Chapter 6: System Security; Radius Server - Cisco WAP551 Administration Manual

System Security

RADIUS Server

NOTE
Cisco Small Business WAP551 and WAP561 Wireless-N Access Point
This chapter describes how to configure security settings on the WAP device device.
It contains these topics:
• RADIUS Server
• 802.1X Supplicant
• Password Complexity
• WPA-PSK Complexity
Several features require communication with a RADIUS authentication server. For example,
when you configure Virtual Access Points (VAPs) on the WAP device, you can configure
security methods that control wireless client access (see the
and WPA Enterprise security methods use an external RADIUS server to authenticate clients.
The MAC address filtering feature, where client access is restricted to a list, may also be
configured to use a RADIUS server to control access. The Captive Portal feature also uses
RADIUS to authenticate clients.
You can use the Radius Server page to configure the RADIUS servers that are used by these
features. You can configure up to four globally available IPv4 or IPv6 RADIUS servers;
however, you must select whether the RADIUS client operates in IPv4 or IPv6 mode with
respect to the global servers. One of the servers always acts as a primary while the others act as
backup servers.
In addition to using the global RADIUS servers, you can also configure each VAP to use a
specific set of RADIUS servers. See the
To configure global RADIUS servers:
Radio
Networks page.
6
page). The Dynamic WEP
105