Lantronix XN manual Steel Belted Radius, Free Radius

Page 94

14: Security in Detail

Steel Belted RADIUS

Steel Belted RADIUS is a commercial RADIUS server from Juniper Networks that provides a GUI administration interface. It also provides a certificate request and self-signed certificate generator.

The self-signed certificate has extension .sbrpvk and is in the PKCS12 format. OpenSSL can convert this into a PEM format certificate and key:

openssl pkcs12 -in sbr_certkey.sbrpvk -nodes -out sbr_certkey.pem

The sbr_certkey.pem file contains both certificate and key. If loading the SBR certificate into PremierWave XN as an authority, you will need to edit it:

1.Open the file in any plain text editor.

2.Delete all info before "----- BEGIN CERTIFICATE-----" and after "----- END

CERTIFICATE-----

", and then save as sbr_cert.pem.

SBR accepts trusted-root certificates in the DER format. Again, OpenSSL can convert any format into DER:

openssl x509 -inform pem -in mp_cert.pem -outform der -out mp_cert.der

Note: With SBR, when the identity information includes special characters such as dashes and periods, SBR changes the format it uses to store these strings and becomes incompatible with the current PremierWave XN release. Support may be added for this and other formats in future releases.

Free RADIUS

Free RADIUS is another versatile Linux open-source RADIUS server.

