Manuals / Brands / Computer Equipment / Network Card / Psion Teklogix / Computer Equipment / Network Card

Psion Teklogix 9160 G2 C.7.2 WPA/WPA2 Enterprise (RADIUS) Client Using EAP-TLS Certificate

1 376

Download 376 pages, 5.63 Mb

Appendix C: Security Settings On Wireless Clients And RADIUS Server Setup

WPA/WPA2 Enterprise (RADIUS) Client Using EAP-TLS Certificate

C-24 Psion Teklogix 9160 G2 Wireless Gateway User Manual

Logging On To The Wireless Network With A WPA/WPA2 Enterprise (RADIUS)

PEAP Client

“WPA/WPA2 Enterprise (RADIUS)” PEAP clie nts should now be able to asso ciate

with the access point. Client users will be prompted for a user name and password to

authenticate with the network.

C.7.2 WPA/WPA2 Enterprise (RADIUS) Client Using EAP-TLS Certificate

Extensible Authentication Protocol (EAP) Transport Layer Security (TLS),

or EAP-TLS, is an authentication protocol that supports the use of smart cards

and certificates. You have the option of using EAP-TLS with both WPA/WPA2

Enterprise (RADIUS) and IEEE 802.1x modes if you have an external RADIUS

server on the network to support it.

Note: If you want to use IEEE 802.1x mode with EAP-TLS certificates for

authentication and authorization of clients, you must have an external

RADIUS server and a Public Key Authority Infrastructure (PKI), includ-

ing a Certificate Authority (CA), server configured on your network. It is

beyond the scope of this document to describe these configuration of the

RADIUS server, PKI, and CA server. Consult the documentation for those

products.

Some good starting points available on the Web for the Micr osoft Windows

PKI software are:

“How to Install/Uninstall a Public Key Certificate Authority for Windows

2000” at

http://support.microsoft.com/default.aspx?scid=kb;en-us;231881

, and

How to “Configure a Certificate Server” at

http://support.microsoft.com/default.aspx?scid=kb;en-us;318710#3

.

To use this type of security, you must do the foll owing:

1. Add the 9160 G2 Wireless Gateway to the list of RADIUS server cli-

ents. (See “Configuring An External RADIUS Server To Recognize

The 9160 G2 Wireless Gateway” on page C-30.)

