Lantronix XN manual Wlan Profile WPA and WPA2/IEEE802.11i Settings, Key, Ieee

Page 43

6: Network Settings

<configgroup name=”wlan profile” instance=”profile name”>

and

<configitem name=”security”>

WLAN Profile WPA and WPA2/IEEE802.11i Settings

WPA and WPA2/IEEE802.11i security suites are available for Infrastructure mode only.

WPA is a security standard specified by the WiFi Alliance and is a close derivative of an early draft of the IEEE802.11i specification. WEP was becoming vulnerable and finalizing the IEEE802.11i standard was still far away. WPA2 is WiFi’s subset of the broad IEEE802.11i standard to enforce better interoperability. The PremierWave XN is compliant with both WPA2 and IEEE802.11i.

Table 6-12 WLAN Profile WPA and WPA2/IEEE802.11i Settings

WLAN Profile WPA

Description

& WPA2 Settings

 

Authentication

Select the authentication method to be used.

 

PSK = Pre-Shared Key. The same key needs to be configured on both sides of

 

the connection. (On the PremierWave XN and on the Access Point.)

 

IEEE 802.1X = This authentication method communicates with a RADIUS

 

authentication server that is part of the network. The RADIUS server will match

 

the credentials sent by the PremierWave XN with an internal database.

 

 

Key

64 hexadecimal digits (32 bytes.)

 

 

IEEE 802.1X

Select the protocol to use to authenticate the WLAN client.

 

LEAP = Lightweight Extensible Authentication Protocol. A derivative of the

 

original Cisco LEAP, which was a predecessor of 802.1X. Real Cisco LEAP

 

uses a special MAC layer authentication (called Network EAP) and cannot work

 

with WPA/WPA2. The PremierWave XN uses a more generic version to be

 

compatible with other major brand WiFi equipment. The authentication back end

 

is the same.

 

EAP-TLS = Extensible Authentication Protocol - Transport Layer Security. Uses

 

the latest incarnation of the Secure Sockets Layer (SSL) standard and is the

 

most secure because it requires authentication certificates on both the network

 

side and the PremierWave XN side.

 

EAP-TTLS = Extensible Authentication Protocol - Tunneled Transport Layer

 

Security.

 

PEAP = Protected Extensible Authentication Protocol.

 

EAP-TTLSand PEAP have been developed to avoid the requirement of

 

certificates on the client side (PremierWave XN), which makes deployment more

 

cumbersome. Both make use of EAP-TLSto authenticate the server (network)

 

side and establish an encrypted tunnel. This is called the outer-authentication.

 

Then a conventional authentication method (MD5, MSCHAP, etc.) is used

 

through the tunnel to authenticate the PremierWave XN. This is called inner

 

authentication.

 

EAP-TTLSand PEAP have been developed by different consortia and vary in

 

details, of which the most visible is the supported list of inner authentications.

 

Note: When using EAP-TLS, EAP-TTLSor PEAP authority, at least one authority

 

certificate will have to be installed in the SSL configuration that is able to verify the

 

RADIUS server’s certificate. In case of EAP-TLS, also a certificate and matching

 

private key need to be configured to authenticate the PremierWave XN to the

 

RADIUS server. For more information about SSL certificates see TLS (SSL) on

 

page 92.

 

 

