Wireless Access Point
Configuring the Wireless AP 279
10. Filter List: If you wish to apply a set a filters to this SSID’s traffic, select
the desired Filter List. See “Filters” on page 389.
11. Authentication: The following authentication options are available (only
valid encryption/authentication combinations are offered):
• Open: This option provides no authentication and is not
recommended.
• RADIUS MAC: Uses an external RADIUS server to authenticate
stations onto the wireless network, based on the user’s MAC address.
Accounting for these stations is performed according to the
accounting options that you have configured specifically for this SSID
or globally (see Step 13 below).
• 802.1x: Authenticates stations onto the wireless network via a
RADIUS server using 802.1x with EAP. The RADIUS server can be
internal (provided by the Wireless AP) or external.
12. Encryption: Choose the encryption that will be required — specific to this
SSID — either None, WEP, WPA, WPA2 or WPA-Both. The None option
provides no security and is not recommended; WPA2 provides the best
Wi-Fi security.
Each SSID supports only one encryption type at a time (except that WPA
and WPA2 are both supported on an SSID if you select WPA-Both). If you
need to support other encryption types, you must define additional
SSIDs. The encryption used with WPA or WPA2 is selected in “Global
Settings” on page 249. For an overview of the security options, see
“Security Planning” on page 56 and “Understanding Security” on
page 225.
13. Global: Check this box if you want this SSID to use the security settings
established at the global level (see “Global Settings” on page 249). Clear
this box if you want the settings established here to take precedence.
If this SSID is on a VLAN, the VLAN must have management turned on in
order to pass CHAP authentication challenges from the client station to the
RADIUS server.
To Next Page
Loading...
Need help?
General
