This chapter provides information on how to use 802.1x and RADIUS for your ZyAIR.
13.1 IEEE 802.1x Overview
The IEEE 802.1x standard outlines enhanced security methods for both the authentication of wireless
stations and encryption key management. Authentication can be done using the local user database internal to
the ZyAIR or an external RADIUS server for an unlimited number of users.
13.2 Introduction to RADIUS
RADIUS is based on a client-sever model that supports authentication and accounting, where the access
point is the client and the server is the RADIUS server. The RADIUS server handles the following tasks
among others:
•
Authentication
Determines the identity of the users.
•
Accounting
Keeps track of the client's network activity.
RADIUS user is a simple package exchange in which your ZyAIR acts as a message relay between the
wireless station and the network RADIUS server.
Types of RADIUS Messages
The following types of RADIUS messages are exchanged between the access point and the RADIUS server
for user authentication:
•
Access-Request
Sent by an access point-requesting authentication.
•
Access-Reject
Sent by a RADIUS server rejecting access.
•
Access-Accept
Sent by a RADIUS server allowing access.
IEEE 802.1x, RADIUS
IEEE 802.1x, RADIUS
ZyAIR B-5000 User's Guide
Chapter 13
13-1