Table of Contents
Advertisement
Using WPA-Enterprise
This is the most secure and most complex system.
WPA-Enterprise mode provides greater security and centralized management, but it is
more complex to configure.
Wireless Station Configuration
For each of the following items, each Wireless Station must have the same settings as
the Wireless Access Point.
Mode
SSID (ESSID)
802.1x
Authentica-
tion
802.1x
Encryption
Radius Server Configuration
If using WPA-Enterprise mode, the Radius Server on your network must be confi-
gured as follow:
It must provide and accept Certificates for user authentication.
There must be a Client Login for the Wireless Access Point itself.
The Wireless Access Point will use its Default Name as its Client Login name.
(However, your Radius server may ignore this and use the IP address instead.)
The Shared Key, set on the Security Screen of the Access Point, must match
the Shared Secret value on the Radius Server.
Encryption settings must be correct.
On each PC, the mode must be set to Infrastructure.
This must match the value used on the Wireless Access Point.
The default value is wireless
Note! The SSID is case sensitive.
Each client must obtain a Certificate which is used for authentica-
tion for the Radius Server.
Typically, EAP-TLS is used. This is a dynamic key system, so keys
do NOT have to be entered on each Wireless station.
However, you can also use a static WEP key (EAP-MD5); the
Wireless Access Point supports both methods simultaneously.
PC and Server Configuration
41
- Quick Links:
- Setup Using a Web Browser
Hide quick links:
Advertisement
Table of Contents
