Table of Contents
Advertisement
Table -
General Policies (Continued)
Parameter
Allow AAA
Override
External Policy
Validation
Client Exclusion
DHCP Server
(Override)
DHCP Addr
Assignment
Interface Name
11/5/04
90-100831-300 Rev 2Alcatel OmniAccess Wireless Access Point Quick Installation Guide 34
Enable or disable AAA override for global WLAN parameters.
• When AAA Override is enabled, and a client has conflicting AAA and Alcatel
OmniAccess Switch or Appliance WLAN authentication parameters, client
authentication is performed by the AAA server. As part of this authentication,
the Alcatel OmniAccess Operating System will move clients from the default
Alcatel WLAN VLAN to a VLAN returned by the AAA server and predefined in
the Alcatel OmniAccess Switch or Appliance Interface configuration (only
when configured for MAC filtering, 802.1X, and/or WPA operation). In all
cases, the Alcatel OmniAccess Operating System will also use QoS and ACL
provided by the AAA server, as long as they are predefined in the Alcatel
OmniAccess Switch or Appliance Interface configuration. (This VLAN switching
by AAA Override is also referred to as Identity Networking.)
For instance, if the Corporate WLAN primarily uses a Management Interface
assigned to VLAN 2, and if AAA Override returns a redirect to VLAN 100, the
Alcatel OmniAccess Operating System redirects all client transmissions to
VLAN 100, regardless of the physical port to which VLAN 100 is assigned.
• When AAA Override is disabled, all client authentication defaults to the Alcatel
OmniAccess Switch or Appliance authentication parameter settings, and
authentication is only performed by the AAA server if the Alcatel OmniAccess
Switch or Appliance WLAN do not contain any client-specific authentication
parameters.
The AAA override values may come from a RADIUS server, for example.
External security policy validation. Enable or disable.
When automatic adding to the Exclusion List (blacklisting) is enabled, set the
timeout in seconds for disabled client machines. Client machines are disabled
by MAC address and their status can be observed on the
A timeout setting of 0 indicates that administrative control is required to
re-enable the client.
When selected, you can enter the IP address of your DHCP server. This is a
required field for some WLAN configurations. There are three valid
configurations:
• DHCP Server Override ON, a valid DHCP Server IP address, and DHCP
Address Assignment Required: Requires all WLAN clients to obtain an IP
address from the DHCP Server.
• DHCP Server Override ON, a valid DHCP Server IP address, and DHCP
Address Assignment Not Required: Allows all WLAN clients to obtain an IP
address from the DHCP Server or use a static IP address.
• DHCP Server Override OFF: Forces all data clients to use a static IP
address. All DHCP requests are dropped.
Required check box.
Limited to the non-service-port and non-virtual Interface Names configured on
the
Interfaces
page.
Description
WLANs > Edit
Clients > Detail
page.
Advertisement
Chapters
Table of Contents
Troubleshooting
Need help?
Do you have a question about the OmniAccess Wireless System 2.1 and is the answer not in the manual?