Web: Configuring Ieee 802.1X - HP ProCurve 420 Management And Configuration Manual
Hide thumbs
Also See for ProCurve 420:
- Management and configuration manual (257 pages) ,
- Getting started manual (94 pages) ,
- Installation and getting started manual (78 pages)
Table of Contents
Advertisement
N o t e
Web: Configuring IEEE 802.1x
The access point supports IEEE 802.1x (802.1x) access control for wireless
clients. This control feature prevents unauthorized access to the network by
requiring an 802.1x client application to submit user credentials for authenti
cation. Client authentication is then verified by a RADIUS server using Exten
sible Authentication Protocol (EAP) before the access point grants a client
access to the network.
The 802.1x access control feature requires a RADIUS authentication server to
be configured and available in the wired network. Be sure that the server's
details are configured in the RADIUS window.
The access point also uses the 802.1x Extensible Authentication Protocol Over
LANs (EAPOL) packets to pass dynamic unicast session keys and static
broadcast keys to wireless clients. Session keys are unique to each client and
are used to authenticate a client connection, and correlate traffic passing
between a specific client and the access point. You can also enable broadcast
key rotation, so the access point provides a dynamic broadcast key and
changes it at a specified interval.
The Authentication window on the Security tab enables 802.1x to be configured
for the access point.
The web interface enables you to modify these parameters:
802.1x Setup. You can enable 802.1x as optionally supported or as required
to enhance the security of the wireless network. When 802.1x is enabled, the
broadcast and session key rotation intervals can also be configured.
Disable: The access point does not support 802.1x authentication for any
■
wireless client. After successful wireless association with the access
point, each client is allowed to access the network.
■
Supported: The access point supports 802.1x authentication only for
clients initiating the 802.1x authentication process (the access point does
not initiate 802.1x authentication). For clients initiating 802.1x, only those
successfully authenticated are allowed to access the network. For those
clients not initiating 802.1x, access to the network is allowed after
successful wireless association with the access point.
■
Required: The access point enforces 802.1x authentication for all asso
ciated wireless clients. If 802.1x authentication is not initiated by a client,
the access point will initiate authentication. Only those clients success-
fully authenticated with 802.1x are allowed to access the network.
Access Point Configuration
Configuring Wireless Security
5-57
Advertisement
Table of Contents