PremierWave XN User Guide

43

Image 43
Contents XN User Guide Disclaimer WarrantyCopyright & Trademark ContactsUsing DeviceInstaller Table of ContentsUsing This Guide Installation of PremierWave XNNetwork Settings Configuration Using Web ManagerLine and Tunnel Settings Services Settings Terminal and Host SettingsSecurity Settings Maintenance and Diagnostics Settings Bridging Advanced SettingsSecurity in Detail 103 VIP SettingsUpdating Firmware Branding the PremierWave XNPremierWave XN Product Label List of FiguresList of Tables PremierWave XN User Guide Chapter Description Using This GuidePurpose and Audience Summary of ChaptersDocument Description Additional DocumentationProtocol Support Key FeaturesIntroduction ApplicationsHardware Address Troubleshooting CapabilitiesConfiguration Methods Addresses and Port NumbersIP Address Product Information LabelPort Numbers Hardware Components Installation of PremierWave XNPackage Contents User-Supplied ItemsButton pin hole Signal Strength LEDsSerial PowerLeft LED Right LEDWlan Signal Strength Indicator at 2.4 GHz Wlan Signal Strength Indicator at 5 GHzWPS Status Indicator Fault Conditions Blink Pattern 10 Diagnostic LED IndicationsBack Panel To Start WPS Wi-Fi Protected Setup WPSTo Show WPS Status Installing the PremierWave XNTo Cancel WPS Perform the following steps to install your device13 PremierWave XN Dimensions in Millimeters mm IP address was obtained dynamically Using DeviceInstallerAccessing PremierWave XN Using DeviceInstaller Device Detail SummaryCurrent Settings Description Accessing Web Manager Configuration Using Web ManagerTo access Web Manager, perform the following steps Device Status Help Area Web Manager ComponentsWeb Manager Description See Navigating Web ManagerSyslog Protocol StackQuery Port SmartRoamNetwork Interface Description Settings Network SettingsNetwork Interface Settings Network Interface SettingsTo Configure Network Interface Settings To View Network Interface Status Network Link SettingsNetwork 1 eth0 Link Settings Network 1 Ethernet eth0 Description Link SettingsNetwork 2 Wlan wlan0 Description Link Settings Network 2 wlan0 Link SettingsNetwork 2 Link Scan Results on WebManager To Configure Network Link SettingsWlan Link Status and Scan Commands Network 2 Link ScanNetwork 2 Link Status To View Wlan Link Scan and Status InformationWlan Link Status Description Creating, Deleting or Enabling Wlan Profiles To Configure Wlan ProfilesWlan Profile Basic Settings Description Wlan ProfilesWlan Profile Basic Settings To Configure Wlan Profile Basic SettingsWlan Profile Advanced Settings To Configure Wlan Profile Advanced SettingsWlan Profile Advanced Settings Description Wlan Profile Description Security Settings Wlan Profile Security SettingsTo Configure Wlan Profile Security Settings 10 Wlan Profile Security SettingsWlan Profile WEP Settings Description Wlan Profile WEP SettingsTo Configure Wlan Profile WEP Settings 11 Additional WEP Settings for Wlan ProfileKey Wlan Profile WPA and WPA2/IEEE802.11i Settings12 Wlan Profile WPA and WPA2/IEEE802.11i Settings Wlan Profile WPA Description WPA2 SettingsTo Configure Wlan Profile WPA and WPA/IEEE802.11i Settings 13 Wlan Quick Connect To Configure Wlan Quick ConnectWlan Quick Connect Description Settings Wlan Quick ConnectLine Settings Description Line and Tunnel SettingsLine Settings Line Configuration SettingsLine Command Mode Settings To Configure Line SettingsLine Command Description Mode Settings Line Settings to modify these settings Tunnel SettingsSerial Settings Tunnel Serial Description Settings Line SettingsTunnel Serial Description Settings To Configure Tunnel Serial SettingsPacking Mode Tunnel Packing Mode SettingsTrailing Character To Configure Tunnel Packing Mode SettingsAccept Mode Send CharacterTunnel Accept Mode Description Settings Tunnel Accept Mode SettingsEmail on Connect To Configure Tunnel Accept Mode SettingsConnect Mode Block NetworkFlush Serial Data Tunnel Connect Mode SettingsTunnel Connect Mode Description Settings Reconnect TimerTunnel Disconnect Description Mode Settings To Configure Tunnel Connect Mode SettingsDisconnect Mode Tunnel Disconnect Mode