Advanced Configuration; Configuring Advanced Security 802.1X Options; Basic Requirements For 802.1X - NETGEAR ME103 - 802.11b ProSafe Wireless Access Point User Manual

This chapter describes how to configure the advanced features of your ME103 802.11b ProSafe
Wireless Access Point. These features can be found under the Advanced heading in the main
menu.

Configuring Advanced Security 802.1x Options

The default advanced wireless security settings are for 802.1x to be turned off. For an overview of
802.1x, please see "Understanding 802.1x Port Based Network Access Control" on page
ME103 802.11b ProSafe Wireless Access Point supports these two 802.1x options:
• EAP-MD5. EAP-MD5 uses a MD5 encryption authentication protocol, but the challenges and
responses are sent as EAP messages. Data encryption can be off, or WEP-based.
• EAP-TLS. EAP-TLS provides strong security through mutual authentication and automatic
key exchange between the two endpoints with periodic updates by means of public-key
cryptography through a certificate server and a Remote Authentication Dial-In User Service
(RADIUS) server.
The ME103 configuration procedures for these two options are presented below.

Basic Requirements for 802.1x

802.1x needs the following three parts:
Authenticator: ME103
1.
Authentication Server: a RADIUS server.
2.
Microsoft Internet Authentication Server (IAS) provides RADIUS functionality. There are
other vendors also support RADIUS for 802.1x.
Supplicant: Windows 2000 with the 802.1x client patch applied (SP4 802.1x client) or
3.
Windows XP.

Advanced Configuration

Advanced Configuration
Chapter 4
B-9. The
4-1