Iv-1-2 Certificate Management - Draytek VigorAP 903 User Manual

802.11ac access point

Hide thumbs Also See for VigorAP 903:

Quick start manual (17 pages)

Quick start manual (16 pages)

Quick start manual (16 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

Table of Contents

Item

Enable RADIUS Server

Authentication Type

Users Profile

Authentication Client

Backup

Restore

After finishing this web page configuration, please click OK to save the settings.

IV-1-2 Certificate Management

When the local client and remote server are required to make certificate authentication (e.g., Radius

EAP-TLS authentication) for wireless connection and avoiding the attack of MITM, a trusted root certificate

authority (Root CA) will be used to authenticate the digital certificates offered by both ends.

However, the procedure of applying digital certificate from a trusted root certificate authority is

complicated and time-consuming. Therefore, Vigor AP offers a mechanism which allows you to generate

root CA to save time and provide convenience for general user. Later, such root CA generated by DrayTek

server can perform the issuing of local certificate.

Root CA can be deleted but not edited. If you want to modify the settings for a Root CA, please delete the

one and create another one by clicking Create Root CA.

Description

Check it to enable the internal RADIUS server.

Let the user to choose the authentication method for RADIUS server.

Radius EAP Type – There are two types, PEAP and EAP TLS, offered for

selection. If EAP TLS is selected, a certificate must be installed or must be

ensured to be trusted.

Username – Type a new name for the user profile.

Password – Type a new password for such new user profile.

Confirm Password – Retype the password to confirm it.

Configure

Add – Make a new user profile with the name and password specified



on the left boxes.

Cancel – Clear current settings for user profile.



Delete Selected – Delete the selected user profile (s).

Delete All – Delete all of the user profiles.

This internal RADIUS server of VigorAP 903 can be treated as the external

RADIUS server for other users. Specify the client IP and secret key to make

the wireless client choosing VigorAP 903 as its external RADUIS server.

Client IP – Type the IP address for the user to be authenticated by

VigorAP 903 when the user tries to use VigorAP 903 as the external

RADIUS server.

Secret Key – Type the password for the user to be authenticated by

VigorAP 903 while the user tries to use VigorAP 903 as the external

RADIUS server.

Confirm Secret Key – Type the password again for confirmation.

Configure

Add – Make a new client with IP and secret key specified on the left



boxes.

Cancel – Clear current settings for the client.



Delete Selected – Delete the selected client(s).

Delete All – Delete all of the clients.

Click it to store the settings (RADIUS configuration) on this page as a file.

Click it to restore the settings (RADIUS configuration) from an existed file.

113

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

Iv-1-2 Certificate Management - Draytek VigorAP 903 User Manual

IV-1-2 Certificate Management

Hide quick links:

Related Manuals for Draytek VigorAP 903

Related Content for Draytek VigorAP 903

Table of Contents