID 
    Clients can send out Broadcast SSID Probe 
    Requests to a nearby AP, and the AP will 
    broadcast its own SSID within its beacons
    to response to clients. Clients can use this 
    Broadcast SSID to associate and communicate 
    with the AP.  

Extensible Authentication Protocol
    EAP acts as the interface between a wireless 
    client and an authentication server, such as a 
    RADIUS server, to which the access point 
    communicates over the wired network.

IEEE 802.11    
    Standard to encourage interoperability among 
    wireless networking equipment.

IEEE 802.11b    
    High-rate wireless LAN standard for wireless 
    data transfer at up to 11 Mbps.

IEEE P802.11g 
    Higher Speed Physical Layer (PHY) Extension to 
    IEEE 802.11b, will boost wireless LAN speed to 54 
    Mbps by using OFDM (orthogonal frequency division 
    multiplexing).  The IEEE 802.11g specification is 
    backward compatible with the widely deployed IEEE 
    802.11b standard.

Inter-Access-Point Protocol 
    The IEEE 802.11 standard does not define how 
    access points track moving users or how to 
    negotiate a handoff from one access point to the
    next, a process referred to as roaming.  IAPP is
    a Cisco proprietary protocol to support roaming.  
    However, IAPP does not address how the wireless 
    system tracks users moving from one subnet to 

Independent network    
    Network that provides peer-to-peer connectivity 
    without relying on a complete network 

Information Element 
    Optional wireless network management data element
    in the beacons and probe responses generated by
    wireless stations.  These elements identify the
    extended capabilities supported by the stations.

Integrity Check Value
    The WEP ICV shall be a 32-bit value containing
    the 32-bit cyclic redundancy code designed for 
    verifying wireless data frame integrity.   

Message Integrity Check 
    A MIC can, optionally, be added to WEP-encrypted 
    802.11 frames.  MIC prevents attacks on encrypted 
    packets.  MIC, implemented on both the access point 
    and all associated client devices, adds a few bytes
    to each packet to make the packets tamper-proof.  

Multiple BSS-ID 
    An access point radio broadcasts and advertises
    multiple SSIDs in the beacons.  For clients'
    prospective, it is like there are multiple access
    points existing in the wireless network. 

Native VLAN ID
    A switch port and/or AP can be configured with a 
    'native VLAN ID'.  Untagged or priority-tagged 
    frames are implicitly associated with the native 
    VLAN ID.  The default native VLAN ID is '1' if 
    VLAN tagging is enabled.  The native VLAN ID is '0' 
    or 'no VLAN ID' if VLAN tagging is not enabled.

Non-Root Bridge 
    This wireless bridge does not connect to the main 
    wired LAN segment.  It connects to a remote wired 
    LAN segment and can associate with root bridges and 
    other non-root bridges that accept client 
    associations.  It also can accept associations from
    other non-root bridges, repeater access points, 
    and client devices.

Primary LAN
    In an AP, if the destinations of inbound unicast 
    frames are unknown, the frames are sent toward 
    the primary LAN defined on the device.

    Device that connects multiple segments, 
    listening to each and regenerating the signal
    on one to every other connected one; so that 
    the signal can travel further.

Repeater or Non-root Access Point    
    The repeater access point is not connected 
    to the wired LAN.  The Repeater is a wireless 
    LAN transceiver that transfers data between 
    a client and another access point, another 
    repeater, or between two bridges.  The repeater 
    is placed within radio range of an access point 
    connected to the wired LAN, another repeater, or 
    an non-root bridge to extend the range of the 

Radio Frequency 
    Radio wave and modulation process or operation.

Root Access Point    
    This access point connects clients to the main 
    wired LAN.

Root (Wireless) Bridge    
    This wireless bridge connects to the main wired 
    LAN.  It can communicate with non-root wireless 
    bridges, repeater access points, and client 
    devices but not with another wireless root 
    bridge.  Only one wireless bridge in a wireless 
    LAN can be set as the wireless root bridge.  

