NETGEAR WAG302 manual Figure B-3 WPA Overview, Radius Server

Page 102

Reference Manual for the NETGEAR ProSafe Dual Band Wireless Access Point WAG302

WPA Authentication: Enterprise-level User

Authentication via 802.1x/EAP and RADIUS

Wireless LAN

Wired Network with Optional 802.1x Port Based Network Access Control

 

 

 

 

 

 

 

 

 

 

 

 

 

 

WPA enabled

 

 

 

WPA

 

 

 

enabled

 

 

Access Point

 

 

 

wireless

 

 

 

using

 

 

 

 

client with

 

 

pre-shared key

 

 

 

“supplicant”

 

 

or

 

 

 

 

 

 

 

802.1x

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Figure B-3: WPA Overview

TCP/IP

Ports Closed

Until

TCP/IP

Ports Opened

After

Authenticated

RADIUS Server

Login

Authentication

Certificate

Authority

(for

example

Win Server,

VeriSign)

IEEE 802.1x offers an effective framework for authenticating and controlling user traffic to a protected network, as well as providing a vehicle for dynamically varying data encryption keys via EAP from a RADIUS server, for example. This framework enables using a central authentication server, which employs mutual authentication so that a rogue wireless user does not join the network.

It is important to note that 802.1x does not provide the actual authentication mechanisms. When using 802.1x, the EAP type, such as Transport Layer Security (EAP-TLS), or EAP Tunneled Transport Layer Security (EAP-TTLS), defines how the authentication takes place.

Note: For environments with a Remote Authentication Dial-In User Service (RADIUS) infrastructure, WPA supports Extensible Authentication Protocol (EAP). For environments without a RADIUS infrastructure, WPA supports the use of a pre-shared key.

Together, these technologies provide a framework for strong user authentication.

Windows XP implements 802.1x natively, and several NETGEAR switch and wireless access point products support 802.1x.

