LevelOne 11g PoE Wireless Access Point, WAP-0005 Using WPA-802.1x

Wireless Access Point User Guide

44

Using WPA-802.1x

This is the most secure and most complex system.

802.1x mode provides greater security and centralized management, but it is more complex to

configure.

Wireless Station Configuration

For each of the following items, each Wireless Station must have the same settings as the

Wireless Access Point.

Mode On each PC, the mode must be set to Infrastructure.

SSID (ESSID) This must match the value used on the Wireless Access Point.

The default value is wireless

Note! The SSID is case sensitive.

802.1x

Authentication

Each client must obtain a Certificate which is used for authentication for

the Radius Server.

802.1x

Encryption

Typically, EAP-TLS is used. This is a dynamic key system, so keys do

NOT have to be entered on each Wireless station.

However, you can also use a static WEP key (EAP-MD5); the Wireless

Access Point supports both methods simultaneously.

Radius Server Configuration

If using WPA-802.1x mode, the Radius Server on your network must be configured as follow:

• It must provide and accept Certificates for user authentication.

• There must be a Client Login for the Wireless Access Point itself.

• The Wireless Access Point will use its Default Name as its Client Login name.

(However, your Radius server may ignore this and use the IP address instead.)

• The Shared Key, set on the Security Screen of the Access Point, must match the

Shared Secret value on the Radius Server.

• Encryption settings must be correct.

Contents

Main LevelOne WAP - 0005 11g PoE Wireless Access Point User's Guide Page TABLE OF CONTENTS Page Chapter 1 Introduction Features of your Wireless Access Point Security Features Advanced Features Page Package Contents Physical Details Front Panel LEDs Rear Panel Chapter 2 Installation Requirements Requirements: Procedure Using PoE (Power over Ethernet) Page Chapter 3 Access Point Setup Overview Setup using the Windows Utility Installation Main Screen Wireless Access Points Buttons Setup Procedure Setup using a Web Browser Setup Procedure If you can't connect: Access Control Data - Access Control Screen Trusted Wireless Stations Data - Trusted Wireless Stations Security Profiles Data - Security Profiles Screen Security Profile Screen Profile Data Security System Page Security Settings - None Radius MAC Authentication Using MAC authentication Page Radius-based MAC authentication Screen Data - Radius-based MAC Authentication Screen UAM UAM authentication - Internal UAM authentication - External UAM Screen Data - UAM Screen Security Settings - WEP Data - WEP Screen Security Settings - WPA-PSK Data - WPA-PSK Screen Page Security Settings - WPA-802.1x Data - WPA-802.1x Screen Page Security Settings - 802.1x Data - 802.1x Screen Page System Screen Data - System Screen Page Wireless Screens Basic Settings Screen Data - Basic Settings Screen Page Page Advanced Settings Data - Advanced Settings Screen Page Chapter 4 PC and Server Configuration Overview Using WEP Using WPA-PSK Using WPA-802.1x Wireless Station Configuration Radius Server Configuration 802.1x Server Setup (Windows 2000 Server) Windows 2000 Domain Controller Setup Services Installation Page DHCP server configuration Page Certificate Authority Setup Page Page Internet Authentication Service (Radius) Setup Page Page 802.1x Client Setup on Windows XP Client Certificate Setup Page Page 802.1x Authentication Setup Encryption Settings Enabling Encryption Page Using 802.1x Mode (without WPA) Chapter 5 Operation and Status Operation Status Screen Data - Status Screen Statistics Screen Data - Statistics Screen Page Profile Status Activity Log Data - Activity Log Station List Data - Station List Screen Chapter 6 Access Point Management Overview Admin Login Screen Data - Admin Login Screen Auto Config/Update Data - Auto Config/Update Screen Page Config File Data - Config File Screen Page Log Settings (Syslog) Data - Log Settings Screen Rogue APs Data - Rogue AP Screen SNMP Data - SNMP Screen Upgrade Firmware To perform the Firmware Upgrade: Appendix A Specifications Wireless Access Point Hardware Specifications Wireless Specifications A Software Specifications Page FCC Statement FCC Radiation Exposure Statement Appendix B Troubleshooting Overview General Problems B Page Appendix C Windows TCP/IP Overview Normally, no changes need to be made. Checking TCP/IP Settings - Windows 9x/ME: C Page Checking TCP/IP Settings - Windows NT4.0 Page Checking TCP/IP Settings - Windows 2000 Page Checking TCP/IP Settings - Windows XP Page Appendix D About Wireless LANs Overview Wireless LAN Terminology Modes Ad-hoc Mode Channels WEP WPA-PSK WPA-802.1x 802.1x Appendix E Command Line Interface Using the CLI - Telnet Using the CLI - Serial Port E Command Reference