Authorization Attributes - Nortel 2350 Reference Manual
Wlan-management software 2300 series
Hide thumbs
Also See for 2350:
- User manual (218 pages) ,
- Installation and basic configuration manual (172 pages) ,
- Quick start manual (44 pages)
Table of Contents
Advertisement
this group for that VLAN. For more information on VLANs, see
(page
196).
5
To set authorization attributes for MAC addresses in the group, go to
Otherwise, if you plan to set authorization attributes in another way, such as configuring default AAA
attribute values for the SSID the user will access, click Finish.
6
In the attribute row you want to configure, click the Attribute Value column.
See
Table 1 (page 281)
7
Type the new attribute value in lowercase characters. ACL names are case-sensitive.
8
Repeat
step 6
9
To add MAC addresses to the group, click Next.
10 Select users in the Available MAC Address Users list.
11 Click Add to move them to the Current MAC Address Users list.
12 Click Finish.
Authorization Attributes
Authorization attributes can be assigned to users in the local database or on remote servers. The attributes, which include
access control list (ACL) filters, VLAN membership, encryption type, session time-out period, and other session charac-
teristics, let you control how and when users access the network. When a user or group is authenticated, the local
database or RADIUS server passes the authorization attributes to WSS Software to characterize the user's session.
Table 1
lists the user attributes and their value ranges. You can specify these attributes in lowercase when using the CLI.
Table 1: Authentication Attributes for Local Users
Attribute
encryption-type
Configuring Authentication, Authorization, and Accounting Parameters 281
for a description of user attributes and their values.
and
step 7
for each attribute value you want to change.
Description
Type of encryption required
for access by the client.
Clients who attempt to use
an unauthorized encryption
method are rejected.
Note: Encryption-Type is a
Nortel vendor-specific
attribute (VSA). The
vendor ID is 562, and the
vendor type is 243.
Nortel WLAN—Management Software 2300 Series Reference Guide
"Viewing and Configuring VLANs"
Valid Value(s)
One of the following numbers that identifies an
encryption algorithm:
•
1—AES_CCM (Advanced Encryption
Standard using Counter with CBC-MAC)
•
2—Reserved
•
4—TKIP (Temporal Key Integrity Protocol)
•
8—WEP_104 (the default) (Wired-Equivalent
Privacy protocol using 104 bits of key
strength)
•
16—WEP_40 (Wired-Equivalent Privacy
protocol using 40 bits of key strength)
•
32—NONE (no encryption)
•
64—Static WEP
In addition to these values, you can specify a sum
of them for a combination of allowed encryption
types. For example, to specify WEP_104 and
WEP_40, use 24.
step
6.
Advertisement
Table of Contents