SettingsModem Emulation To Configure Tunnel Disconnect Mode SettingsTunnel Modem Emulation Settings Tunnel Modem Description Emulation SettingsConnect String To Configure Tunnel Modem Emulation SettingsStatistics To View Tunnel StatisticsTerminal Settings Terminal and Host SettingsTerminal on Network and Line Settings Host Configuration Host ConfigurationTo Configure the Terminal Network Connection To Configure the Terminal Line ConnectionRemote Port To Configure Host SettingsSSH Username Remote AddressDNS Settings Services SettingsDNS Settings To View or Configure DNS SettingsFTP Settings FTP SettingsSyslog Settings To Configure FTP SettingsHttp Settings Description Http SettingsTo View or Configure Syslog Settings Http SettingsTo Configure Http Settings RSS Settings RSS SettingsTo Configure Http Authentication Http Authentication SettingsTo Configure RSS Settings SSH Server Host Keys Security SettingsSSH Settings RSS Settings DescriptionSSH Server Authorized Users SSH Client Known HostsSSH Client Known Hosts SSH Client Users Remote CommandSSH Client Users SSH Server Authorized UsersTo Configure SSH Settings SSL SettingsTo Create a New Credential Certificate and Key Generation SettingsCertificate Generation Description Settings Certificate and Key GenerationUpload Description Certificate Settings Certificate Upload SettingsTo Configure an Existing SSL Credential Upload Certificate SettingsTrusted Authorities Trusted Authority SettingsTo Upload an Authority Certificate File Display Maintenance and Diagnostics SettingsFilesystem Settings File Display SettingsFile Transfer File Modification SettingsFile Transfer Settings File ModificationIP Network Stack Settings Protocol Stack SettingsIP Settings To Configure IP Network Stack SettingsTo Configure ARP Network Stack Settings Icmp SettingsTo Configure Icmp Network Stack Settings ARP SettingsQuery Port Settings Smtp SettingsTo Configure Smtp Network Stack Settings To Configure Query Port SettingsTo View the List of IP Sockets DiagnosticsHardware To View Hardware Information IP SocketsTraceroute Ping Settings10 Traceroute Settings To Ping a Remote HostMemory To Configure the Diagnostic Log Output11 Log Settings LogTo View Thread Information ThreadsProcesses To View Process InformationSystem Settings Description System SettingsTo Reboot or Restore Factory Defaults 12 System SettingsEmail Configuration Advanced SettingsEmail Settings To View, Configure and Send EmailCLI Configuration Settings Command Line Interface SettingsBasic CLI Settings To View and Configure Basic CLI SettingsSSH Settings To Configure Telnet SettingsSSH Settings Telnet SettingsXML Export Configuration Description Settings XML SettingsXML Export Configuration XML Exporting ConfigurationTo Export in XML Format To Export Configuration in XML FormatXML Export Status Description Settings XML Export StatusTo Import Configuration in XML Format XML Import ConfigurationImport Configuration from External File Import Configuration from the FilesystemTo configure and enable bridging Bridging ConfigurationBridging Wlan Profile WPA & WPA2 Description Settings Bridge ConfigurationTo View or Configure Bridge Settings Bridge Settings Include in your file configgroup name=bridge instance=br0 Trusted Authorities Security in DetailPublic Key Infrastructure Digital CertificatesOpenSSL Obtaining CertificatesSelf-Signed Certificates Certificate FormatsFree Radius Steel Belted RadiusObtaining Firmware Loading New Firmware through FTP Updating FirmwareVirtual IP VIP Status VIP SettingsVirtual IP VIP Configuration To Configure VIP SettingsVIP Counters Description Virtual IP VIP CountersTo View VIP Counters VIP CountersWeb Manager Customization Branding the PremierWave XNShort and Long Name Customization Short and Long Name SettingsTo Customize Short or Long Names Technical Support US Appendix a Technical SupportTechnical Support Europe, Middle East, Africa Scientific Calculator Appendix B Binary to Hexadecimal ConversionsConverting Binary to Hexadecimal Conversion TableAppendix B Binary to Hexadecimal Conversions Appendix C Compliance RoHS Notice Manufacturers Contact
Related manuals
Manual 1 pages 1.27 Kb