Table of Contents
Advertisement
Chapter 11 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -Configuration parameters - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Chapter 11
Important: Important: The total number of wireless client stations that can be
connected to the CN3000 at the same time across all WLAN profiles is 255.
Important: Important: Only 100 customers can be logged into the public access
interface at one time. Customers that are not logged in can still make use of the wireless
network to access public resources (i.e., those resources specified in the white list or
with an access list "accept").
Broadcast WLAN name (SSID)
When this option is enabled, the CN3000 will broadcast its wireless network name
(SSID) of this profile to all client stations. Most wireless adapter cards have a setting
that enables them to automatically discover access points that broadcast their names
and automatically connect to the one with the strongest signal.
If you disable this option, client stations will have to specify the network name you enter
for WLAN name when they connect.
Permit traffic exchange between wireless client stations
Enable this option to allow wireless client stations to exchange data with one another.
By default, the CN3000 blocks all traffic between wireless client stations.
HTML-based
This defines settings for users who log in via the CN3000's public access interface. If
you disable this option, the public access interface Login page will not be displayed and
user logins
these users will not be able to login.
If you enable both Local and RADIUS options, the Local user list is checked first.
Local authentication
User logins are authenticated with the list defined on the Security > Users page.
RADIUS authentication
User logins are authenticated via a RADIUS server.
RADIUS profile
RADIUS profile to use to validate logins.
Authentication timeout
Logins are refused if the RADIUS server does not respond within this time period.
RADIUS
Enable this option to have the CN3000 generate a RADIUS accounting request ON/OFF
for each user authentication. The CN3000 respects the RADIUS interim-update-interval
accounting
attribute if present inside the RADIUS access accept of the authentication.
Wireless
Select the type of protection you want to use for the wireless network.
Important: 802.1x and WPA sessions are terminated by the CN3000. This means that
protection
the CN3000 handles all authentication tasks and must communicate with the RADIUS
server to validate login credentials. Therefore, the RADIUS server must be reachable.
WPA
This option enables support for users with WPA client software.
Key source
This option determines how the TKIP keys are generated.
• RADIUS: The CN3000 obtains the MPPE key from the RADIUS server. This is a
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 220 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
dynamic key that changes each time the user logs in and is authenticated. The MPPE
key is used to generate the TKIP keys that encrypt the wireless data stream. Select
the appropriate RADIUS server.
- Quick Links:
- Introduction
- Wireless Radio
- Logging in
- Reset Button
Hide quick links:
Advertisement
Table of Contents
