AT-TQ2403 Management Software User's Guide

151

 

 

Appendix A: Security Settings on Wireless Clients and RADIUS Server Setup

Typically, users will configure security on their wireless clients for access to many different networks (access points). The list of "Available Networks" will change depending on the location of the client and which APs are online and detectable in that location. Once an AP has been detected by the client and security is configured for it, it remains in the client’s list of networks but shows as either reachable or unreachable depending on the situation. For each network (AP) you want to connect to, configure security settings on the client to match the security mode being used by that network.

We describe security setup on a client that uses Microsoft Windows client software for wireless connectivity. The Windows client software is used as the example because of its widespread availability on Windows computers and laptops. These procedures will vary slightly if you use different software on the client (such as Funk Odyssey), but the configuration information you need to provide is the same.

Note: The recommended sequence for security configuration is (1) set up security on the access point, and (2) configure security on each of the wireless clients.

We expect that initially, you will connect to an access point that has no security set (None) from an unsecure wireless client. With this initial connection, you can go to the access point Administration Web pages and configure a security mode (Security).

When you re-configure the access point with a security setting and click "Update", your wireless client will be disassociated and you will lose connectivity to the AP Administration Web pages. In some cases, you may need to make additional changes to the AP security settings before configuring the client. Therefore, you must have a backup Ethernet (wired) connection.

The following sections describe how to set up each of the supported security modes on wireless clients of a network served by the AT-TQ2403 Management Software.

Network Infrastructure and Choosing Between Built-in or External Authentication Server

Make Sure the Wireless Client Software is Up-to-Date

Accessing the Microsoft Windows Wireless Client Security Settings

Configuring a Client to Access an Unsecure Network (No Security)

Configuring Static WEP Security on a Client

Configuring IEEE 802.1x Security on a Client

Configuring WPA/WPA2 Enterprise (RADIUS) Security on a Client

Configuring WPA/WPA2 Personal (PSK) Security on a Client

Configuring an External RADIUS Server to Recognize the AT-TQ2403 Management Software

Obtaining a TLS-EAP Certificate for a Client

Configuring RADIUS Server for VLAN tags