Reference Manual for the NETGEAR ProSafe Wireless Access Point 802.11g WG302

Client with a WPA/

 

 

WPA2-enabled wireless

For example, a

 

adapter and supplicant

For example, a

(Win XP, Funk,

WPA/WPA2-enabled

Meetinghouse)

AP

RADIUS server

1

3

4

5

7

Figure B-4: 802.1x Authentication Sequence

The AP sends Beacon Frames with WPA/WPA2 information element to the stations in the service set. Information elements include the required authentication method (802.1x or Pre-shared key) and the preferred cipher suite (WEP, TKIP, or AES). Probe Responses (AP to station) and Association Requests (station to AP) also contain WPA information elements.

1.Initial 802.1x communications begin with an unauthenticated supplicant (client device) attempting to connect with an authenticator (802.11 access point). The client sends an EAP-start message. This begins a series of message exchanges to authenticate the client.

2.The access point replies with an EAP-request identity message.

Wireless Networking Basics

B-13

July 2005 v3.0

Page 101
Image 101
NETGEAR WG302NA manual Access point replies with an EAP-request identity message, Figure B-4 802.1x Authentication Sequence