D-Link AirPremier DWL-2210AP Manual page 154

802.11g wireless adaptive access point

Hide thumbs Also See for AirPremier DWL-2210AP:

Quick installation manual (16 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

Table of Contents

Appendix A: Conﬁguring Security Settings on Wireless Clients

Conﬁguring an External RADIUS Server to Recognize

the D-Link DWL-2210AP

An external Remote Authentication Dial-in User Server (RADIUS) server running on the

network can support of EAP-TLS smart card/certiﬁcate distribution to clients in a Public

Key Infrastructure (PKI) as well as EAP-PEAP user account setup and authentication. By

external RADIUS server, we mean an authentication server external to the access point

itself. This is to distinguish between the scenario in which you use a network RADIUS

server versus one in which you use the Built-in Authentication Server on the

D-Link DWL-2210AP.

This section provides an example of conﬁguring an external RADIUS server for the

purposes of authenticating and authorizing TLS-EAP certiﬁcates from wireless clients

of a particular D-Link DWL-2210AP conﬁgured for either "WPA with RADIUS" or "IEEE

802.1x" security modes. The intention of this section is to provide some idea of what

this process will look like; procedures will vary depending on the RADIUS server you

use and how you conﬁgure it. For this example, we use the Internet Authentication

Service that

comes with Microsoft Windows 2003 server.

This document does not describe how to set up Administrative users on the RADIUS server.

In this example, we assume you already have RADIUS server user accounts conﬁgured.

You will need a RADIUS server user name and password for both this procedure and the

following one that describes how to obtain and install a certiﬁcate on the wireless client.

Please consult the documentation for your RADIUS server for information on setting up

user accounts.

The purpose of this procedure is to identify your D-Link DWL-2210AP as a "client" to the

RADIUS server. The RADIUS server can then handle authentication and authorization

of wireless clients for the AP. This procedure is required per access point. If you have

more than one access point with which you plan to use an external RADIUS server,

you need to follow these steps for each of those APs.

Keep in mind that the information you need to provide to the RADIUS server about the

access point corresponds to settings on the access point (Advanced > Security) and

vice versa. You should have already provided the RADIUS server IP Address to the

AP; in the steps that follow you will provide the access point address to the RADIUS

server. The RADIUS Key provided on the AP is the "shared secret" you will provide to

the RADIUS server.

154

Table of Contents

D-Link AirPremier DWL-2210AP Manual page 154

Related Manuals for D-Link AirPremier DWL-2210AP

Related Products for D-Link AirPremier DWL-2210AP

Table of Contents