B-14

Wireless Networking Basics

202-10078-01

Page 101 Page 103
Image 102
Page 101 Page 103
Contents NETGEAR, Inc Technical Support WAG302 ProSafe Dual Band Wireless Access Point Tested to Comply with FCC StandardsDeclaration of Conformity Industry Canada Compliance Statement Product and Publication Details Contents Chapter Management Appendix a Specifications Appendix C Command Line Reference Chapter About This Manual Audience, Scope, Conventions, and FormatsBold How to Use This Manual How to Print this Manual Printing a Page in the Html ViewAbout This Manual About the WAG302 ProSafe Dual Band Wireless Access Point Chapter IntroductionKey Features Supported Standards and ConventionsAutoCell-The Self-Organizing Wireless Network 802.11a/g Standards-based Wireless Networking Compatible and Related Netgear ProductsAutosensing Ethernet Connections with Auto Uplink System Requirements What’s In the Box?Hardware Description Front Panel100 Rear Panel 802.11a Wlan802.11g Wlan Serial Console Port Chapter Basic Installation and Configuration Observing Placement and Range GuidelinesCabling Requirements Enabled but Trap forwarding is disabled Default Factory SettingsTime Zone Adjust for Daylight Saving TIme Disabled Secure Telnet EnabledUnderstanding WAG302 Wireless Security Options LUHOHVVDWD 6HFXULW\2SWLRQVInstalling the WAG302 Access Point SET UP the WAG302 Access PointLogin window Web browser will then display the WAG302 General information Basic Settings menu Basic Installation and Configuration Wireless Settings 11a menu Deploy the WAG302 Access Point How to Log In to the WAG302 Using Its Default IP Address Understanding Basic Wireless Settings Wireless Settings 11aBasic Installation and Configuration Wireless Settings 11b/g Basic Installation and Configuration Basic Installation and Configuration 10 WEP/WPA Settings menus for 11a and 11b/g Understanding WEP/WPA Security OptionsBasic Installation and Configuration Before You Change the Ssid and WEP Settings 802.11a Configuration802.11b/g Configuration How to Set Up and Test Basic Wireless Connectivity How to Restrict Wireless Access by MAC Address Access Control 11a menu Access Control 11b/g menuHow to Configure WEP Click Apply to save your settings How to Configure WPA with Radius 13 Radius Server Settings menu 14 WEP/WPA Settings menus for 11a and 11bg How to Configure WPA-PSK 15 WEP/WPA Settings menus for 11a and 11bgUsing the Basic IP Settings Options IP AddressSpanning Tree Protocol Basic Installation and Configuration Chapter Management Remote ManagementUsing the Secure Telnet Interface How to Use the CLI via the Console PortCLI Commands Secure Telnet ClientUsing Syslog and Activity Log Information Syslog and Activity Log informationViewing General and Statistical Information General InformationField Description Access Point Information Current IP SettingsCurrent Wireless Settings 11a Field Description Current Wireless Settings 11b/g Field Description Wired Ethernet Received/Transmitted Wireless 11a Received/TransmittedStatistics Field Description Wireless 11b/g Received/Transmitted Viewing a List of Attached DevicesRefresh button Upgrading the Wireless Access Point Software Configuration File ManagementSaving and Retrieving the Configuration Restoring the WAG302 to the Factory Default SettingsUsing the Reset Button to Restore Factory Default Settings Rebooting the Access PointChanging the Administrator Password Set Password menuManagement Chapter Advanced Configuration Understanding Advanced IP Settings for Wireless ClientsAdvanced IP Settings for Wireless Clients screen Understanding Advanced Wireless Settings Auto RF Management -- Default Enable Problem AutoCell SettingsEnhance RF Privacy -- Default Disable AutoCell RF ManagementAuto RF Management Enhanced RF Security ‘Stealth Mode’ Additional AutoCell View Management Options Configuring Wireless LAN Parameters Advanced Wireless Settings screenEnabling Wireless Bridging and Repeating How to Configure a WAG302 as a Point-to-Point Bridge Point-to-Point BridgeManual Advanced Configuration How to Configure Wireless Repeating Multi-Point bridgingAdvanced Configuration Chapter Troubleshooting No lights are lit on the access pointWireless LAN activity light does not light up LAN light is not litCannot connect to the WAG302 to configure it When I enter a URL or IP address I get a timeout errorUsing the Reset Button to Restore Factory Default Settings Appendix a Specifications Specifications for the WAG302Parameter WAG302 ProSafe Dual Band Wireless Access Point Specifications Appendix B Wireless Networking Basics Wireless Networking OverviewInfrastructure Mode Ad Hoc Mode Peer-to-Peer Workgroup Network Name Extended Service Set Identification EssidAuthentication and WEP Data Encryption Authentication802.11b Authentication Open System Steps 802.11b Authentication Shared Key Steps Key Size Wireless Channels WEP Configuration Options802.11b/g Wireless Channels Table B-2 802.11b/g Radio Frequency Channels Channel Center Frequency Frequency Spread802.11a Wireless Channels Channel FrequencyWPA Wireless Security WAG302 user can use five channels in turbo modeHow Does WPA Compare to WEP? What are the Key Features of WPA Security? How Does WPA Compare to Ieee 802.11i?Wireless Networking Basics Figure B-3 WPA Overview Radius ServerAccess point replies with an EAP-request identity message WPA Data Encryption Key Management Temporal Key Integrity Protocol Tkip Is WPA Perfect? Product Support for WPAChanges to Wireless Access Points Changes to Wireless Client Programs Appendix C Command Line Reference Command SetsCommand Line Reference Command Line Reference Command Line Reference 802.11a 100BASE-Tx802.1x 802.11bAuto Uplink CatCertificate Authority Dynamic Host Configuration Protocol Domain NameMAC address Internet ProtocolLocal area network MbpsNetwork Address Translation NetBIOSNetmask PacketWi-Fi Windows Internet Naming Service Wide area networkWireless Network Name Ssid Glossary
Related manuals
Manual 2 pages 4.37 Kb
Top Page Image Contents