Manuals / ZyXEL Communications / Computer Equipment / Network Card

ZyXEL Communications G-162 Ieee, 7 WPA/WPA2 with RADIUS Application Example, EAP Authentication

Models: G-162 G-360

1 72

Download 72 pages 44.09 Kb

Page 31

Figure 2-7 WPA/WPA2 with RADIUS Application Example

ZyXEL G-162/G-360 User’s Guide

Figure 2-7 WPA/WPA2 with RADIUS Application Example

2.2.4 IEEE 802.1x

The IEEE 802.1x standard outlines enhanced security methods for both the authentication of wireless stations and encryption key management. Authentication can be done using an external RADIUS server.

EAP Authentication

EAP (Extensible Authentication Protocol) is an authentication protocol that runs on top of the IEEE802.1x transport mechanism in order to support multiple types of user authentication. By using EAP to interact with an EAP-compatible RADIUS server, an access point helps a wireless station and a RADIUS server perform authentication.

The type of authentication you use depends on the RADIUS server and an intermediary AP(s) that supports IEEE802.1x. The ZyXEL G-162/G-360 supports EAP-TLS, EAP-TTLS and EAP-PEAP.

For EAP-TLS authentication type, you must first have a wired connection to the network and obtain the certificate(s) from a certificate authority (CA). A certificate (also called digital IDs) can be used to authenticate users and a CA issues certificates and guarantees the identity of each certificate owner.

WLAN Networking

2-21

Image 31

ZyXEL Communications G-162, G-360 manual Ieee, 7 WPA/WPA2 with RADIUS Application Example, EAP Authentication

