D-Link AirPremier DWL-2210AP Manual page 145

802.11g wireless adaptive access point

Hide thumbs Also See for AirPremier DWL-2210AP:

Quick installation manual (16 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

Table of Contents

Appendix A: Conﬁguring Security Settings on Wireless Clients

Conﬁguring WPA with RADIUS Security on a Client

Wi-Fi Protected Access (WPA) with Remote Authentication Dial-In User Service

(RADIUS) is a Wi-Fi Alliance subset of IEEE 802.11i, which includes Temporal Key

Integrity Protocol (TKIP), and Counter mode/CBC-MAC Protocol IEEE. This mode

requires the use of a RADIUS server to authenticate users, and conﬁguration of user

accounts on the access point.

When you conﬁgure WPA with RADIUS security mode on the access point, you have

a choice of whether to use the Built-in Authentication Server or an external RADIUS

server that you provide.

The D-Link DWL-2210AP Built-in Authentication Server supports Protected Extensible

Authentication Protocol (EAP) known as "EAP/PEAP" and Microsoft Challenge Handshake

Authentication Protocol Version 2 (MSCHAP V2), which provides authentication for point-

to-point (PPP) connections between a Windows-based computer and network devices

such as access points.

So, if you conﬁgure the network (access point) to use security mode and choose

the Built-in Authentication server, you must conﬁgure client stations to use WPA with

RADIUS and EAP/PEAP.

If you conﬁgure the network (access point) to use this security mode with an external

RADIUS server, you must conﬁgure the client stations to use WPA with RADIUS and

whichever security protocol your RADIUS server is conﬁgured to use.

WPA with RADIUS Client Using EAP/PEAP

The Built-In Authentication Server on the D-Link DWL-2210AP uses Protected

Extensible Authentication Protocol (EAP) known as "EAP/PEAP".

• If you are using the Built-in Authentication server with "WPA with RADIUS" security

mode on the D-Link DWL-2210AP, then you will need to set up wireless clients to use

PEAP.

• Additionally, you may have an external RADIUS server that uses EAP/PEAP. If so,

you will need to (1) add the D-Link DWL-2210AP to the list of RADIUS server clients,

and (2) conﬁgure your "WPA with RADIUS" wireless clients to use PEAP.

The following example assumes you are using the Built-in Authentication server that

comes with the D-Link DWL-2210AP. If you are setting up EAP/PEAP on a client of

an AP that is using an external RADIUS server, the client conﬁguration process will

differ somewhat from this example especially with regard to certiﬁcate validation.

145

Table of Contents

D-Link AirPremier DWL-2210AP Manual page 145

Related Manuals for D-Link AirPremier DWL-2210AP

Related Products for D-Link AirPremier DWL-2210AP

Table of Contents