Contents

Main Page Return-To-Factory Warranty Service Waste Electrical and Electronic Equipment (WEEE) Directive 2002/96/EC Restriction On Hazardous Substances (RoHS) Directive What is RoHS? Disclaimer TABLE OF CONTENTS Approvals and Safety Summary Chapter 1: Introduction Chapter 2: Installation Requirements Chapter 3: PreLaunch Checklist Chapter 4: Quick Steps For Setup And Launch Chapter 5: Configuring Basic Settings Chapter 6: Managing Access Points & Clusters Chapter 7: Managing User Accounts Chapter 8: Channel Management Chapter 9: Wireless Neighborhood Chapter 10: Configuring Security Chapter 11: Maintenance And Monitoring Chapter 12: The Ethernet (Wired) Interface Chapter 13: Setting the Wireless Interface Chapter 14: Setting up Guest Access Chapter 15: Configuring VLANs Chapter 16: Configuring 802.11 Radio Settings Chapter 17: MAC Address Filtering Chapter 18: Load Balancing Chapter 19: Quality of Service (QoS) Chapter 20: Wireless Distribution System Chapter 21: Configuring SNMP Chapter 22: The 9160 G2 As Base Station Chapter 23: Network Time Protocol Server Chapter 24: Backing Up & Restoring Configuration Chapter 25: Specifications Appendices Appendix A: Support Services And Worldwide Offices Appendix B: Port Pinouts And Cable Diagrams Appendix C: Security Settings On Wireless Clients And RADIUS Server Setup Appendix D: Troubleshooting Page APPROVALS AND SAFETY SUMMARY D ECLARATION OF C FCC Statement RF Radiation Exposure Statement Industry Canada (IC) Department Of Communications Notice S AFETY A CE M R&TTE DIRECTIVE 1999/5/EC I MPORTANT S AFETY I D O N OT O PERATE IN AN E XPLOSIVE A D O N OT R EMOVE C OVERS OR O PEN E D O N OT H OLD A C ONNECTION TO O UTDOOR A INTRODUCTION 1 Page 1.1 About This Manual Page Page Page 1.3 Text Conventions 1.4 Overview Of The 9160 G2 Wireless Gateway 1.4.1 Radios Figure 1.1 Upgrade Firmware Web Page 1.4.2 Access Point Functions 1.4.3 Base Station Functions 1.5 Features and Benefits 1.5.1 IEEE Standards Support And Wi-Fi Compliance 1.5.2 Wireless Features 1.5.3 Security Features 1.5.4 Out-of-the-Box Guest Interface 1.5.5 Clustering And Auto-Management 1.5.6 Networking 1.5.7 SNMP Support 1.5.8 Maintainability 1.6 Whats Next? I NSTALLATION R Page 2.1 Choosing The Right Location 2.1.1 Environment 2.1.1.1 9160 G2 Wireless Gateway Figure 2.1 9160 G2 Installation Position 2.1.2 Maintenance 2.1.3 Radios 2.1.4 Power And Antenna Cables 2.1.4.1 Power Mounting Slot Cable Tie Mount Mounting Hole 2.1.4.2 Antennas Connection To Outdoor Antenna (Kit P/N 1916641) Page 2.2 Connecting To External Devices 2.2.1 Ports RS-232 Console Port Figure 2.2 9160 G2 Port And LED Locations 2.2.2 LAN Installation: Overview 2.2.3 LAN Installation: Ethernet 2.2.3.1 Ethernet Cabling Table 2.1 9160 G2 LED Functions: Front Enclosure 2.2.4 Status Indicators (LEDs) LED Number Name Function Colour 2.2 Changing The Configuration With A Web Browser Page P RE L AUNCH C Page 3.1 The 9160 G2 Wireless Gateway 3.1.1 Default Settings For The 9160 G2 Wireless Gateway Default Settings For The 9160 G2 Wireless Gateway 28 Option Default Settings Related Information Psion Teklogix 9160 G2 Wireless Gateway User Manual 29 Default Settings For The 9160 G2 Wireless Gateway Option Default Settings Related Information 3.1.2 What The Access Point Does Not Provide 3.2 Administrators Computer Table 3.2 Required AP Administrator Software And Hardware 3.3 Wireless Client Computers Table 3.2 Required AP Administrator Software And Hardware Wireless Client Computers Table 3.3 Required AP Client Software And Hardware 32 Required Components Description 3.4 Understanding Dynamic And Static IP Addressing On The 9160 G2 Wireless Gateway 3.4.1 How Does The Access Point Obtain An IP Address At Startup? 