3Com 11 Mbps manual Access Point Security, Upper-Layer, Authentication

Page 23

3

ACCESS POINT SECURITY

 

The advanced security features of the Access Point 8000 address the two primary

 

aspects of wireless networking security: network authentication and transmission

 

encryption. The access point provides standardized methods for authentication

 

and encryption, but also offers innovative technology from 3Com that extends the

 

standards and makes wireless networking more secure.

 

The access point can provide a complete stand-alone security solution.

 

Alternatively, it can be integrated into an enterprise-class security solution,

 

interacting with a networked RADIUS server and 802.1x-enabled wireless clients.

 

 

Upper-Layer

The basic authentication schemes defined in the 802.11 standard are limiting

Authentication

because they do not provide a way to centralize authentication information into a

 

central server. Upper layer authentication solves this problem. Through the use of

 

the Extensible Authentication Protocol (EAP), the access point supports a number

 

of upper layer authentication schemes, including EAP-MD5, EAP-TLS, and 3Com

 

Serial Authentication.

EAP-MD5

EAP-MD5provides a simple way to centralize client network authentication

 

information in a RADIUS server. Under this scheme, the server does not require

 

certificates or other security information installed on client machines. At login, the

 

RADIUS server verifies the username and password provided by the user. Once the

 

user is authenticated, the server informs the access point of successful

 

authentication and data traffic from the client is allowed to pass to the wired

 

network. EAP-MD5 provides authentication only. It is possible to configure the

 

access point to use any of the 802.11 standard encryption mechanisms along with

 

EAP-MD5 authentication. EAP-MD5 is a one-way authentication scheme: it

 

authenticates the client to the server, but does not authenticate the server to the

 

client.

 

EAP-MD5 is supported by the 3Com 802.1x agent (described below) and is built

 

into the Windows XP operating system.

EAP-TLS

EAP-TLSprovides both authentication and dynamic session key distribution.This

 

authentication scheme provides mutual authentication between the client and

 

server. A unique X.509 certificate must be generated for each network user. In

 

addition, the certificate must be installed on all client PCs that will be used to log

 

onto the network. Both a client and a server certificate are exchanged as part of

 

authentication.

 

Once authenticated, the server informs the access point and data traffic from the

 

client is allowed to pass to the wired network. As part of authentication, the client

 

and TLS server derive session-specific keys based on information shared between

Page 22 Page 24
Image 23
Page 22 Page 24
Contents Version Mbps Wireless LAN Access Point User Guide95052-8145 3Com CorporationBayfront Plaza Santa Clara, CaliforniaContents Conducting a Site Survey Regulatory Compliance Information Index Page Introduction Access Point 8000 Feature SummaryManagement tools Installation OverviewInstallation Overview Page Place Equipment Installing the Access PointDeciding Where to Before You BeginStandard Antenna ConnectingPlacing the Access Attached before the access point is installedPlacing the Access Point SET Connecting Power As shown below Connecting to anEthernet Network Checking the LEDsModel number 3CWE490 3CWE492 3CWE497 3CWE498 Omnidirectional AntennaCeiling Mount Hallway Antenna Ceiling Mount Omnidirectional AntennaDirectional Panel Antenna Side Installing Software Utilities Page Upper-Layer Access Point SecurityAuthentication Access Point Security 802.1x Agent Using the Wireless802.1x Radius SupportEAP-MD5 Using the Wireless 802.1x Agent Page Manager Configuring the Access PointInstalling the Device 3Com 11 Mbps Wireless LAN Access Point 8000 ConfigurationClick Configure Management System UsingDisplay help on the contents of that ConfigurationSetting Network Properties Properties Setting DataTransmission Data Transmission Setting AdvancedSetting up Security List Setting up a UserAccess List Saved passwords on the clientsServers Setting up a MACAddress Access List Defining RadiusUpgrading the System Setting up aDefining a Tftp Server System LogResetting the Access AdministrationPassword DefaultsViewing Statistics Viewing System Status Configuring the Access Point Environmental Conducting a Site SurveyChoosing Trial LocationsSummary Survey ProcedureLaunching the Tool Setting up EquipmentSite Survey Tool Results Interpreting TestLAN Site Survey window Site Survey MenusPage Symptom Solutions TroubleshootingContinue to configure the access point using the old IP Online Technical ServicesTechnical Support Country Telephone Number Asia, Pacific Rim North America Country Telephone Number Europe, Middle East and AfricaEurope and South Africa Latin AmericaCountry Telephone Number Fax Number Regulatory Compliance Information European Community CE Index Snmp management

11 Mbps specifications

3Com 11 Mbps was a pivotal product in the evolution of networking technology, paving the way for wireless communications as we know them today. Introduced in the late 1990s, this wireless LAN (Local Area Network) product utilized the IEEE 802.11 standard, which defined the protocols for wireless networking. Operating at a maximum data rate of 11 megabits per second, it offered users a revolutionary means of connecting devices without the constraints of physical cabling.

One of the main features of the 3Com 11 Mbps solution was its simplicity and ease of installation. Unlike traditional wired networks that involved intricate setups of cabling and switches, 3Com facilitated a swift deployment process. Users could set up a wireless network in minutes, allowing organizations to enhance their productivity without extensive infrastructure.

The technology behind 3Com 11 Mbps was based on Direct Sequence Spread Spectrum (DSSS) modulation. This approach spread the signal over a wider frequency range, which improved resistance to interference from other devices. The 2.4 GHz frequency band used by this network supported compatibility with various devices, making it a flexible option for businesses and homes alike.

In terms of security, 3Com incorporated Wired Equivalent Privacy (WEP), which aimed to provide a level of data confidentiality comparable to that found in wired networks. However, WEP was later found to have vulnerabilities, leading to the development of more secure protocols like WPA (Wi-Fi Protected Access) and WPA2 in subsequent technologies.

Another characteristic that distinguished the 3Com 11 Mbps system was its ability to support multiple devices simultaneously. With the emergence of wireless laptops, printers, and other peripherals, a single access point could service several users without significant performance degradation.

Ultimately, the 3Com 11 Mbps was a significant stepping stone in the development of wireless technology. It showcased the potential of wireless networking and set the standard for future innovations. Although much faster and more secure wireless technologies have since emerged, the legacy of 3Com 11 Mbps resides in the fundamental advancements it brought to the realm of connectivity, making it easier and more accessible for users around the globe.
Top Page Image Contents