Epson IWE3200-H manual Features, User Authentication, Authorization, and Accounting

Page 7

1.2. Features

zUser Authentication, Authorization, and Accounting

„Web redirection. When an unauthenticated wireless user is trying to access a Web page, he/she is redirected to a logon page for entering the user name and password. Then, the user credential information is sent to a back-end RADIUS server for authentication.

‹Local pages or external pages. The IWE3200-Hcan be configured to use log-on,log-off,authentication success, and authentication failure pages, which are stored in itself or stored in an external Web server maintained by the WISP. The con- tents of local authentication pages can be customized.

‹Advertisement links. The log-offauthentication page can be configured to show a sequence of advertisement banners.

‹Unrestricted clients. Client computers with specific IP addresses or MAC ad- dresses can bypass the Web redirection-based access control.

‹Walled garden. Some specific URLs can be accessed without authentication. These URLs can be exploited by WISPs for advertisement purposes.

„IEEE 802.1x. If a wireless client computer supports IEEE 802.1x Port-Based Network Access Control, the user of the computer can be authenticated by the access Router and wireless data can be encrypted by 802.1x EAP authentication method combined with WEP encryption.

„RADIUS client. The IWE3200-Hcommunicates with a back-end RADIUS server for wireless user authentication, authorization, and accounting. Authentication methods in- cluding EAP-MD5, EAP-TLS/EAP-TTLS, PAP, and CHAP are supported.

‹Robustness. To enhance authentication integrity, the access Router can be config- ured to notify the RADIUS server after it reboots.

‹Showing authenticated users. Showing the status and statistics of every RA- DIUS-authenticated user. And an authenticated user can be terminated at any time for management purposes.

„Authentication session control. Several mechanisms are provided for the network administrator to control user authentication session lifetimes.

zIEEE 802.11b/g Compliant

„Wireless Operation

‹Access Point. The AP enables IEEE 802.11 Stations (STAs) to automatically asso- ciate with it via the standard IEEE 802.11 association process. In addition, the IEEE 802.11 WDS (Wireless Distribution System) technology can be used to manually es- tablish wireless links between two APs.

‹64-bit and 128-bit WEP (Wired Equivalent Privacy). For authentication and data encryption.

2

Page 6 Page 8
Image 7
Page 6 Page 8
Contents User’s Guide Federal Communication Commission Interference Statement TTE Compliance Statement Table of Contents Page Overview IntroductionUser Authentication, Authorization, and Accounting FeaturesIeee 802.11b/g Compliant „ Wireless Operation Internet Connection Sharing Network Security Management Firmware ToolsPage LED Definition Feature ComparisonSelecting a Power Supply Method First-Time Installation and ConfigurationMounting the IWE3200-H on a wall Mounting the IWE3200-H on a WallConnecting the Managing Computer and the IWE3200-H Preparing for ConfigurationChanging the TCP/IP Settings of the Managing Computer Configuring the IWE3200-HEntering the User Name and Password Home Setup Wizard Selecting an Operational ModeRouter with a PPPoE-Based DSL/Cable Connec- tion Setup Wizard Configuring TCP/IP SettingsRouter with a DHCP-Based DSL/Cable Connec- tion Router with a Multiple DSL/Cable Connections Router with a Static-IP DSL/Cable ConnectionSetup Wizard Configure Ieee 802.11 Set- tings Setup Wizard Dhcp Server SettingsWeb Redirection Configuring User Authentication SettingsTo setup the Local Authentication method Local Authentication SeverPage To setup the mini-POS Ticket Printer How to Setup the mini-POS Ticket PrinterUsage of control keypad Ieee Configuring Radius SettingsDeploying the IWE3200-H Configuring Ieee 802.11-Related Settings Setting up Client ComputersTo establish a wireless link to an AP Configuring TCP/IP-Related Settings Authentication success Menu Structure Using Web-Based Network ManagementAAA. Authentication, Authorization, and Accounting settings Home and Refresh Commands Save, Save & Restart, and Cancel CommandsIWE3200-H Authenticated Users Associated Wireless ClientsSeeing Status Session List Account TableSystem Specifying Operational ModeManaged LAN Devices Page Managing Firmware Changing PasswordBacking up and Restoring Configuration Set- tings by Http To upgrade firmware of the access Router by HttpTo restore configuration of the access Router by Http To back up configuration of the access Router by HttpUpgrading Firmware by Tftp TIP To upgrade firmware of the access Router by TftpTo back up configuration of the access Router by Tftp Backing up and Restoring Configuration Set- tings by TftpTo restore configuration of the IWE3200-H by Tftp Address Configuring TCP/IP Related SettingsSetting Time Zone Resetting Configuration to Factory DefaultsRouter with a PPPoE-Based DSL/Cable Con- nection Router with a Static-IP DSL/Cable Connection Router with Multiple DSL/Cable Connections DNSDNS Proxy To give an internal server a domain name NATStatic DNS Mappings BasicFunctionality To expose preset internal serversDhcp Server Virtual Server MappingsStatic Dhcp Mappings Load Balancing Load Balancing Policy SettingsZero Client Reconfiguration Configuring Wireless SettingsCommunication Wireless Distribution System To enable a WDS link Wireless Distribution System settingsSecurity Page Set the Access control type to exclusive MAC-Address-Based Access ControlTo delete an entry in the access control table Web-redirection mechanism Web RedirectionWeb redirection enabled with authentication Unrestricted Clients Default authentication failure warningTo specify a uncontrolled computer by MAC address Walled GardenTo add a link to the walled garden Radius Robustness Authentication Page Customization Authentication Session ControlTo specify an advertisement link Authentication success page customization settingsDdns Advertisement links settingsTo set a rule for packet filtering Configuring Advanced SettingsFilters and Firewall Packet FiltersFirewall VlanURL Filters UPnP ManagementTo block Http traffic to an unwelcome Web site System Log Snmp LAN Device ManagementTo specify a trap target To specify a LAN device to manage Example for LAN device managementDefault Settings DNS Proxy AuthenticationLED Definitions Rear PanelTCP/IP Settings Problems Appendix B TroubleshootingIWE3200-H does not respond to ping from the client computer Cannot access the Internet Wireless Settings ProblemsWireless Gateway/AP Browse Other ProblemsIWE3200-H Weight Configuration and ManagementPower Supply Dimensions without antennaIWE500-INJ Power Injector IWE810-POS mini-POS Ticket Printer
Top Page Image Contents