Contents

Users Guide ZyXEL G-162/G-360 User’s Guide802.11b/g Wireless LAN Adapter ZyXEL G-162/G-360Trademarks CopyrightCopyright 2005 by ZyXEL Communications Corporation DisclaimerOnline Registration ZyXEL Limited WarrantyPart 15, Class B FCC CertificationFederal Communications Commission FCC Interference Statement Customer Support Chapter 2 Wireless LAN Networking Table of Contentsviii 2-15ZyXEL G-162/G-360 User’s Guide Table Of ContentsRelated Documentation PrefaceAbout This Users Guide Syntax ConventionsWireless Signal Graphics Icons KeyPreface Wireless Access PointPage 1.1 About Your ZyXEL G-162/G-360 1.2 ZyXEL G-162/G-360 Hardware and Utility Installation1.3 Using the ZyXEL Utility to Configure Your Network Chapter Getting StartedDouble-clicking on the Z icon will display the following ZyXEL utility window 1.3.1 Site Survey Rescan Use Windows Zero ConfigurationConfigure Connectshould use the same SSID whatever your choice is e. Band shows you 802.11b and 802.11g on the 2.4GHz 2.2 Enable CCX Mode refers the Cisco Compatible Extension, which is the certificate-based authentications EAP-TLS, PEAP and LEAP using dynamic keys for data encryption. Check this box will enable PEAP-MS-CHAP-V2, PEAP-GTC, TLS and LEAP. Please see your MIS administrator for these settings when you are about to enable one of these mode. Please refer to Ch4-Configuring Wireless Security for detail WEP-802.1x and WPA-802.1x authentication information. Also, please see the User Guide of Funk Odyssey software for more WPA-enterprise security settings Advanced Mode This screen Bottom Red Rectangle allows you to make changes to the default ways the card operates including advanced 802.11 settings. Unless you are an advanced user and have deep knowledge about each property on this page, it is recommended that you leave them at the default settings. For more information, please refer to section 2.3 and 1.3.2 Profile Active Profiles Profile Pool1.3.3 Link Info Table 1.2 Link Info supporting OTIST, you must also make the same change hereReceive 1-13 TransmitConnection Information Network InformationZyXEL Website 1.3.4 About2.1.1 SSID Chapter Wireless LAN Networking2.1.4 Wireless Network Application 2.1 OverviewFigure 2-2 BSS Example Ad-Hoc IBSSFigure 2-1 IBSS Example type and use the same SSID and channel Infrastructure BSSFigure 2-3 Infrastructure Network Example 2.1.5 RoamingFigure 2-5 Wireless LAN Security Levels 2.2 Wireless LAN SecurityFigure 2-4 Roaming Example 2.2.2 WPA-PSK and WPA2-PSK Application Example 2.2.1 Data Encryption with WEP2.2.3 WPA and WPA2 with RADIUS Application Example Figure 2-6 WPA-PSK/WPA2-PSK Authentication2.2.4 IEEE EAP AuthenticationFigure 2-7 WPA/WPA2 with RADIUS Application Example 2.4 RTS/CTS Threshold 2.3 Fragmentation ThresholdFigure 2-8 RTS Threshold 2.5 OTIST One Touch Intelligent Security Technology The wireless adapter must also support OTIST and have OTIST enablednegatively affect the throughput performance Page ZyXEL G-162/G-360 User’s Guide Chapter MaintenanceMaintenance 3.1 The About ScreenAbout 3.2 Uninstalling the ZyXEL Utility3.3 Upgrading the ZyXEL Utility network configurationPage 4.1 Configuring Security Chapter Configuring Wireless SecurityAP/Router, it will fail to connect the network Wireless Security 4.2 Configuring WEP1. Select WEP under Security 2. Select Auto under Authentication Mode 3. Click Configure. You will then see the screen below6. Key Format Select either Hex or ASCII to enter the WEP key 4.3 Configuring WPA-PSK 4. Enter the same pass phrase used to configure WPA-PSK on your access point Wireless Security 4.4 Configuring WPA2-PSKZyXEL G-162/G-360 User’s Guide ZyXEL G-162/G-360 User’s Guide Wireless Security4.5 Configuring WEP-802.1x Wireless Security 4.5.1 Configuring WEP-802.1x EAP-LEAPZyXEL G-162/G-360 User’s Guide ZyXEL G-162/G-360 User’s Guide 4-10b. Enter login name and password under the Login Name and Password Wireless SecurityZyXEL G-162/G-360 User’s Guide 4.5.2 Configuring WEP-802.1x EAP-PEAP-MS-CHAPv24-11 Wireless Security8. Select a certificate from the list, and click OK ZyXEL G-162/G-360 User’s Guide 4.5.3 Configuring WEP-802.1x PEAP-GTC4-13 Wireless SecurityZyXEL G-162/G-360 User’s Guide 4-14b. Enter login name and password under the Login Name and Password Wireless SecurityZyXEL G-162/G-360 User’s Guide 4.5.4 Configuring WEP-802.1x EAP-TLS4-15 Wireless SecurityWireless Security 4-16ZyXEL G-162/G-360 User’s Guide 4.6 Configuring WPA-802.1x 9. Click Configure and then you will see the screen below 4.6.1 Configuring WPA-802.1x EAP-LEAP4-18 7. Select WPA under Security 8. Select LEAP under Authentication ModeZyXEL G-162/G-360 User’s Guide 4-19d. Enter login name and password under the Login Name and Password Wireless Security11. Click Configure and then you will see the screen below 4.6.2 Configuring WPA-802.1x EAP-PEAP-MS-CHAPv24-20 10. Select PEAP MS-CHAP-V2 under Authentication protocol16. Select a certificate from the list, and click OK 6. Click Configure and then you will see the screen below 4.6.3 Configuring WPA-802.1x PEAP-GTC4-22 5. Select PEAP-GTC under Authentication ModeZyXEL G-162/G-360 User’s Guide 4-23b. Enter login name and password under the Login Name and Password Wireless SecurityZyXEL G-162/G-360 User’s Guide 4.6.4 Configuring WPA-802.1x EAP-TLS4-24 Wireless SecurityWireless Security 4-25ZyXEL G-162/G-360 User’s Guide ZyXEL G-162/G-360 User’s Guide 4.6.5 Configuring WPA2-802.1x EAP-TLS4-26 Wireless SecurityWireless Security 4-27ZyXEL G-162/G-360 User’s Guide Page Troubleshooting Chapter Troubleshooting5.1 Problems Starting the ZyXEL Utility Program Table 5-1 Troubleshooting Starting ZyXEL Utility ProgramTable 5-2 Troubleshooting LED Status 5.2 Problems with LED Status5.3 Problems with the Link Status 5.4 Problems with Security SettingsZyXEL G-162/G-360 User’s Guide 5.5 Problems Communicating With Other ComputersTable 5-5 Troubleshooting Communication Problems TroubleshootingPage EAP-TLS Transport Layer Security Appendix A Types of EAP AuthenticationEAP-TTLS Tunneled Transport Layer Service EAP-MD5 Message-Digest AlgorithmLEAP Comparison of EAP Authentication Types