SMC Networks SMCWHSG44-G manual Ieee 802.1x/RADIUS Settings

Page 69

stored in the computer hard disk or a smart card for authentication. And after a successful EAP-TLS authentication, a session key is automatically generated for wireless packets encryption between the wireless client com- puter and its associated wireless access point. To sum up, EAP-MD5 sup- ports only user authentication, while EAP-TLS supports user authentication as well as dynamic encryption key distribution.

Fig. 80. IEEE 802.1x and RADIUS.

The SMCWHSG44-G supports IEEE 802.1x and can be configured to commu- nicate with two RA-DIUS servers. When the primary RADIUS server fails to respond, the SMCWHSG44-G will try to communicate with the secondary RADIUS server. You can specify the length of timeout and the number of retries before communicating with the secondary RADIUS server after failing to commu-nicate with the primary RADIUS server.

An IEEE 802.1x-capable wireless access point and its RADIUS server(s) share a secret key so that they can authenticate each other. In addition to its IP address, a wireless access point can identify itself by an NAS (Network Access Server) identifier. Each IEEE 802.1x-capable wireless access point must have a unique NAS identifier.

Fig. 81. IEEE 802.1x/RADIUS Settings.

68

Page 68 Page 70
Image 69
Page 68 Page 70
Contents SMCWHSG44-G Page Trademarks CopyrightLimited Warranty Page Federal Communication Commission Interference Statement FCC Radiation Exposure StatementIndustry Canada Class B EC Conformance Declaration Power Cord Safety Safety ComplianceSchuko Page Wichtige Sicherheitshinweise Germany Schuko Page Table of Contents System Page SMCWHSG44-G SMCWHS-POS Introduction Overview Features User Authentication, Authorization, and Accounting AAAIeee 802.11b/g Compliant Wireless Operation Internet Connection Sharing Network Security Firmware Tools Package Checklist LED DefinitionRear Panel POE enabled LAN Port Position Selecting a Power Supply MethodMounting the SMCWHSG44-G on a Wall Changing the TCP/IP Settings of the Managing Computer Preparing for ConfigurationEntering the Password Configuring the SMCWHSG44-GHome Setup Wizard Selecting an Operational ModePage Router with a Static-IP DSL/Cable Connection Router with a DHCP-Based DSL/Cable ConnectionRouter with Multiple DSL/Cable Connections Setup Wizard Configuring Ieee 802.11 Settings Setup Wizard Configuring Dhcp Server SettingsWeb Redirection Configuring User Authentication SettingsAuthentication protocol Local Authentication SeverPage Account Table List How to Setup the Mini-POS Ticket PrinterIeee Radius Settings Allowable Authentication Modes Configuring Radius SettingsDeploying the SMCWHSG44-G Setting up Client ComputersConfiguring Ieee 802.11-Related Settings To establish a wireless link to an APConfiguring TCP/IP-Related Settings Page Authentication Success Overview Menu StructureLogout Page Save, Save & Restart, and Cancel Commands Home and Refresh CommandsStatus Associated Wireless Clients Account Table Authenticated UsersManaged LAN Devices Session ListSystem Specifying Operational ModeManaging Firmware Changing PasswordBacking up and Restoring Configuration Settings by Http To upgrade firmware of the SMCWHSG44-G by HttpUpgrading Firmware by Http Upgrading Firmware by Tftp To upgrade firmware of the SMCWHSG44-G by TftpTo back up configuration of the SMCWHSG44-G by Tftp Backing up and Restoring Configuration Settings by TftpTo restore configuration of the SMCWHSG44-G by Tftp Resetting Configuration to Factory Defaults Configuring TCP/IP Related Settings AddressTime Zone Router with a DHCP-Based DSL/Cable Connection Router with a Static-IP DSL/Cable Connection DNS DNS Proxy NAT Basic Host Address ResolutionTo expose preset internal servers Virtual Server MappingsDhcp Server Ii. Static Dhcp Mappings Dhcp Server BasicDhcp Relay Load BalancingTo always assign an IP address to a specific Dhcp client Configuring Ieee 802.11-Related Settings Wireless Basic Zero Client ReconfigurationWireless Distribution System To enable a WDS link Wireless Distribution System SettingsNetwork Topology Containing a Loop SecurityPage MAC-Address-Based Access Control Settings MAC-Address-Based Access ControlTo deny wireless clients access to the wireless network To grant wireless clients access to the wireless networkIeee 802.1x/RADIUS Ieee 802.1x/RADIUS Settings Configuring Authentication Settings AAA Basic Default Authentication Failure Warning To specify an uncontrolled computer by MAC address Unrestricted ClientsRadius Basic Walled GardenRobustness Log-On Page Customization Settings Authentication Session ControlAuthentication Success Page Customization Settings Ddns Advertisement Links SettingsIcmp TCP UDP Vlan FirewallTo set a rule for packet filtering URL Filters Management BasicTo block Http traffic to an unwelcome Web site System Log UPnPSnmp Access RulesLAN Device Management Unrestricted Host MAC Address SettingsTo specify a LAN device to manage Example for LAN Device ManagementAppendix a Default SettingsLED Definitions TCP/IP Setting Problems Page Other Problems Wireless Settings ProblemsAppendix C Distances and Data Rates Transmission output Power Network ConfigurationConfiguration and Management StandardsKeypad Authentication Access PointBasic Service Set BSS Ad HocExtended Service Set ESS Dynamic Host Configuration Protocol DhcpExtensible Authentication Protocol EAP EncryptionPower over Ethernet PoE Inter Access Point Protocol IappInfrastructure Local Area Network LANWireless Distribution System WDS Service Set Identifier SsidWi-Fi Protected Access Session KeyWPA Pre-shared Key PSK Wired Equivalent Privacy WEPPage For Technical SUPPORT, Call
Top Page Image Contents