User Guide
OmniAccess RN: User Guide
254 Part 031650-00 May 2005
The guest users will be allowed to access the network using the
guest SSID. This will be an open system without encryption. All
the guest users will be allowed to access the internet alone. The
user IP addresses will be nated. The users are authenticated
using captive portal to connect to the internet.
Alternative:
In this case the guest user traffic is unencrypted. If the guest access also needs to be
controlled, static WEP can be used to access to only those with the WEP key.
2. User Employee
SSID employee1
Encryption WPA-TKIP
Firewall Policies Access to the entire network
Authentication method MSFT PEAP using IAS RADIUS
VLAN Native VLAN of the local switch
The employee user will have to associate with the employee SSID and
authenticate using MSFT PEAP to access the intranet. The traffic, if
employee SSID used, will be encrypted.
3. User Employee
SSID employee2
Encryption Static WEP
Firewall Policies Access to the entire network
Authentication method VPN (PPTP and IPSEC)
VLAN Native VLAN of the local switch
This in itself is a valid and secure access. In this case however it is
used during the transitional phase before converting all system to
WPA-TKIP with PEAP authentication.