Authentication | SMC Networks 2.4GHz/5GHz guide

Authentication

Example

AP#show radius

Radius Server Information

========================================

IP	: 192.168.1.25
Port	: 181
Key	: *****
Retransmit	:	5
Timeout	:	10

========================================

Radius Secondary Server Information

========================================

IP	: 0.0.0.0
Port	: 1812
Key	: *****
Retransmit	:	3
Timeout	:	5

========================================

AP#

Authentication

The access point supports IEEE 802.1x access control for wireless clients. This control feature prevents unauthorized access to the network by requiring a 802.1x client application to submit user credentials for authentication. Client authentication is then verified via by a RADIUS server using EAP (Extensible Authentication Protocol) before the access point grants client access to the network.

7-49

Image 219

SMC Networks 2.4GHz/5GHz manual Authentication

Contents

Easy way to make all your network connections Trademarks Copyright Limited Warranty Limited Warranty FCC Radiation Exposure Statement Federal Communication Commission Interference Statement EC Conformance Declaration Wireless 5 GHz Band Statements Compliances Countries Operation Using 5 GHz Channels in the European Community Vii Power Cord Safety Safety Compliance Cord set must be UL-approved and CSA certified France et Pérou uniquement De type HO3VVF3GO.75 minimum Xii Table of Contents Initial Configuration System ConfigurationCommand Line Interface Table of Contents Xvi Xvii Xviii Glossary Index Table of Contents Chapter Introduction Introduction Package Checklist Package Checklist Hardware Description Ethernet Port Hardware DescriptionIntegrated High-Gain Antenna External Antenna Options Power Injector Module Receive Signal Strength Indicator Rssi BNC Connector Grounding PointWall- and Pole-Mounting Bracket Kits Indoor Outdoor System Configuration Features and Benefits Features and Benefits Feature Parameter Default System Defaults Null System Defaults Ssid SMC System Defaults Introduction Access Point Topologies Network Configuration Ad Hoc Wireless LAN no Access Point or Bridge Network Configuration Infrastructure Wireless LAN Access Point Topologies Infrastructure Wireless LAN for Roaming Wireless PCs Bridge Link Topologies Bridge Link Topologies Point-to-Multipoint Configuration Point-to-Point Configuration Bridge Link Topologies Network Configuration Radio Path Planning Bridge Link Planning Bridge Link Planning Antenna Height Radio Path Planning 31 ft 9.5 m 29 ft 8.8 m 60 ft 18.3 m Antenna Position and Orientation Radio Interference Weather Conditions Grounding Ethernet Cabling Hardware Installation Mount the Unit Testing Basic Link OperationHardware Installation Using the Pole-Mounting Bracket Mount the Unit Mounting on Larger Diameter Poles Using the Wall-Mounting Bracket Connect External Antennas Connect External Antennas SMC2888W-M Connect the Power Injector Connect Cables to the UnitConnect Cables to the Unit Hardware Installation Align Antennas Align Antennas Rssi Rssi BNC Hardware Installation Initial Configuration Initial Setup through the CLI Initial ConfigurationInitial Configuration Steps Initial Setup through the CLI Using the Web-based Management Setup Wizard Using the Web-based Management Setup Wizard Initial Configuration Using the Web-based Management Setup Wizard Initial Configuration Using the Web-based Management Setup Wizard Initial Configuration Using the Web-based Management Setup Wizard Initial Configuration System Configuration System Configuration Advanced Configuration Advanced Configuration Rssi System Identification Advanced Configuration Disabled TCP / IP Settings System Configuration Advanced Configuration Radius Advanced Configuration System Configuration PPPoE Settings System Configuration Advanced Configuration Authentication Advanced Configuration System Configuration Advanced Configuration System Configuration Advanced Configuration System Configuration Local Remote Supported Filter Control Number Radius Attribute Value System Configuration Advanced Configuration Snmp Advanced Configuration System Configuration