3.4.2 Dynamic IP Addressing 3.4.3 Static IP Addressing 3.4.4 Recovering An IP Address QUICK STEPS FOR SETUP AND LAUNCH 4 Page 4.1 Unpack The 9160 G2 Wireless Gateway 4.1.1 9160 G2 Wireless Gateway Hardware And Ports 4.1.2 Whats Inside The 9160 G2 Wireless Gateway? 4.2 Connect The Access Point To Network And Power Figure 4.1 Ethernet Connections Using DHCP Figure 4.2 Ethernet Connections Using Static IP 4.2.1 A Note About Setting Up Connections For A Guest Network 4.2.1.1 Hardware Connections For A Guest VLAN 4.3 Power On The Access Point 4.4 Log On To The Administration Web Pages Table 4.3 Username And Password 4.4.1 Viewing Basic Settings For Access Points 4.5 Configure Basic Settings And Start The Wireless Network 4.5.1 Default Configuration 4.6 Whats Next? 4.6.1 Make Sure The Access Point Is Connected To The LAN Page C ONFIGURING B ASIC S Page 5.1 Navigating To Basic Settings Chapter 5: Configuring Basic Settings Review / Describe The Access Point 48 5.2 Review / Describe The Access Point br0 Table 5.1 Basic Settings Screen Options Chapter 5: Configuring Basic Settings Provide Network Settings 5.3 Provide Network Settings Table 5.2 Administrator Password And Wireless Network Note: Page 5.6 Basic Settings For A Standalone Access Point 5.7 Your Network At A Glance: Understanding Indicator Icons Table 5.3 Indicator Icons Page MANAGING ACCESS POINTS & CLUSTERS 6 Page 6.1 Overview 6.2 Navigating To Access Points Management 6.3 Understanding Clustering 6.3.1 What Is A Cluster? 6.3.2 How Many APs Can A Cluster Support? 6.3.3 What Kinds Of APs Can Cluster Together? 6.3.4 Which Settings Are Shared As Part Of The Cluster Configuration And Which Are Not? 6.3.4.1 Settings Shared In The Cluster Configuration 6.3.4.2 Settings Not Shared By The Cluster 6.3.5 Cluster Formation 6.3.6 Cluster Size And Membership 6.3.7 Intra-Cluster Security 6.4 Understanding Access Point Settings 6.4.1 Modifying The Location Description Table 6.1 Access Point Settings 6.4.2 Setting The Cluster Name 6.5 Starting Clustering 6.6 Stopping Clustering 6.7 Navigating To Configuration Information For A Specific AP And Managing Standalone APs 6.7.1 Navigating To An AP By Using Its IP Address In A URL M ANAGING U SER A Page 7.1 Overview Page 7.4 Adding A User Table 7.1 New User Fields 7.5 Editing A User Account 7.6 Enabling And Disabling User Accounts 7.6.1 Enabling A User Account 7.6.2 Disabling A User Account 7.7 Removing A User Account 7.8 Backing Up And Restoring A User Database 7.8.1 Backing Up The User Database 7.8.2 Restoring A User Database From A Backup File C HANNEL M Page 8.1 Navigating To Channel Management 8.2 Understanding Channel Management 8.2.1 How It Works In A Nutshell 8.2.2 For The Curious: More About Overlapping Channels 8.2.3 Example: A Network Before And After Channel Management Psion Teklogix 9160 G2 Wireless Gateway User Manual 75 Chapter 8: Channel Management Example: A Network Before And After Channel Management Figure 8.1 Without Automatic Channel Management Figure 8.2 With Channel Management Enabled 8.3 Configuring And Viewing Channel Management Settings 8.3.1 Stopping/Starting Automatic Channel Assignment 8.3.2 Viewing Current Channel Assignments And Setting Locks Table 8.3 Current Channel Settings 8.3.2.1 Update Current Channel Settings (Manual) 8.3.3 Viewing Last Proposed Set Of Changes Table 8.4 APs Channel Plan 8.3.4 Configuring Advanced Settings (Customizing And Scheduling Channel Plans) Psion Teklogix 9160 G2 Wireless Gateway User Manual 79 Table 8.5 Advanced Settings 8.3.4.1 Update Advanced Settings W IRELESS N Page 9.1 Navigating To Wireless Neighborhood Figure 9.1 Neighbor APs Both In Cluster And Not In Cluster 9.2 Understanding Wireless Neighborhood Information 9.3 Viewing Wireless Neighborhood Table 9.2 Wireless Neighborhood Statistics Psion Teklogix 9160 G2 Wireless Gateway User Manual 85 Chapter 9: Wireless Neighborhood Viewing Wireless Neighborhood Table 9.2 Wireless