LevelOne WAP-0005 user manual UAM authentication Internal, UAM authentication External

Page 26

Setup

UAM

UAM (Universal Access Method) is intended for use in Internet cafes, Hot Spots, and other sites where the Access Point is used to provide Internet Access.

If enabled, then HTTP (TCP, port 80) connections are checked. (UAM only works on HTTP connections; all other traffic is ignored.) If the user has not been authenticated, Internet access is blocked, and the user is re-directed to another web page. Typically, this web page is on your Web server, and explains how to pay and obtain Internet access.

To use UAM, you need a Radius Server for Authentication. The "Radius Server Setup" must be completed before you can use UAM. The required setup depends on whether you are using “Internal” or “External” authentication.

Internal authentication uses the web page built into the Wireless Access Point.

External authentication uses a web page on your Web server. Generally, you should use External authentication, as this allows you to provide relevant and helpful information to users.

UAM authentication - Internal

1.Ensure the Wireless Access Point can login to your Radius Server.

Add a RADIUS client on RADIUS server, using the IP address or name of the Wire- less Access Point, and the same shared key as entered on the Wireless Access Point.

Ensure the Wireless Access Point has the correct address, port number, and shared key for login to your Radius Server. These parameters are entered either on the Secu- rity page, or the UAM sub-screen, depending on the security method used.

2.Add users on your RADIUS server as required, and allow access by these users.

3.Client PCs must have the correct Wireless settings in order to associate with the Wireles Access Point.

4.When an associated client tries to use HTTP (TCP, port 80) connections, they will be re- directed to a user login page.

5.The client (user) must then enter the user name and password, as defined on the Radius Server. (You must provide some system to let users know the correct name and password to use.)

6.If the user name and password is correct, Internet access is allowed. Otherwise, the user remains on the login page.

Clients which pass the authentication are listed as “xx:xx:xx:xx:xx:xx WEB authen- tication” in the log table, and station status would show as “Authenticated” on the station list table.

If a client fails authentication, “xx:xx:xx:xx:xx:xx WEB authentication failed” shown in the log, and station status is shown as “authenticating” on the station list table.

UAM authentication – External

1.Ensure the Wireless Access Point can login to your Radius Server.

Add a RADIUS client on RADIUS server, using the IP address or name of the Wire- less Access Point, and the same shared key as entered on the Wireless Access Point.

Ensure the Wireless Access Point has the correct address, port number, and shared key for login to your Radius Server. These parameters are entered either on the Secu- rity page, or the UAM sub-screen, depending on the security method used.

2.On your Web Server, create a suitable login page. The login page must have a link or button to allow the user to input their user name and password on the uam- logon.htm page on the Access Point.

23

Page 25 Page 27
Image 26
Page 25 Page 27
Contents LevelOne Table of Contents Overview Wireless LAN Terminology Wireless Access PointOverview General Problems Overview Command ReferenceFeatures of your Wireless Access Point IntroductionSecurity Features Advanced FeaturesPackage Contents Physical DetailsRear Panel To Clear All Data and restore the factory default valuesPower port EthernetRequirements InstallationProcedure RequirementsUsing PoE Power over Ethernet Using PoE Power over EthernetInstallation Access Point SetupSetup using the Windows Utility OverviewWireless Access Points ButtonsSetup Procedure Wireless Security Wireless SecuritySetup using a Web Browser Password DialogManagement System Access Control WirelessIf you cant connect Status Screen Identification System ScreenData System Screen IP AddressTelnet Access ControlData Access Control Screen Buttons Trusted Wireless StationsData Trusted Wireless Stations Edit Select AllSelect None AddData Basic Settings Screen Wireless ScreensBasic Settings Screen Wireless ModeCurrent Channel Remote APChannel No Broadcast Ssid Security Settings Using MAC authentication Security Settings NoneRadius MAC Authentication Radius-based MAC authentication Screen Data Radius-based MAC Authentication ScreenUAM authentication Internal UAM authentication ExternalData UAM Screen AuthenticationUAM Screen InternalSecurity Settings WEP Data WEP ScreenPassphrase Key InputKey Value Radius MACNetwork Key Security Settings WPA-PSKData WPA-PSK Screen WPA EncryptionUpdate Group key when any membership terminates Pairwise Key UpdateGroup Key Update Key LifetimeWPA-802.1x Security Settings WPA-802.1xData WPA-802.1x Screen When any member UpdateUpdate Group key Update Report802.1x Security SettingsData 802.1x Screen Radius Server AddressKey Exchange Update Report everyWEP Key Size Basic Rate Advanced SettingsData Advanced Settings Screen OptionsParameters 802.11b 2.4GHz onlyMode PC and Server ConfigurationUsing WEP SecurityUsing WPA-PSK Radius Server Configuration Using WPA-802.1xWireless Station Configuration 802.1xServices Installation 802.1x Server Setup Windows 2000 ServerWindows 2000 Domain Controller Setup Components Screen Dhcp server configuration CA ScreenIP Address Screen Certificate Authority Setup Certificate Authority ScreenActive Directory Screen Group Policy Screen Internet Authentication Service Radius Setup Service ScreenAuthentication Screen Remote Access Login for Users Dial-in Screen802.1x Client Setup on Windows XP Client Certificate SetupWireless CA Screen Identifying Information Screen 802.1x Authentication Setup Encryption SettingsWireless Networks Screen Enabling EncryptionProperties Screen Using 802.1x Mode without WPA Status Screen Operation and StatusOperation Data Status Screen Access PointWireless SecurityData Activity LogData Activity Log Station List Station ListData Station List Screen Data Statistics Screen 4GHz WirelessStatistics Screen System Up TimeControl Data Admin Login Screen Other Settings & FeaturesAdmin Login Screen Password Dialog Backup Config FileData Config File Screen RestoreManagers Data Snmp ScreenGeneral TrapsFirmware Upgrade To perform the Firmware UpgradeHardware Specifications SpecificationsWireless Access Point Wireless SpecificationsSoftware Specifications Feature DetailsMessage Log FCC Statement FCC Radiation Exposure StatementTo Find the Access Points IP Address TroubleshootingGeneral Problems Appendix B Troubleshooting Normally, no changes need to be made Checking TCP/IP Settings Windows 9x/MEWindows TCP/IP Using Dhcp Using Specify an IP AddressChecking TCP/IP Settings Windows NT4.0 Windows NT4.0 TCP/IPObtain an IP address from a Dhcp Server Checking TCP/IP Settings Windows Network Configuration WinUsing a fixed IP Address Use the following IP Address Checking TCP/IP Settings Windows XP Network Configuration Windows XPUsing Dhcp Ad-hoc Mode About Wireless LANsWireless LAN Terminology Infrastructure ModeChannels WPA-802.1x802.1x Using the CLI Serial Port Command Line InterfaceUsing the CLI Telnet Command Reference CLI Port SettingsAppendix E Command Line Interface Wireless Access Point User Guide Appendix E Command Line Interface Wireless Access Point User Guide Set Extended Channel Mode Wireless Access Point User Guide Set wep -- Set Encryption Mode
Related manuals
Manual 108 pages 28.18 Kb
Top Page Image Contents