Table of Contents
Advertisement
EAP Communication Overview
EAP Authentication goes a step beyond just encrypting data transfers, but also requires that a set of credentials be validated before
the client (panel) is allowed to connect to the rest of the network (FIG. 127). Below is a description of this process. It is important
to note that no user intervention is necessary during this process. It proceeds automatically based on the configuration
parameters entered into the panel.
Client - Panel
(Supplicant)
EAP security method in process
FIG. 127
1.
The client (panel) establishes a wireless connection with the AP specified by the SSID.
2.
The AP opens up a tunnel between itself and the RADIUS server configured via the access point. This tunnel means that
packets can flow between the panel and the RADIUS server but nowhere else. The network is protected until authentication of
the client (panel) is complete and the ID of the client is verif ied.
3.
The AP (Authenticator) sends an "EAP-Request/Identity" message to the panel as soon as the wireless connection becomes
active.
4.
The panel then sends a "EAP-Response/Identity" message through the AP to the RADIUS server providing its identity and
specifying which EAP type it wants to use. If the server does not support the EAP type, then it sends a failure message back to
the AP which will then disconnect the panel. As an example, EAP-FAST is only supported by the Cisco server.
5.
If the EAP type is supported, the server then sends a message back to the client (panel) indicating what information it needs.
This can be as simple as a username (Identity) and password or as complex as multiple CA certificates.
6.
The panel then responds with the requested information. If everything matches, and the panel provides the proper credentials,
the RADIUS server then sends a success message to the access point instructing it to allow the panel to communicate with
other devices on the network. At this point, the AP completes the process for allowing LAN Access to the panel (possibly a
restricted access based on attributes that came back from the RADIUS server).
As an example, the AP might switch the panel to a particular VLAN or install a set of farewell rules.
Conf iguring Modero Firmware via the USB Port
The MVP-9000i needs to be configured to connect with a PC to transfer firmware via the mini-USB port. To configure the touch
panel:
Step 1: Conf igure The Panel For a USB Connection Type
1.
After the panel powers up, hold the Reset button to display the Setup page (for more information, refer to the Accessing the
Setup pages section on page 45) and open the Protected Setup page.
2.
Press System Settings to open the System Settings page.
3.
Toggle the blue Type field in the Master Connection section until the choice cycles to USB.
NOTE: ALL f ields are then disabled out and read-only. However, they still display any previous network information.
4.
Press the Back button on the touch panel to return to the Protected Setup page.
5.
Press the Reboot button both to save any changes and to restart the panel. Remember that the panel's connection type must
be set to USB prior to rebooting the panel and prior to inserting the USB connector.
6.
ONLY AFTER the unit displays the first panel page should you THEN insert the mini-USB connector into the Mini-USB Port on
the panel. It may take a minute for the panel to detect the new connection and send a signal to the PC, indicated by a green
System Connection icon.
If a few minutes have gone by and the System Connection icon still does not turn green, complete the procedures in the
following section to set up the Virtual Master and refresh the System from the Online Tree. This action sends out a request to
the panel to respond and completes the communication, turning the System Connection icon green.
7.
Repeat steps 2 and 3 to return to the System Settings page
MVP-9000i - Instruction Manual
802.1x
(EAP Over Wireless)
Authenticator
(Wireless Access Point)
LAN
Authentication Server
(RADIUS Server)
Appendix B: Wireless Technology
147
- Quick Links:
- Powering on the Mvp-9000I
Hide quick links:
Advertisement
Table of Contents