PremierWave XN User Guide

94

Image 94

Contents XN User Guide Contacts WarrantyCopyright & Trademark DisclaimerInstallation of PremierWave XN Table of ContentsUsing This Guide Using DeviceInstallerNetwork Settings Configuration Using Web ManagerLine and Tunnel Settings Services Settings Terminal and Host SettingsSecurity Settings Maintenance and Diagnostics Settings Bridging Advanced SettingsSecurity in Detail Branding the PremierWave XN VIP SettingsUpdating Firmware 103List of Figures PremierWave XN Product LabelList of Tables PremierWave XN User Guide Summary of Chapters Using This GuidePurpose and Audience Chapter DescriptionAdditional Documentation Document DescriptionApplications Key FeaturesIntroduction Protocol SupportAddresses and Port Numbers Troubleshooting CapabilitiesConfiguration Methods Hardware AddressIP Address Product Information LabelPort Numbers User-Supplied Items Installation of PremierWave XNPackage Contents Hardware ComponentsSignal Strength LEDs Button pin holeRight LED PowerLeft LED SerialWlan Signal Strength Indicator at 2.4 GHz Wlan Signal Strength Indicator at 5 GHzWPS Status Indicator Fault Conditions Blink Pattern 10 Diagnostic LED IndicationsBack Panel Wi-Fi Protected Setup WPS To Start WPSPerform the following steps to install your device Installing the PremierWave XNTo Cancel WPS To Show WPS Status13 PremierWave XN Dimensions in Millimeters mm Device Detail Summary Using DeviceInstallerAccessing PremierWave XN Using DeviceInstaller IP address was obtained dynamicallyCurrent Settings Description Accessing Web Manager Configuration Using Web ManagerTo access Web Manager, perform the following steps Device Status Web Manager Components Help AreaNavigating Web Manager Web Manager Description SeeSmartRoam Protocol StackQuery Port SyslogNetwork Interface Settings Network SettingsNetwork Interface Settings Network Interface Description SettingsTo Configure Network Interface Settings Network 1 Ethernet eth0 Description Link Settings Network Link SettingsNetwork 1 eth0 Link Settings To View Network Interface StatusNetwork 2 wlan0 Link Settings Network 2 Wlan wlan0 Description Link SettingsNetwork 2 Link Scan To Configure Network Link SettingsWlan Link Status and Scan Commands Network 2 Link Scan Results on WebManagerNetwork 2 Link Status To View Wlan Link Scan and Status InformationWlan Link Status Description Wlan Profiles To Configure Wlan ProfilesWlan Profile Basic Settings Description Creating, Deleting or Enabling Wlan ProfilesTo Configure Wlan Profile Basic Settings Wlan Profile Basic SettingsWlan Profile Advanced Settings To Configure Wlan Profile Advanced SettingsWlan Profile Advanced Settings Description 10 Wlan Profile Security Settings Wlan Profile Security SettingsTo Configure Wlan Profile Security Settings Wlan Profile Description Security Settings11 Additional WEP Settings for Wlan Profile Wlan Profile WEP SettingsTo Configure Wlan Profile WEP Settings Wlan Profile WEP Settings DescriptionWlan Profile WPA Description WPA2 Settings Wlan Profile WPA and WPA2/IEEE802.11i Settings12 Wlan Profile WPA and WPA2/IEEE802.11i Settings KeyTo Configure Wlan Profile WPA and WPA/IEEE802.11i Settings Wlan Quick Connect To Configure Wlan Quick ConnectWlan Quick Connect Description Settings 13 Wlan Quick ConnectLine Configuration Settings Line and Tunnel SettingsLine Settings Line Settings DescriptionLine Command Mode Settings To Configure Line SettingsLine Command Description Mode Settings Tunnel Serial Description Settings Line Settings Tunnel SettingsSerial Settings Line Settings to modify these settingsTunnel Packing Mode Settings To Configure Tunnel Serial SettingsPacking Mode Tunnel Serial Description SettingsSend Character To Configure Tunnel Packing Mode SettingsAccept Mode Trailing CharacterTunnel Accept Mode Settings Tunnel Accept Mode Description SettingsBlock Network To Configure Tunnel Accept Mode SettingsConnect Mode Email on ConnectReconnect Timer Tunnel Connect Mode SettingsTunnel Connect Mode Description Settings Flush Serial DataTunnel Disconnect Mode Settings To Configure Tunnel Connect Mode SettingsDisconnect Mode Tunnel Disconnect Description Mode SettingsTunnel Modem Description Emulation Settings To Configure Tunnel Disconnect Mode SettingsTunnel Modem Emulation Settings Modem EmulationTo View Tunnel Statistics To Configure Tunnel Modem Emulation SettingsStatistics Connect StringTerminal Settings Terminal and Host SettingsTerminal on Network and Line Settings To Configure the Terminal Line Connection Host ConfigurationTo Configure the Terminal Network Connection Host ConfigurationRemote Address To Configure Host SettingsSSH Username Remote PortTo View or Configure DNS Settings Services SettingsDNS Settings DNS SettingsTo Configure FTP Settings FTP SettingsSyslog Settings FTP SettingsHttp Settings Http SettingsTo View or Configure Syslog Settings Http Settings DescriptionTo Configure Http Settings Http Authentication Settings RSS SettingsTo Configure Http Authentication RSS SettingsTo Configure RSS Settings RSS Settings Description Security SettingsSSH Settings SSH Server Host KeysSSH Server Authorized Users SSH Client Known HostsSSH Client Known Hosts SSH Server Authorized Users Remote CommandSSH Client Users SSH Client UsersSSL Settings To Configure SSH SettingsCertificate and Key Generation Certificate and Key Generation SettingsCertificate Generation Description Settings To Create a New CredentialUpload Certificate Settings Certificate Upload SettingsTo Configure an Existing SSL Credential Upload Description Certificate SettingsTrusted Authorities Trusted Authority SettingsTo Upload an Authority Certificate File Display Settings Maintenance and Diagnostics SettingsFilesystem Settings File DisplayFile Modification File Modification SettingsFile Transfer Settings File TransferTo Configure IP Network Stack Settings Protocol Stack SettingsIP Settings IP Network Stack SettingsARP Settings Icmp SettingsTo Configure Icmp Network Stack Settings To Configure ARP Network Stack SettingsTo Configure Query Port Settings Smtp SettingsTo Configure Smtp Network Stack Settings Query Port SettingsIP Sockets DiagnosticsHardware To View Hardware Information To View the List of IP SocketsTo Ping a Remote Host Ping Settings10 Traceroute Settings TracerouteLog To Configure the Diagnostic Log Output11 Log Settings MemoryTo View Process Information ThreadsProcesses To View Thread Information12 System Settings System SettingsTo Reboot or Restore Factory Defaults System Settings DescriptionTo View, Configure and Send Email Advanced SettingsEmail Settings Email ConfigurationTo View and Configure Basic CLI Settings Command Line Interface SettingsBasic CLI Settings CLI Configuration SettingsTelnet Settings To Configure Telnet SettingsSSH Settings SSH SettingsXML Exporting Configuration XML SettingsXML Export Configuration XML Export Configuration Description SettingsXML Export Status To Export Configuration in XML FormatXML Export Status Description Settings To Export in XML FormatImport Configuration from the Filesystem XML Import ConfigurationImport Configuration from External File To Import Configuration in XML FormatTo configure and enable bridging Bridging ConfigurationBridging Bridge Settings Bridge ConfigurationTo View or Configure Bridge Settings Wlan Profile WPA & WPA2 Description Settings Include in your file configgroup name=bridge instance=br0 Digital Certificates Security in DetailPublic Key Infrastructure Trusted AuthoritiesCertificate Formats Obtaining CertificatesSelf-Signed Certificates OpenSSLSteel Belted Radius Free RadiusUpdating Firmware Obtaining Firmware Loading New Firmware through FTPTo Configure VIP Settings VIP SettingsVirtual IP VIP Configuration Virtual IP VIP StatusVIP Counters Virtual IP VIP CountersTo View VIP Counters VIP Counters DescriptionBranding the PremierWave XN Web Manager CustomizationShort and Long Name Customization Short and Long Name SettingsTo Customize Short or Long Names Technical Support US Appendix a Technical SupportTechnical Support Europe, Middle East, Africa Conversion Table Appendix B Binary to Hexadecimal ConversionsConverting Binary to Hexadecimal Scientific CalculatorAppendix B Binary to Hexadecimal Conversions Appendix C Compliance Manufacturers Contact RoHS Notice

Related manuals

Manual 1 pages 1.27 Kb