Changing the Password Administration Upgrading Firmware Advanced Configuration System Configuration Advanced Configuration Enabling System Logging System Log Error Level Description Configuring Sntp Advanced Configuration +8 TAIPEI, Beijing Wireless Distribution System WDS System Configuration Bridge System Configuration Wlana Spanning Tree Protocol STP System Configuration Advanced Configuration System Configuration Advanced Configuration System Configuration Wlana Rssi Advanced Configuration Radio Interface Radio Interface Radio Settings a 802.11a Mode Radio Interface System Configuration Radio Interface 100 Radio Settings G 802.11g System Configuration Tkip Wired Equivalent Privacy WEP Security Bridge Mode Radio Interface Advanced Encryption Standard AES Radio Interface BIT WEP Encryption Interface wireless a command BIT AES Encryption Security Access Point Mode WEP Wired Equivalent Privacy WEP Radio Interface System Configuration WEP only WEP over Command Show interface wireless a or show interface wireless g Radio Interface Wi-Fi Protected Access WPA Radio Interface System Configuration Radio Interface System Configuration Configuration settings for WPA are summarized below Command not shown in example Status Information Status InformationAP Status System Configuration Native Vlan Iapp State Station Status 121 Event Logs Status Information System Configuration Using the Command Line Interface Accessing the CLITelnet Connection Command Line Interface Keywords and Arguments Entering CommandsEntering Commands Command Completion Showing Commands Getting Help on Commands Negating the Effect of Commands Using Command HistoryPartial Keyword Lookup Exec Commands Understanding Command Modes Configuration Commands Keystroke Function Command Line Processing Command Groups Command Groups General Commands ConfigureDefault Setting General Commands EndExit Command Usage PingSyntax Syntax Reset board configuration Reset Show line Show history System Management Commands System Management Commands Country countrycode Country Default Setting Syntax Prompt string no prompt Prompt Syntax Username name System nameUsername Syntax System name name no system name Syntax Ip http port port-numberno ip http port PasswordSyntax Password password no password Ip http port Default Setting Command Mode Syntax Ip http server no ip http server Default SettingIp http server Show system System Logging Commands System Logging CommandsShow version Syntax Logging on no logging on Default Setting Logging onLogging host Syntax Logging console no logging console Default Setting Logging consoleLogging level Syntax Logging facility-type type Logging facility-type Show logging System Clock Commands System Clock Commands Sntp-server ipSyntax Sntp-server ip 1 2 ip Sntp-server enable Sntp-server daylight-saving Sntp-server date-time Syntax Sntp-server timezone hours Sntp-server timezone TAIPEI, Beijing Show sntp Snmp-server community Snmp Commands Snmp Commands Snmp-server contactSyntax Snmp-server contact string no snmp-server contact Snmp-server enable server No snmp-server host Snmp-server host Syntax Snmp-server location text no snmp-server location Snmp-server location Flash/File Commands Flash/File CommandsShow snmp Syntax Bootfile filename Bootfile Copy Syntax Copy ftp tftp file copy config ftp tftp Delete Dir File information is shown below Radius Client Radius ClientRadius-server address Syntax Radius-server secondary port portnumber Radius-server port Syntax Radius-server secondary retransmit numberofretries Radius-server keyRadius-server retransmit Syntax Radius-server secondary key keystring Radius-server timeout Syntax Radius-server secondary timeout numberofsecondsShow radius Authentication Authentication Enables the feature Syntax 802.1x supported required no 802.1x Syntax 802.1x broadcast-key-refresh-rate rate 802.1x broadcast-key-refresh-rate Syntax 802.1x session-key-refresh-rate rate 802.1x session-key-refresh-rate Default 802.1x session-timeout 802.1x supplicant Syntax Address filter default allowed denied Address filter default Syntax Address filter entry mac-addressallowed denied Address filter entry Syntax