Neighborhood Statistics Page Psion Teklogix 9160 G2 Wireless Gateway User Manual 87 Table 9.4 Access Point Statistics Page C ONFIGURING S Page 10.1 Understanding Security Issues On Wireless Networks 10.1.1 How Do I Know Which Security Mode To Use? 10.1.2 Comparison Of Security Modes For Key Management, Authentication And Encryption Algorithms 10.1.2.1 When To Use Unencrypted (No Security) 10.1.2.2 When To Use Static WEP Table 10.1 Static WEP Security Mode 10.1.2.3 When To Use IEEE 802.1x Table 10.2 IEEE 801.1x Security Mode 10.1.2.4 When To Use WPA Personal Table 10.3 WPA Personal Security Mode 10.1.2.5 When To Use WPA Enterprise Table 10.4 WPA Enterprise Security Mode Page 10.1.3 Does Prohibiting The Broadcast SSID Enhance Security? 10.1.4 How Does Station Isolation Protect The Network? 10.2 Configuring Security Settings 10.2.1 Broadcast SSID, Station Isolation, And Security Mode None (Plain-text) 100 10.2.2 None (Plain-text) Table 10.5 Security Settings 10.2.3 10.2.4 Static WEP Psion Teklogix 9160 G2 Wireless Gateway User Manual 103 Static WEP Table 10.6 Static WEP Security Settings Static WEP f 104 10.2.4.1 Rules To Remember For Static WEP Table 10.6 Static WEP Security Settings 10.2.4.2 Example Of Using Static WEP Figure 10.7 Setting The AP Transfer Key On The Access Point Figure 10.8 Providing A Wireless Client With A WEP Key 10.2.4.3 Static WEP With Transfer Key Indexes On Client Stations Figure 10.9 Example Of Using Multiple WEP Keys And Transfer Key Index On Client Stations 10.2.5 IEEE 802.1x Page Psion Teklogix 9160 G2 Wireless Gateway User Manual 109 WPA Personal secret 10.2.6 WPA Personal Table 10.10 IEEE 802.1x Security Settings Page Psion Teklogix 9160 G2 Wireless Gateway User Manual 111 WPA Personal Table 10.11 WPA Personal Security Settings 10.2.7 WPA Enterprise Table 10.11 WPA Personal Security Settings Psion Teklogix 9160 G2 Wireless Gateway User Manual 113 WPA Enterprise 114 Psion Teklogix 9160 G2 Wireless Gateway User Manual 115 Updating Settings 10.3 Updating Settings Page MAINTENANCE AND MONITORING 11 Page 11.1 Interfaces 11.1.1 Ethernet (Wired) Settings 11.1.2 Wireless Settings 11.2 Event Logs 11.2.1 Log Relay Host For Kernel Messages 11.2.1.1 Understanding Remote Logging 11.2.1.2 Setting Up The Log Relay Host Example Of Using Linux syslogd 11.2.1.3 Enabling Or Disabling The Log Relay Host On The Status, Events Page Table 11.1 Log Relay Host Settings Update Settings 11.2.2 Events Log 11.3 Transmit/Receive Statistics Table 11.2 Transmit/Receive Statistics 11.4 Associated Wireless Clients 11.4.1 Link Integrity Monitoring 11.5 Neighboring Access Points Page Chapter 11: Maintenance And Monitoring Neighboring Access Points 128 Psion Teklogix 9160 G2 Wireless Gateway User Manual 129 Chapter 11: Maintenance And Monitoring Neighboring Access Points Page THE ETHERNET (WIRED) INTERFACE12 Page 12.1 Navigating To Ethernet (Wired) Settings 12.1.1 Setting The DNS Name Table 12.1 Setting DNS Name 12.1.2 Enabling Or Disabling Guest Access 12.1.2.1 Configuring An Internal LAN And A Guest Network 12.1.2.2 Enabling Or Disabling Guest Access 12.1.2.3 Specifying A Virtual Guest Network Table 12.3 Specifying A Virtual Guest Network Table 12.2 Enabling/Disabling Guest Access 12.1.3 Enabling / Disabling Virtual Wireless Networks On The AP 12.1.4 Configuring LAN Or Internal Interface Ethernet Settings Psion Teklogix 9160 G2 Wireless Gateway User Manual 137 Chapter 12: The Ethernet (Wired) Interface Configuring LAN Or Internal Interface Ethernet Settings Chapter 12: The Ethernet (Wired) Interface Configuring Guest Interface Ethernet (Wired) Settings 138 12.1.5 Configuring Guest Interface Ethernet (Wired) Settings Table 12.5 Configuring Guest Interface Ethernet Settings 12.1.6 Updating Settings S ETTING Page 13.1 Navigating To Wireless Settings Chapter 13: Setting the Wireless