Manualshelf

Specifications

ManualsBrandsAlcatel ManualsComputer equipmentOmniAccess AP61
101102103104105106107108109110
OmniAccess Reference: AOS-W System Reference
88 Part 031652-00 May 2005
VPN Authentication
When the use of IPSec or PPTP is desired, Alcatel switches provide full VPN
termination capabilities using hardware acceleration. All encryption protocols
are run in hardware, with encryption hardware being appropriately sized to
handle a full load of access points. The majority of VPN settings are configured
under a dedicated VPN section below. VPN backend authentication parameters
are configured under
Configuration > Security > Authentication Methods > VPN, as
shown in the figure below.
FIGURE 5-20 VPN Authentication
Available configuration parameters are:
Authentication Enabled – Enables or disables VPN termination.
Default Role – If a client authenticates using VPN, and the authentication
server does not provide role information, the default role will be given to the
client.
Authentication Failure Threshold for Station Blacklisting – If a station fails
VPN authentication by this number of times in a row, the station will be
“blacklisted” and will not be allowed to associate to the network. Enter 0 to
disable blacklisting.
Authentication Servers – An ordered list of authentication servers to be used
when VPN clients attempt to authenticate.
The equivalent CLI configuration for the example above is:
aaa vpn-authentication mode enable
aaa vpn-authentication default-role "vpn-role"