SMC Networks SMCWUSBS-N manual Profile

Page 31

Wireless Utility Configuration

network access control that uses a RADIUS server on the local network for user authentication. The 802.1X standard uses the Extensible Authentication Protocol (EAP) to pass user credentials (either digital certificates, usernames and passwords, or other) from the client to the RADIUS server.

Figure 3-6. Profile - 802.1X

EAP Method – Select an 802.1X authentication method.

-PEAP – Protected Extensible Authentication Protocol. PEAP transport securely sends authentication data by using tunneling between PEAP clients and an authentication server. PEAP can authenticate wireless LAN clients using only server-side certificates, thus simplifying the implementation and administration of a secure wireless LAN.

-TLS / Smart Card – Transport Layer Security. Provides for certificate-based and mutual authentication of the client and the network. It relies on client-side and server-side certificates to perform authentication and can be used to dynamically generate user-based and session-based WEP keys to secure subsequent communications between the WLAN client and the access point.

-TTLS – Tunneled Transport Layer Security. This security method provides for certificate-based, mutual authentication of the client and network through an encrypted channel. Unlike EAP-TLS, EAP-TTLS requires only server-side certificates.

-EAP-Fast– Flexible Authentication via Secure Tunneling. An authentication method developed by Cisco. Instead of using a certificate, mutual authentication is achieved by means of a PAC (Protected Access Credential) which can be managed dynamically by the authentication server. The PAC can be provisioned (distributed one time) to the client either manually or automatically. Manual provisioning is delivery to the client via disk or a secured network distribution method. Automatic provisioning is an in-band, over the air, distribution. For tunnel authentication, only "Generic Token Card" authentication is supported currently.

-MD5-Challenge– Message Digest Challenge. MD5 is an EAP authentication type that provides base-level EAP support. It provides for only one-way authentication - there is no mutual authentication of wireless client and the network.

3-7

Page 30 Page 32
Image 31
Page 30 Page 32
Contents SMCWUSBS-N Page Wireless USB Adapter User Guide Page Limited Warranty SMC Networks, Inc Mason Irvine, CA Federal Communication Commission Interference Statement CompliancesEC Conformance Declaration Iii Icelandic Networks for details on current restrictions for outdoor use Page Purpose About This GuidePage Contents Appendix a Troubleshooting Introduction FeaturesSystem Requirements Package ChecklistHardware Description WPS Button LED IndicatorsIntroduction EZ Connect N CD Homepage Driver and Utility InstallationDriver and Utility Installation EZ Connect N CD Installation Finished Driver and Utility Installation Accessing the EZ Connect Wireless Utility ConfigurationUtility Configuration Options Tools Description Wireless Utility ConfigurationProfile Profile System ConfigurationConfiguration Profile Authentication\Encryption Authentication Leap Profile Configuration Icons Icon Indications Description NetworkNetwork Status 10. Advanced Advanced11. Statistics StatisticsWMM WPS WPS Setup PIN Configuration About Radio SettingHelp Screen Display HelpConfiguration Network Topologies Network PlanningNetwork Planning Switching to AP Mode AP Mode ConfigurationAP Mode Configuration AP Mode Utility ConfigurationConfiguration ConfigurationAP Mode Configuration Configuration Security Setting Access Control Access ControlMAC Table MAC TableEvent Log Event LogStatistics About Information Display Help AP Mode Configuration USB Adapter Installation Problems Appendix a TroubleshootingNetwork Connection Problems Uninstalling the Utility Uninstalling the Utility Troubleshooting Operating Channels Appendix B SpecificationsSpecifications Page 149100040600E R01
Top Page Image Contents