Interface Configuring 802.11d Regulatory Domain Support 142 13.2 Configuring 802.11d Regulatory Domain Support 13.3 802.11h Regulatory Domain Control 13.4 Configuring The Radio Interface Table 13.1 Radio Interface Settings Chapter 13: Setting the Wireless Interface Configuring The Radio Interface Table 13.1 Radio Interface Settings 144 13.5 Configuring Internal Wireless LAN Settings Table 13.2 Wireless LAN Settings 13.6 Configuring Guest Network Wireless Settings Table 13.3 Guest Network Wireless Settings 13.7 Updating Settings S ETTING UP G UEST A Page 14.1 Understanding The Guest Interface 14.2 Configuring The Guest Interface 14.2.1 Configuring A Guest Network On A Virtual LAN Page 14.2.2 Configuring The Welcome Screen (Captive Portal) 14.3 Using The Guest Network As A Client 14.4 Deployment Example Figure 14.1 Dedicated Guest Connections Page Page Page 15.1 Navigating To Virtual Wireless Network Settings 15.2 Configuring VLANs Chapter 15: Configuring VLANs Configuring VLANs Table 15.1 Virtual Wireless Network Settings 158 15.3 Updating Settings Table 15.1 Virtual Wireless Network Settings Page CONFIGURING 802.11 RADIO SETTINGS16 Page 16.1 Understanding Radio Settings Page Psion Teklogix 9160 G2 Wireless Gateway User Manual 165 16.3 Configuring Radio Settings 166 Psion Teklogix 9160 G2 Wireless Gateway User Manual 167 168 16.4 Updating Settings Page Page Page 17.1 Navigating To MAC Filtering Settings 17.2 Using MAC Filtering Table 17.1 MAC Filtering Settings 17.3 Updating Settings L OAD B Page 18.1 Understanding Load Balancing 18.1.1 Identifying Imbalance: Overworked Or Under-utilized Access Points 18.1.2 Specifying Limits For Utilization And Client Associations 18.1.3 Load Balancing And QoS 18.2 Navigating To Load Balancing Settings 18.3 Configuring Load Balancing Table 18.1 Load Balancing Settings 18.4 Updating Settings Table 18.1 Load Balancing Settings QUALITY OF SERVICE (QOS) 19 Page 19.1 Understanding QoS 19.1.1 QoS And Load Balancing 19.1.2 802.11e And WMM Standards Support 19.1.3 QoS Queues And Parameters To Coordinate Traffic Flow 19.1.3.1 QoS Queues And Type Of Service (ToS) On Packets Page 19.1.3.2 EDCF Control Of Data Frames And Arbitration Interframe Spaces 19.1.3.3 Random Backoff And Minimum/Maximum Contention Windows Figure 19.1 DCF Random Backoff Timer 19.1.3.4 Packet Bursting For Better Performance 19.1.3.5 Transmission Opportunity (TXOP) Interval For Client Stations 19.1.4 802.1p And DSCP Tags Figure 19.2 Prioritization Of Network Traffic 802.1p And DSCP Tags 190 19.1.4.1 VLAN Priority Table19.2 outlines the DSC P values, the associated ID, and the priority level. Table 19.2 DSCP Tag Priorities Table19.1 outlines th e priority tags and their associated values taken from a VLAN tag. 19.1.4.2 DSCP Priority 19.2 Configuring QoS Queues 19.2.1 Configuring AP EDCA Parameters Table 19.3 AP EDCA Parameters Psion Teklogix 9160 G2 Wireless Gateway User Manual 193 Enabling/Disabling Wi-Fi Multimedia 19.2.2 Enabling/Disabling Wi-Fi Multimedia Table 19.3 AP EDCA Parameters 19.2.3 Configuring Station EDCA Parameters Table 19.4 Station EDCA Parameters Psion Teklogix 9160 G2 Wireless Gateway User Manual 195 Updating Settings 19.3 Updating Settings Table 19.4 Station EDCA Parameters To update QoS settings: 1. Navigate to the QoS tab page. 2. Configure the QoS settings as required. Page W IRELESS D ISTRIBUTION S Page 20.1 Understanding The Wireless Distribution System 20.1.1 Using WDS To Bridge Distant Wired LANs Figure 20.1 Bridged Distant Wired LANs 20.1.2 Using WDS To Extend Network Beyond The Wired Coverage Area Figure 20.2 Extended Network Beyond The Wired Coverage Area 20.1.3 Using WDS To Create Backup Links 20.2 Security Considerations Related To WDS Links 20.2.1 Understanding Static WEP Data Encryption 20.2.2 Understanding WPA (PSK) Data Encryption 20.3 Configuring WDS Settings Figure 20.3 Wireless Distribution System Settings Page Psion Teklogix 9160 G2 Wireless Gateway User Manual 205 Chapter 20: Wireless Distribution System Configuring WDS Settings Chapter 20: Wireless Distribution System Example Of Configuring A WDS Link 206 20.3.1 Example Of Configuring A WDS Link where IPAddressOfAccessPoint is the address of MyAP1 . 