Address filter delete mac-address Address filter delete Syntax Mac-authentication server local remote Mac-authentication server Mac-authentication session-timeout Show authenticationSyntax Mac-authentication session-timeout seconds WDS Commands WDS Commands Wds channel Wds mac-addressSyntax Wds channel a g none Syntax No wds enable port-id Wds enable Show wds Bridge Commands Bridge Commands Bridge stp-bridge spanning-tree Bridge timeout Bridge stp-bridge forward-time Bridge stp-bridge hello-time Seconds Time in seconds. Range 6-40 seconds Bridge stp-bridge max-age Bridge stp-bridge priority Bridge stp-port path-cost Bridge stp-port priority Bridge stp-port portfast Bridge stp-port spanning-disabled Show bridge Syntax Show bridge Command Mode Filtering Commands Syntax Filter local-bridge no filter local-bridge DefaultFilter local-bridge Filtering Commands Syntax Filter ap-manage no filter ap-manage DefaultFilter ap-manage Filter ethernet-type enable Filter ethernet-type protocol Show filters PPPoE Commands PPPoE Commands Syntax Ip pppoe no ip pppoe Default SettingIp pppoe Syntax Pppoe ip allocation mode automatic static Pppoe ip allocation mode Pppoe ipcp dns Syntax Pppoe ipcp dns no pppoe ipcp dns Default Setting Syntax Pppoe lcp echo-interval interval Pppoe lcp echo-interval Pppoe lcp echo-failure Syntax Pppoe lcp echo-failure timeout Syntax Pppoe remote ip ip-address Pppoe local ipPppoe remote ip Syntax Pppoe local ip ip-address Syntax Pppoe username username Pppoe username Syntax Pppoe password string Pppoe password Pppoe service-name Syntax Pppoe service-name stringPppoe restart Show pppoe Interface ethernet Ethernet Interface CommandsEthernet Interface Commands Syntax Interface ethernet Default Setting Dns server Ip address ip-address netmask gateway no ip address Ip address Ip dhcp Syntax Ip dhcp no ip dhcp Default Setting Shutdown Syntax Shutdown no shutdown Default Setting Show interface ethernet Syntax Show interface ethernet Default Setting Wireless Interface Commands Wireless Interface Commands Dtim-period Configures the rate at which stations Syntax Description string no description Interface wirelessSyntax Interface wireless a Description Ssid string Ssid Syntax Speed speed Syntax Closed-system no closed-system Default SettingClosed-system Speed Syntax Channel channel auto Channel Turbo Syntax Dtim-period interval Beacon-intervalDtim-period Syntax Beacon-interval interval Syntax Fragmentation-length length Fragmentation-length Syntax Rts-threshold threshold Rts-threshold Transmit-powersignal-strength Transmit-power Syntax Max-association count Max-association Syntax Authentication open shared Encryption 111 No key wep index wdsaes Key Syntax Transmit-key index Transmit-key Syntax Multicast-cipher AES Tkip WEP Multicast-cipher 115 Syntax Wpa-clients required supported Wpa-clients Syntax Wpa-mode dynamic pre-shared-key Wpa-mode Syntax Wpa-preshared-key type value Wpa-preshared-key Syntax Wpa-psk-type type Wpa-psk-type Syntax Show interface wireless a g Show interface wireless OFF Show station Iapp Commands IappSyntax Iapp no iapp Vlan Commands Vlan Commands Syntax Vlan enable no vlan Default Command DescriptionVlan Syntax Native-vlanid vlan-id Native-vlanid 126 Appendix a Troubleshooting Troubleshooting Maximum Clients General SpecificationsMaximum Channels Outdoor Data Rates Specifications General Specifications DBi Integrated Panel Antenna Specifications Antenna Specifications Specifications Twisted-Pair Cable Assignments Appendix C Cables and Pinouts 10/100BASE-TX Pin Assignments Cables and Pinouts Straight-Through Wiring Crossover WiringTwisted-Pair Cable Assignments Pin DIN Ethernet Port Pinout Pin DIN Connector Pinout Pin DIN to RJ-45 Cable Wiring Pin DIN Connector Pinout Cables and Pinouts Access Point AuthenticationBackbone Glossary Ieee 802.11a File Transfer Protocol FTPHypertext Transfer Protocol Http Internet Control Message Protocol Icmp RTS Threshold Service Set Identifier SsidOpen System Orthogonal Frequency Division Multiplexing Odfm Trivial File Transfer Protocol Tftp Simple Network Time Protocol Sntp Glossary-6 Index Index Index-3 Index-4 Page SMC2888W-S SMC2888W-M