When configuring IEEE 802.1x mode, you have a choice of whether to use the embedded RADIUS server or an external RADIUS server that you provide. The Gateway 7001 Series self-managed AP embedded RADIUS server supports Protected EAP (PEAP) and MSCHAP V2.

If you use your own RADIUS server, you have the option of using any of a variety of authentication methods that the IEEE 802.1x mode supports, including certificates, Kerberos, and public key authentication. Keep in mind, however, that the client stations must be configured to use the same authentication method being used by the access point.

If you selected “IEEE 802.1x” Security Mode, provide the following:

FieldDescription

Authentication Server

Select one of the following from the list:

Built-in- To use the authentication server provided with the Gateway 7001 Series self-managed AP. If you choose this option, you do not have to provide the Radius IP and Radius Key (they are automatically provided).

External - To use an external authentication server. If you choose this option you must supply the Radius IP and Radius Key of the server you want to use.

Radius IP

Type the Radius IP in the text box.

 

The Radius IP is the IP address of the RADIUS server.

 

The Gateway 7001 Series self-managed AP internal authentication server

 

is 127.0.0.1. This will be provided automatically if you selected the built-in

 

authentication server.

 

For more information, see “Managing User Accounts” on page 55.

 

 

Radius Key

Type the Radius Key in the text box.

 

The Radius Key is the shared secret key for the RADIUS server. The text

 

you type will be displayed as “*” characters to prevent others from seeing

 

the RADIUS key as you type.

 

The Gateway 7001 Series self-managed AP internal authentication server

 

is “secret.” This will be provided automatically if you selected the built-in

 

authentication server.

 

This value is never sent over the network.

 

 

94

www.gateway.com