20.4 Updating Settings Page CONFIGURING SNMP 21 Page 21.1 Understanding SNMP Settings Figure 21.1 SNMP Running On A Network Page Chapter 21: Configuring SNMP Configuring SNMP Settings 214 21.3 Configuring SNMP Settings Table 21.2 SNMP Settings Psion Teklogix 9160 G2 Wireless Gateway User Manual 215 Chapter 21: Configuring SNMP Configuring SNMP Traps 21.3.1 Configuring SNMP Traps Table 21.2 SNMP Settings 21.3.2 Updating SNMP Settings Table 21.3 SNMP Trap Settings T HE 9160 G2 AS B ASE S Page 22.1 Overview Timeplexing And Cellular Switching 22.2 Radio Protocols 22.2.1 Adaptive Polling/Contention Protocol 22.3 Narrow Band Menus 22.3.1 Narrow Band Radio Configuration Settings Figure 22.1 Overview Of Narrow Band Radio Settings Radio Card Status 22.3.1.1 RA1001A Radio Parameters Figure 22.3 RA1001A Radio Tuning Values Figure 22.2 RA1001A Radio Parameters Page Page 22.3.3.1 Polling Protocol Parameters Number of Poll Windows Table 22.5 Number Of Poll Windows Cellular Protocol Size of Poll Windows Number of Terminals Minimum # of Windows Maximum Message Segment Size Number of Retries Collision Size Free Window Factor Message Mode Limit 22.3.3.2 Radio Parameters Sync Delay Remote Txon Active Channel 22.3.4 Connectivity Options: RRM Mode IP Port 22.4 Connectivity Menus 22.4.1 Base Station Configuration Settings Number of Configured Slave Base Stations Base Station Number 22.4.2 RRM Groups Configuration Settings Page 22.4.2.1 RRM Groups Shared Channel 22.4.2.2 Polling Protocol Parameters Number of Poll Windows Size of Poll Windows Page 22.4.2.3 Radio Parameters Sync Delay Remote Txon Active Channel 22.4.2.4 Group Parameters Combination 22.4.2.5 Remote Radio Modules Page 22.4.3.1 Radio Link Features Operate in Cellular Mode Poll ID Polling Protocol Terminal Timeout Percent Polling Protocol Terminal Timeout 22.4.3.2 Automatic Radio Address Expiration Period 22.4.3.3 Automatic Terminal Number 22.5 Hosts Page Page No Online/Offline Monitor Poll First Terminal/Last Terminal NETWORK TIME PROTOCOL SERVER 23 Page http://www.ntp.org 23.1 Navigating To Time Protocol Settings 23.2 Enabling Or Disabling A Network Time Protocol (NTP) Server Table 23.1 NTP Settings 23.3 Updating Settings BACKING UP & RESTORING CONFIGURATION 24 Page 24.1 Navigating To The APs Configuration Settings 24.2 Resetting Factory Default Configuration 24.3 Saving The Current Configuration To A Backup File 24.4 Restoring The Configuration From A Previously Saved File 24.5 Rebooting The Access Point 24.6 Upgrading The Firmware Page 24.6.1 Update 24.6.2 Verifying The Firmware Upgrade Page S Page 25.1 Physical Description 25.2 Environmental Requirements 25.3 AC Power Requirements 25.4 Power Over Ethernet Requirements 25.5 Processor And Memory 25.6 Network Interfaces 25.7 Radios Page Page A SUPPORT SERVICES AND WORLDWIDE OFFICES A.1 Technical Support A.2 Product Repairs A.3 Worldwide Offices A PORT PINOUTS AND CABLE DIAGRAMS Page B.3 RJ-45 Connector Pinouts (10BaseT/100BaseT Ethernet) 9160 G2 using AC 9160 G2 using Power over Ether- net* Contact Signal Contact Signal Page APPENDIX C SECURITY SETTINGS ON WIRELESS CLIENTS AND RADIUS SERVER SETUP Page Page C.1 Network Infrastructure And Choosing Between Built-in Or External Authentication Server C.1.1 Using The Built-in Authentication Server (EAP-PEAP) C.1.2 Using An External RADIUS Server With EAP-TLS Certificates Or EAP-PEAP C.2 Make Sure The Wireless Client Software Is Up-to-Date C.3 Accessing The Microsoft Windows