User's Manual Part 2

SCP-LPS20x-011-012-01H December 20, 2004

106 ADC Telecommunications, Inc.

CONFIGURATION ROADMAP

The following configuration steps provide an overview on how to set up this scenario.

On the Access Controller

1. Open the Security > RADIUS page.

• Add a RADIUS profile that connects to the corporate RADIUS server.

2. Open the Security > Authentication page.

• In access controller authentication, define settings to connect to the corporate

RADIUS server via the profile you just added.

3. Open the Wireless > WLAN profiles page.

• Add a profile named Public.

• Do not assign a VLAN to this profile.

• Enable HTML-based user logins and assign them to RADIUS authentication.

4. Open the Security > Authentication > Advanced page and set the Access controller shared secret.

5. Customize the public access interface as required. For details, see the Administrator’s Guide of the access

controller.

6. Define access lists to restrict the resources guests can reach. For details, see the Administrator’s Guide of

the access controller.

On the LPS-20xs

1. Open the Wireless > WLAN profiles page. Add two profiles: Private and Public.

• Private profile: in the Wireless protection box, enable either WPA or 802.1x.

2. Open the Network > Ports page.

• Enable DHCP client.

•Set VLAN to 60.

• Disable Restrict VLAN to management traffic only.

3. Open the Security > Access controller page.

• Set the Access controller shared secret to the same value as on the access controller.

• Disable Location-aware authentication.

On the RADIUS server

Define the following:

1. Define accounts for the access controller, guests, and employees.

2. In the employee account, set up support for VLAN mapping by defining the following RADIUS attributes:

• Tunnel-type: Set to "VLAN".

• Tunnel-medium-type: Set to "802".

• Tunnel-private-group: Set to the appropriate VLAN number.

See the Administrator’s Guide of the access controller for more information.