LevelOne WAP-0005 Using WPA-802.1x

PC and Server Configuration

Using WPA-802.1x

This is the most secure and most complex system.

802.1x mode provides greater security and centralized management, but it is more complex to

configure.

Wireless Station Configuration

For each of the following items, each Wireless Station must have the same settings as the

Wireless Access Point.

Mode On each PC, the mode must be set to Infrastructure.

SSID (ESSID) This must match the value used on the Wireless Access Point.

The default value is wireless

Note! The SSID is case sensitive.

802.1x

Authentication

Each client must obtain a Certificate which is used for authentication for

the Radius Server.

802.1x

Encryption

Typically, EAP-TLS is used. This is a dynamic key system, so keys do

NOT have to be entered on each Wireless station.

Radius Server Configuration

If using WPA-802.1x mode, the Radius Server on your network must be configured as follow:

• It must provide and accept Certificates for user authentication.

• There must be a Client Login for the Wireless Access Point itself.

• The Wireless Access Point will use its Default Name as its Client Login name.

• The Shared Key, set on the Security Screen of the Access Point, must match the

Shared Secret value on the Radius Server.

• Encryption settings must be correct.

37

Contents

Main LevelOne WAP - 0005 108 Mbps Wireless Access Point Users Manual TABLE OF CONTENTS Page Chapter 1 Introduction Features of your Wireless Access Point Security Features Advanced Features Package Contents Physical Details Front Panel LEDs Rear Panel Chapter 2 Installation Requirements Requirements: Procedure Using PoE (Power over Ethernet) Chapter 3 Access Point Setup Overview Setup using the Windows Utility Installation Main Screen Wireless Access Points Buttons Setup Procedure Setup using a Web Browser Setup Procedure If you can't connect: Status Screen System Screen Data - System Screen Access Control Data - Access Control Screen Trusted Wireless Stations Data - Trusted Wireless Stations Page Wireless Screens Basic Settings Screen Data - Basic Settings Screen Page Page Security Settings Security Settings - None Radius MAC Authentication Using MAC authentication Radius-based MAC authentication Screen Data - Radius-based MAC Authentication Screen UAM UAM authentication - Internal UAM authentication External UAM Screen Data UAM Screen Security Settings - WEP Data - WEP Screen Page Security Settings - WPA-PSK Data - WPA-PSK Screen Page Security Settings - WPA-802.1x Data - WPA-802.1x Screen Page Security Settings - 802.1x Data - 802.1x Screen Page Advanced Settings Data - Advanced Settings Screen Page Chapter 4 PC and Server Configuration Overview Using WEP Using WPA-PSK Using WPA-802.1x Wireless Station Configuration Radius Server Configuration 802.1x Server Setup (Windows 2000 Server) Windows 2000 Domain Controller Setup Services Installation Page DHCP server configuration Page Certificate Authority Setup Page Page Internet Authentication Service (Radius) Setup Page Page 802.1x Client Setup on Windows XP Client Certificate Setup Page Page 802.1x Authentication Setup Encryption Settings Enabling Encryption Page Using 802.1x Mode (without WPA) Chapter 5 Operation and Status Operation Status Screen Data - Status Screen Activity Log Data - Activity Log Station List Data - Station List Screen Statistics Screen Data - Statistics Screen Page Chapter 6 Other Settings & Features Overview Admin Login Screen Data - Admin Login Screen Page Config File Data - Config File Screen SNMP Data - SNMP Screen Firmware Upgrade To perform the Firmware Upgrade: Appendix A Specifications Wireless Access Point Hardware Specifications Wireless Specifications A Software Specifications Page FCC Statement FCC Radiation Exposure Statement B Appendix B Troubleshooting Overview General Problems Page C Appendix C Windows TCP/IP Overview Normally, no changes need to be made. Checking TCP/IP Settings - Windows 9x/ME: Page Checking TCP/IP Settings - Windows NT4.0 Page Checking TCP/IP Settings - Windows 2000 Page Checking TCP/IP Settings - Windows XP Page D Appendix D About Wireless LANs Overview Wireless LAN Terminology Modes Ad-hoc Mode Channels WEP WPA-PSK WPA-802.1x 802.1x E Appendix E Command Line Interface Using the CLI Telnet Using the CLI Serial Port Command Reference