Wireless Client Security Settings Page C.4 Configuring A Client To Access An Unsecure Network (No Security) C.5 Configuring Static WEP Security On A Client Table C.1 Association Settings Page Configuring Static WEP Security On A Client Table C.2 Association Settings C-10 . . . then configure WEP security on each client as follows. Connecting To The Wireless Network With A Static WEP Client Table C.2 Association Settings C.6 Configuring IEEE 802.1x Security On A Client C.6.1 IEEE 802.1x Client Using EAP/PEAP Page Psion Teklogix 9160 G2 Wireless Gateway User Manual C-13 IEEE 802.1x Client Using EAP/PEAP Table C.4 Association Settings Table C.5 Authentication Settings Table C.6 Protected EAP Properties Settings Logging On To The Wireless Network With An IEEE 802.1x PEAP Client C.6.2 IEEE 802.1x Client Using EAP/TLS Certificate http://support.microsoft.com/default.aspx?scid=kb;en-us;231881 Page Psion Teklogix 9160 G2 Wireless Gateway User Manual C-17 IEEE 802.1x Client Using EAP/TLS Certificate Table C.7 Association Settings Table C.8 Authentication Settings Table C.9 Smart Card Or Other Certificate Properties Settings Connecting To The Wireless Network With An IEEE 802.1x Client Using A Certificate C.7 Configuring WPA/WPA2 Enterprise (RADIUS) Security On A Client C.7.1 WPA/WPA2 Enterprise (RADIUS) Client Using EAP/PEAP Page WPA/WPA2 Enterprise (RADIUS) Client Using EAP/PEAP C-22 . . . then configure WPA security with PEAP authentication on each client as follows. Table C.10 Association Settings Table C.11 Authentication Settings Table C.12 Protected EAP Properties Settings Logging On To The Wireless Network With A WPA/WPA2 Enterprise (RADIUS) PEAP Client C.7.2 WPA/WPA2 Enterprise (RADIUS) Client Using EAP-TLS Certificate http://support.microsoft.com/default.aspx?scid=kb;en-us;231881 Page WPA/WPA2 Enterprise (RADIUS) Client Using EAP-TLS Certificate C-26 . . . then configure WPA security with certificate authentication on each client as follows. Logging On To The Wireless Network With A WPA Client Using A Certificate Table C.13 Association Settings Table C.15 Smart Card Or Other Certificate Properties Settings Table C.14 Authentication Settings Page Psion Teklogix 9160 G2 Wireless Gateway User Manual C-29 Table C.16 Association Settings Connecting To The Wireless Network With A WPA-PSK Client Table C.17 Authentication Settings C.9 Configuring An External RADIUS Server To Recognize The 9160 G2 Wireless Gateway Page Page Page C.10 Obtaining A TLS-EAP Certificate For A Client http://support.microsoft.com/default.aspx?scid=kb;EN-US;231881 https://IPAddressOfServer/certsrv/ Page Page C.11 Configuring RADIUS Server For VLAN tags C.11.1 Configuring A RADIUS Server Page APPENDIX D T Page D.1 Wireless Distribution System (WDS) Problems And Solutions D.2 Cluster Recovery D.2.1 Reboot Or Reset Access Point APPENDIX E G LMNOPQRSTUVWXY Z 0-9 802 802.3 802.11 802.11a 802.11a Turbo 802.11b 802.11d 802.11e 802.11f 802.11g 802.11h 802.11i 802.11j 802.11k 802.1p 802.1Q A Access Point Ad hoc Mode AES Atheros XR (Extended Range) B Basic Rate Set Beacon Bridge Broadcast Broadcast Address BSS BSSID C CCMP CGI Channel CSMA/CA D DCF DHCP DNS www.psionteklogix.com DOM DTIM Dynamic IP Address E EAP EDCF ESS Ethernet F Frame G Gateway H HTML HTTP HTTPS I IAPP http://standards.ieee.org/ IBSS IEEE IP IP Address IPSec ISP J Jitter L Latency LAN LDAP Lease Time LLC M MAC MDI and MDI-X MIB MSCHAP V2 N NAT Network Address NIC NTP O OSI P Packet Packet Loss PHY PID Page Public Key Q QoS R RADIUS RC4 Router RSSI RTP RTS S STP Subnet Mask Supported Rate Set SVP T TCP TCP/IP TKIP ToS U UDP Unicast URL http://www.devicescape.com/index.html V VLAN VPN W WAN WDS WEP Wi-Fi WINS Wireless Networking Framework WLAN WMM http://www.wi-fi.org/OpenSection/wmm.asp WPA WPA2 X I A B C 2 D E F G H I K M N O P Q R 6 S T U V W