User Profiles - Black Box SmartPath LWN602A User Manual

Smartpath enterprise wireless system

Hide thumbs Also See for SmartPath LWN602A:

User manual (168 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

Table of Contents

SmartPath AP Private PSK Server: Choose the SmartPath AP that you want to use as the private PSK server from the drop-

down list. This is the SmartPath AP that will store all the private PSK users and act as a server that the other SmartPath APs will

contact when checking and requesting a binding of a user-submitted private PSK to the MAC address of the user's client.

User profiles assigned after successful private PSK authentication: In the Available User Profiles column, select an entry

whose attribute number matches the attribute number of the selected private PSK user group, and then click the right arrow ( > )

to move it to the Selected User Profiles column.

9.4.2 User Profiles

Unlike a traditional PSK SSID, a private PSK SSID can support multiple user profiles. For this example, you create two user profiles,

one for employees with full network access and another for contractors with limited access.

To define a user profile for employees, click Configuration > User Profiles > New, enter the following, leave the other settings as

they are, and then click Save:

Name: Employees(30)

The number 30 is included as part of the user profile name so that you can easily know its attribute.

Attribute Number: 30

The SmartPath AP uses this attribute number to link the user profile to a user group with the same attribute. You can use

any number between 1 and 4095.

Default VLAN: 1

Description: Corporate employees

To define a user profile for contractors with a firewall policy that allows basic network protocols to the public network while

blocking access to the internal network, click Configuration > User Profiles > New, enter the following, leave the other settings as

they are, and then click Save:

Name: Contractors(35)

Attribute Number: 35

Default VLAN: 1

Description: short-term contractors

Expand Firewalls, and enter the following in the IP Firewall Policy section:

From-Access: Click the New icon to open the IP Firewall Policy dialog box, and then enter the following:

Policy Name: contractors-outgoing-IP-policy

Description: Apply to contractor user profiles

Policy Rules:

To add rules permitting only DHCP, DNS, HTTP, and HTTPS to the public network while denying any type of

traffic to the internal network, enter the following (use CTRL-click or SHIFT-click to select multiple services):

(Click...)

New

Table 9-3. CTRL-click or SHIFT-click to select multiple services.

Source

Destination*

[-any]

[-any-]

10.0.0.0/8

[-any-]

172.16.0.0/12

[-any-]

192.168.0.0/16

[-any-]

724-746-5500 | blackbox.com

Chapter 9: Common Configuration Examples

Service

Action

DHCP-Server, DNS

Permit

[-any-]

Deny

[-any-]

Deny

[-any-]

Deny

HTTP, HTTPS

Permit

Logging*

(Click)

Off

Apply

Dropped Packets

Apply

Dropped Packets

Click "Apply."

Dropped Packets

Click "Apply."

Both

Apply

Page 141

Table of Contents

Chapters

Table of Contents

This manual is also suitable for:

Smartpath lwn600cm-1 Smartpath lwn600cm-3 Smartpath lwn602hae Smartpath lwn602ha Smartpath lwn602wa Smartpath lwn600vma ... Show all

User Profiles - Black Box SmartPath LWN602A User Manual

9.4.2 User Profiles

Chapters

Related Manuals for Black Box SmartPath LWN602A

Related Content for Black Box SmartPath LWN602A

This manual is also suitable for:

Table of Contents