Data pane item

Description

 

 

Select an appropriate value for Tx key from Tx KEY.

 

 

 

 

Enter an appropriate WEP KEY and reconfirm.

 

 

 

 

802.11r

To enable 802.11r roaming, select Enabled from 802.11r ROAMING. Selecting

 

ROAMING

this enables fast BSS transition.

 

 

The fast BSS transition mechanism minimizes the delay when a client transitions

 

 

from one BSS to another within the same cluster.

 

 

 

 

TERMINATION

To terminate the EAP portion of 802.1X authentication on the AP instead of the

 

 

RADIUS Server, set TERMINATION to Enabled.

 

 

Enabling TERMINATION can reduce network traffic to the external RADIUS

 

 

Server by terminating the authorization protocol on the AP. By default, for 802.1X

 

 

authorization, the client conducts an EAP exchange with the RADIUS Server,

 

 

and the AP acts as a relay for this exchange.

 

 

When TERMINATIONTermination is enabled, the AP acts as an authentication

 

 

server and terminates the outer layers of the EAP and relays only the innermost

 

 

layer to the external RADIUS Server.

 

 

NOTE: If you are using LDAP for authentication, ensure that AP termination is

 

 

configured to support EAP.

 

 

 

 

AUTHENTICATIO

Select any of the following options from AUTHENTICATION SERVER 1:

 

N SERVER 1 and

 

 

 

AUTHENTICATIO

Select an authentication server from the list if an external server is already

 

N

configured.

 

SERVER 2

Select New to configure any of the following servers as an external server:

 

 

RADIUS Server

 

 

LDAP Server

 

 

For information on configuring external servers, see Configuring an external

 

 

server for authentication on page 49.

 

 

To use an internal server, select Internal server and add the clients that are

 

 

required to authenticate with the internal RADIUS Server. Click Users to add

 

 

the users.

 

 

If an external server is selected, you can also configure another authentication

 

 

server.

 

 

 

 

 

LOAD

Set this to Enabled if you are using two RADIUS authentication servers, to

 

BALANCING

balance the load across these servers.

 

 

 

 

REAUTH

Specify a value for REAUTH INTERVAL. When set to a value greater than zero,

 

INTERVAL

APs periodically reauthenticate all associated and authenticated clients.

 

 

 

 

BLACKLISTING

To enable blacklisting of the clients with a specific number of authentication fail-

 

 

ures, select Enabled from BLACKLISTING and specify a value for MAX

 

 

AUTHENTICATION FAILURES. The users who fail to authenticate the number

 

 

of times specified in MAX AUTHENTICATION FAILURES field are dynamically

 

 

blacklisted.

 

 

 

 

ACCOUNTING

To enable accounting, select Enabled from ACCOUNTING. On setting this

 

 

option to Enabled, APs post accounting information to the RADIUS server at the

 

 

specified ACCOUNTING INTERVAL.

 

 

 

 

AUTHENTICATIO

To enable authentication survivability, set AUTHENTICATION SURVIVABILITY

 

N

to Enabled. Specify a value in hours for CACHE TIMEOUT to set the duration

 

SURVIVABILITY

after which the authenticated credentials in the cache expires. When the cache

 

 

expires, the clients are required to authenticate again. You can specify a value

 

 

 

 

 

HP Cloud Network Manager User Guide

Wireless configuration 28