The type of authentication you use depends on the RADIUS server or the AP. Consult your network administrator for more information.

EAP-MD5 (Message-Digest Algorithm 5)

MD5 authentication is the simplest one-way authentication method. The authentication server sends a challenge to the wireless station. The wireless station ‘proves’ that it knows the password by encrypting the password with the challenge and sends back the information. Password is not sent in plain text.

However, MD5 authentication has some weaknesses. Since the authentication server needs to get the plaintext passwords, the passwords must be stored. Thus someone other than the authentication server may access the password file. In addition, it is possible to impersonate an authentication server as MD5 authentication method does not perform mutual authentication. Finally, MD5 authentication method does not support data encryption with dynamic session key. You must configure WEP encryption keys for data encryption.

EAP-TLS (Transport Layer Security)

With EAP-TLS, digital certifications are needed by both the server and the wireless stations for mutual authentication. The server presents a certificate to the client. After validating the identity of the server, the client sends a different certificate to the server. The exchange of certificates is done in the open before a secured tunnel is created. This makes user identity vulnerable to passive attacks. A digital certificate is an electronic ID card that authenticates the sender’s identity. However, to implement EAP-TLS, you need a Certificate Authority (CA) to handle certificates, which imposes a management overhead.

EAP-TTLS (Tunneled Transport Layer Service)

EAP-TTLS is an extension of the EAP-TLS authentication that uses certificates for only the server-side authentications to establish a secure connection. Client authentication is then done by sending username and password through the secure connection, thus client identity is protected. For client authentication, EAP-TTLS supports EAP methods and legacy authentication methods such as PAP, CHAP, MS-CHAP and MS-CHAP v2.

PEAP (Protected EAP)

Like EAP-TTLS, server-side certificate authentication is used to establish a secure connection, then use simple username and password methods through the secured connection to authenticate the clients, thus hiding client identity. However, PEAP only supports EAP methods, such as EAP-MD5, EAP-MSCHAPv2 and EAP-GTC (EAP-Generic Token Card), for client authentication. EAP-GTC is implemented only by Cisco.

LEAP

LEAP (Lightweight Extensible Authentication Protocol) is a Cisco implementation of IEEE 802.1x.

135

Page 134 Page 136
Page 135
Image 135
ZyXEL Communications MWR102 EAP-MD5 Message-Digest Algorithm, EAP-TLS Transport Layer Security, Peap Protected EAP, 135
Page 134 Page 136

MWR102 specifications

ZyXEL Communications MWR102 is a versatile portable wireless router designed to provide reliable internet connectivity for mobile users. This compact device caters to individuals and small teams who require internet access on the go, making it an ideal solution for business travelers, outdoor enthusiasts, and temporary setups in various environments.

One of the standout features of the MWR102 is its 3G and 4G LTE compatibility, allowing users to connect to mobile broadband networks with ease. This ensures that users can enjoy fast internet speeds and stable connections, regardless of their location. Additionally, the router supports multiple wireless standards, including 802.11b/g/n, ensuring compatibility with a wide range of devices such as smartphones, laptops, and tablets.

The MWR102 is equipped with a built-in battery that provides up to 5 hours of operation on a single charge, making it a perfect companion for situations where access to a power source is limited. It also features a USB port that enables users to charge devices like smartphones or tablets, adding to its functionality as a portable hub. The compact design of the MWR102 makes it easy to carry in a bag or pocket, ensuring that users can stay connected wherever they go.

Another significant aspect of the MWR102 is its ease of use. The device can be set up quickly without the need for complex configurations. It also includes a simple web-based interface that allows users to manage their network settings with minimal hassle. The router supports up to 10 users at a time, making it suitable for small groups needing simultaneous access to the internet.

Security is also a priority with the MWR102, which offers WPA2 encryption to protect data transmission over the wireless network. This feature is essential for ensuring a secure connection, particularly when accessing sensitive information online.

In summary, ZyXEL Communications MWR102 is a feature-rich portable wireless router that combines 3G/4G connectivity, battery operation, and robust security in a compact design. It is an excellent choice for anyone looking for reliable internet access while on the move. Whether for business or leisure, the MWR102 ensures that staying connected is convenient and straightforward.
Top Page Image Contents