Table of Contents
Advertisement
5.1.1.1
User Authentication
The AP can validate user login credentials using a third-party RADIUS server. The following
authentication types are supported: WPA / WPA2, 802.1X, and MAC.
5.1.1.1.1
WPA / WPA2 and 802.1X Authentication
Full support is provided for users with 802.1X or WPA / WPA2 client software, and 802.1X client
software that uses the following:
EAP-TLS: Extensible Authentication Protocol Transport Layer Security.
EAP-TTLS: Extensible Authentication Protocol Tunnelled Transport Layer Security.
PEAP: Protected Extensible Authentication Protocol.
NOTE
For security reasons, use of 802.1X without enabling dynamic WEP encryption is not
recommended.
5.1.1.1.2
MAC-based Authentication
Devices can be authenticated based on their MAC address. This is useful for authenticating devices
that do not have a web browser (cash registers, for example). As soon as the devices's MAC address
appears on the network, the MAP attempts to authenticate them.
5.1.1.2
Using More Than One Authentication Type in a Virtual
Network
For added flexibility, you can enable both the 802.1X and Virtual Networks-based MAC
authentication at the same time. The following table shows the results for all authentication
scenarios.
NOTE
MAC authentication always takes place first. If it fails, 802.1X is then attempted.
BreezeMAX Wi² and BreezeACCESS Wi² System Manual
Figure 5-2: Stand-alone Deployment
.
Key Concepts
71
Advertisement
Table of Contents
