Introduction

Authentication Service (AS)

Provides the authentication ticket containing information about the client and the session key used with the KDC.

Ticket Granting Ticket Service (TGS)

Permits devices to communicate with a service (this could be any application or service such as the AP RF services).

The default expiration time of a ticket is 12 hours (for the AP) and is not user configurable. If the lifetime of a ticket in the KDC's security policy is different than what is requested, the KDC selects the shortest expiration time between the two. Each time a ticket is generated a new session and WEP encryption key is generated.

The KDC resides on the Kerberos server (the Kerberos server can also be the DNS server). In addition to the KDC, a Kerberos Setup Service (KSS) is installed on the Kerberos server. The KSS runs as a client on the KDC server when initially launched. The KSS can be used to administer Spectrum24 devices authorized on the network. For example, an AP on the Access Control List (ACL) is lost or stolen. The KSS marks the AP (using the MAC address of the AP) as not authorized and notifies the administrator if the missing AP appears elsewhere on the network attempting authentication. All clients (MUs), KDC and services (APs) participating in the Kerberos authentication system must have their internal clocks synchronized within a specified maximum amount of time (known as clock skew). The KSS uses Network Time Protocol (NTP) or the system clock on the Kerberos server to provide clock synchronization (timestamp) between the KDC and APs as part of the authentication process. Clock synchronization is essential since the expiration time is associated with each ticket. If the clock skew is exceeded between any of the participating hosts, requests are rejected.

Additionally, the KSS provides a list of authorized APs and other security setup information that the KDC uses to authenticate clients. When setting up KSS, assign APs an ESSID as the User ID to authenticate with the KDC.

28

AP-4131 Access Point Product Reference Guide

Page 38
Image 38
Symbol Technologies AP-4131 manual Introduction

AP-4131 specifications

The Symbol Technologies AP-4131 is a high-performance access point designed for businesses seeking reliable wireless networking solutions. With its robust features and advanced technologies, the AP-4131 paves the way for seamless connectivity in a variety of environments, including offices, warehouses, and retail spaces.

One of the standout features of the AP-4131 is its support for dual-band operation, enabling it to efficiently transmit and receive data across both 2.4 GHz and 5 GHz frequency bands. This dual-band functionality minimizes interference and allows for optimal performance even in densely populated areas with multiple wireless devices.

The AP-4131 employs the 802.11a/b/g/n standards, offering data rates of up to 300 Mbps. This capability ensures that users experience fast and reliable wireless connectivity, whether for bandwidth-intensive applications or simple web browsing. Additionally, its MIMO (Multiple Input Multiple Output) technology significantly enhances the signal quality and overall network performance, allowing more devices to connect simultaneously without degrading performance.

In terms of security, the AP-4131 provides advanced encryption protocols, including WPA2, to safeguard data transmission and mitigate the risk of unauthorized access. This emphasis on security is vital for organizations handling sensitive information and needing to protect their networks from potential threats.

The device is also equipped with Power over Ethernet (PoE) support, simplifying installation by allowing power and data to use a single cable. This feature enables flexible placement of the access point without the need for separate power sources, making it convenient for deployment in various locations.

Moreover, the AP-4131 features built-in management capabilities, allowing IT administrators to monitor and manage network performance easily. Its centralized management system facilitates the quick configuration of access points across the organization, streamlining maintenance and troubleshooting processes.

Another notable characteristic of the AP-4131 is its rugged design, built to withstand harsh environmental conditions. This makes it suitable for outdoor deployments or areas subject to extreme temperatures and conditions.

In summary, the Symbol Technologies AP-4131 is an advanced access point that combines dual-band performance, robust security features, and flexible deployment options, making it a valuable asset for businesses aiming to enhance their wireless networking capabilities. Its combination of cutting-edge technologies and reliable performance positions it as a top choice for organizations looking to build a strong, secure, and efficient wireless infrastructure.