Chapter 6: Configuring Security

5.Click Submit Changes to save your changes. To activate your changes, from the menu bar click Save/Discard Changes, and then click Save Changes and Reboot. For help, see “Saving Configuration Changes” on page 46.

6.Repeat Steps 1 through 5 for each access point in your spanning tree. All access points must have the same IAPP secret key to communicate with each other.

In the access point that contains the master radio, click Maintenance > AP Connections. The AP Connections screen lists the station radios (including ones in other access points) that are communicating with the master radio. For help, see “Viewing AP Connections” on page 228.

Table 53. Spanning Tree Security–Authentication Method Descriptions

Parameter

Description

 

 

 

 

Allow SWAP

Determines if this access point authenticates to

 

other access points using SWAP.

 

 

Allow TLS

If the authentication server offers the TLS

 

protocol for the authentication method, this check

 

box determines if this access point can use its

 

server certificate to authenticate to the network.

 

 

Allow TTLS

If the authentication server offers the TTLS

(MSCHAPv2)

protocol for the authentication method, this check

 

box determines if this access point uses a login to

 

authenticate to the network. This login must be in

 

the authentication server database.

 

 

Preferred Protocol

If TLS and TTLS are enabled, this field specifies

 

which protocol is sent to the authentication server

 

when it sends an unsupported protocol.

 

 

User Name

Enter the user name of the access point when it

 

uses TTLS to authenticate to the network.

 

 

Password

Enter the password of the access point when it

 

uses TTLS to authenticate to the network.

 

 

Verify CA

Determines if you want to verify that the access

Certificate

point is connected to the correct authentication

 

server. The server certificate signature is verified

 

against the CA certificate and the server common

 

name is verified against the authentication server

 

common names that are configured in the access

 

point.

 

 

198

Page 198
Image 198
Allied Telesis AT-WA7500, AT-WA7501 manual 198