Manualshelf

User`s manual

ManualsBrandsD-Link ManualsComputer equipmentDWL-8220AP - AirPremier Wireless Switch Dualband Access Point
301302303304305306307308309310
301
DWS-1008 User’s Manual
D-Link Systems, Inc.
Conguring AAA for Network Users
The following command applies the incoming lters of acl-101 to the users who belong to the
group eastcoasters:
DWS-1008# set usergroup eastcoasters attr lter-id acl-101.in
success: change accepted.
Assigning a Security ACL on a RADIUS Server
To assign a security ACL name as the Filter-Id authorization attribute of a user or group
record on a RADIUS server, see the documentation for your RADIUS server.
Clearing a Security ACL from a User or Group
To clear a security ACL from the prole of a user, MAC user, or group of users or MAC users
in the local DWS-1008 switch database, use the following commands:
clear user username attr lter-id
clear usergroup groupname attr lter-id
clear mac-user username attr lter-id
clear mac-usergroup groupname attr lter-id
If you have assigned both an incoming and an outgoing lter to a user or group, enter the
appropriate command twice to delete both security ACLs. Verify the deletions by entering the
show aaa command and checking the output.
To delete a security ACL from a user’s conguration on a RADIUS server, see the documentation
for your RADIUS server.
Assigning Encryption Types to Wireless Users
When a user turns on a wireless laptop or PDA, the device attempts to nd an access point
and form an association with it. Because DWL-8220AP access points support the encryption
of wireless trafc, clients can choose an encryption type to use. You can congure DWL-
8220AP access points to use the encryption algorithms supported by the Wi-Fi Protected
Access (WPA) security enhancement to the IEEE 802.11 wireless standard.
If you have congured DWL-8220AP access points to use specic encryption algorithms,
you can enforce the type of encryption a user or group must have to access the network.
When you assign the Encryption-Type attribute to a user or group, the encryption type or
types are entered as an authorization attribute into the user or group record in the local DWS-
1008 switch database or on the RADIUS server. Encryption-Type is a D-link vendor-specic
attribute (VSA).
Clients who attempt to use an unauthorized encryption method are rejected.