Concept Guide

ManualsBrandsDell ManualsAccess PlatformsW-Series 207 Access Points

101

102

103

104

105

106

107

108

109

110

Parameter Description

Security

Level

Type

Blacklisting

To enable blacklisting of the clients with a specific number of authentication failures,

select Enabled from the Blacklisting drop-down list and specify a value for Max

authentication failures. The users who fail to authenticate the number of times

specified in Max authentication failures field are dynamically blacklisted.

Enterprise

, Personal,

and Open

security

levels.

Accounting Select any of the following options:

l To enable accounting, select Use authentication servers from the Accounting

drop-down list. On enabling the accounting function, APs post accounting

information to the RADIUS server at the specified Accounting interval.

l To use a separate server for accounting, select Use separate servers. The

accounting server is distinguished from the authentication server specified for

the SSIDprofile.

l To disable the accounting function, choose Disabled.

Enterprise

, Personal,

and Open

security

levels.

Authentication

survivability

To enable authentication survivability, set Authentication survivability to

Enabled. Specify a value in hours for Cache timeout (global) to set the duration

after which the authenticated credentials in the cache must expire. When the cache

expires, the clients are required to authenticate again. You can specify a value

within a range of 1 to 99 hours and the default value is 24 hours.

NOTE: The authentication survivability feature requires ClearPass Policy Manager

6.0.2 or later, and is available only when the New server option is selected

authentication. On setting this parameter to Enabled, Instant authenticates the

previously connected clients using EAP-PEAP authentication even when connectivity

to ClearPass Policy Manager is temporarily lost. The Authentication survivability

feature is not applicable when a RADIUS server is configured as an internal server.

Enterprise

security

level

MAC

authentication

To enable MAC address based authentication for Personal and Open security

levels, set MAC authentication to Enabled.

For Enterprise security level, the following options are available:

l Perform MAC authentication before 802.1X—Select this checkbox to use

802.1X authentication only when the MAC authentication is successful.

l MAC authentication fail-thru—On selecting this checkbox, the 802.1X

authentication is attempted when the MAC authentication fails.

Enterprise

, Personal,

and Open

security

levels.

Delimiter

character

Specify a character ( for example, colon or dash) as a delimiter for the MAC address

string. When configured, the W-IAP will use the delimiter in the MAC authentication

request. For example, if you specify the colon as a delimiter, MAC addresses in the

xx:xx:xx:xx:xx:xx format are used. If the delimiter is not specified, the MAC address

in the xxxxxxxxxxxx format is used.

NOTE: This option is available only when MAC authentication is enabled.

Enterprise

, Personal,

and Open

security

levels.

Table 22: Configuration Parameters for WLANSecurity Settings in an Employee or Voice Network

Dell Networking W-Series Instant 6.4.3.1-4.2.0.0 | User Guide Wireless Network Profiles | 109