Service Set ID
    SSID is a unique identifier that APs and clients 
    use to identify with each other.  SSID is a simple 
    means of access control and is not for security.  
    The SSID can be any alphanumeric entry up to 32 

Virtual LAN
    VLAN defined in the IEEE 802.1Q VLAN standard 
    supports logically segmenting of LAN 
    infrastructure into different subnets or 
    workgroups so that packets are switched only 
    between ports within the same VLAN.  

    Each VLAN is identified by a 12-bit 'VLAN ID'.   
    A VLAN ID of '0' is used to indicate 
    'no VLAN ID'.  Valid VLAN IDs range from '1' to 
    '4095'.  VLAN of ID '4095' is the default VLAN 
    for Cisco VoIP Phones.

Wired Equivalent Privacy
    WEP is generally used to refer to 802.11 

Imported Objects

InetAddress, InetAddressTypeINET-ADDRESS-MIB
TruthValue, RowStatus, MacAddress, TEXTUAL-CONVENTIONSNMPv2-TC
ciscoDot11SsidSecMIBObjects .
cdot11SecSsidManagement .
cdot11SecAuxSsidTable .
cdot11SecAuxSsidEntry .
cdot11SecAuxSsid .
cdot11SecAuxSsidLoginPassword .
cdot11SecAuxSsidAuthKeyMgmt .
cdot11SecAuxSsidAuthKeyMgmtOpt .
cdot11SecAuxSsidRowStatus .
cdot11SecAuxSsidWirelessNetId .
cdot11SecSsidRedirectAddrType .
cdot11SecSsidRedirectDestAddr .
cdot11SecSsidRedirectFilter .
cdot11SecSsidInformationElement .
cdot11SecAuxSsidVlanName .
cdot11SecAuxSsidBroadcast .
cdot11SecAuxSsidMbssidBroadcast .
cdot11SecAuxSsidMbssidDtimPeriod .
cdot11SecAuxSsidInfraStruct .
cdot11SecAuxSsidProxyMobileIp .
cdot11SecAuxSsidMaxStations .
cdot11SecAuxSsidVlan .
cdot11SecAuxSsidWpaPsk .
cdot11SecAuxRadiusAccounting .
cdot11SecAuxSsidLoginUsername .
cdot11SecAuxSsidAuthTable .
cdot11SecAuxSsidAuthEntry .
cdot11SecAuxSsidAuthEnabled .
cdot11SecAuxSsidAuthPlusEap .
cdot11SecAuxSsidAuthPlusMac .
cdot11SecAuxSsidAuthEapMethod .
cdot11SecAuxSsidAuthMacMethod .
cdot11SecAuxSsidAuthMacAlternate .
cdot11SecInterfSsidTable .
cdot11SecInterfSsidEntry .
cdot11SecInterfSsidRowStatus .
cdot11MbssidMacAddrSupportTable .
cdot11MbssidMacAddrSupportEntry .
cdot11MbssidMacAddrIndex .
cdot11MbssidMacAddrSupported .
cdot11MbssidInterfaceTable .
cdot11MbssidInterfaceEntry .
cdot11MbssidIfMacAddress .
cdot11MbssidIfBroadcast .
cdot11SecSsidMaxBackupVlans .
cdot11SecSsidBackupVlanTable .
cdot11SecSsidBackupVlanEntry .
cdot11SecSsidBackupVlan .
cdot11SecSsidBackupVlanRowStatus .
cdot11SecAuthManagement .
cdot11SecLocalAuthServerEnabled .
cdot11SecStatistics .
cdot11SecVlanManagement .
cdot11SecVlanNameTable .
cdot11SecVlanNameEntry .
cdot11SecVlanName .
cdot11SecVlanNameId .
cdot11SecVlanNameRowStatus .
ciscoDot11SsidSecMIBConformance .
ciscoDot11SsidSecMIBCompliances .
ciscoDot11SsidSecMIBGroups .