Manualshelf

Quick Reference Guide

ManualsBrandsNetgear ManualsWirelessNetgear WC9500
61626364656667686970
Manage Security Profiles and Profile Groups
66
ProSAFE Wireless Controller WC9500
Note: You can configure profiles to function with different authentication
servers. For example, you could set up a guest profile with no
authentication, an engineering profile that uses external RADIUS
authentication, and a marketing profile that uses external LDAP
authentication. You can also use additional external RADIUS
servers in other profiles.
MAC authentication. If you want to use a MAC access control list (ACL) to control
access of wireless clients, first create one or more MAC ACLs:
- Configure the basic MAC ACL on the basic MAC Authentication screen (see
Configure Basic Local MAC Authentication Settings on page 82).
- For more complex networks, configure additional MAC ACLs on the advanced MAC
Authentication screen (see Configure Local MAC
Authentication Groups on page 84).
After you have configured one or more MAC ACLs, you can then assign any MAC ACL to
a security profile in a basic profile group or advanced profile group.
Cloning profiles. For faster setup, you can clone a profile and rename it. Cloning copies
all settings except for the name and SSID.
Basic and Advanced Security Configuration Concepts
The basic security configuration model (Configuration > Security > Basic) does not apply
strictly to the basic profile group, nor does the advanced security configuration model
(Configuration > Security > Advanced) apply strictly to advanced profile groups. The reason
is that you apply an authentication server and a MAC ACL to an individual profile and not to a
profile group.
Basic security settings.
Y
ou can apply the following security settings to any profile,
whether in the basic profile group or in an advanced profile group:
- Basic MAC authentication (the MAC ACL group that is called basic)
- Basic authentication server (the RADIUS server that is called basic-Auth or the LDAP
server that is called basic-LDAP)
Advanced security settings
. Y
ou
can apply the following security settings to any profile,
whether in the basic profile group or in an advanced profile group:
- Advanced MAC authentication (the MAC ACLs that are, by default, called
Acl-1,
Acl-2, Acl-3, and so on; you can change these default names)
- Advanced authentication server (the RADIUS servers that are, by default, called
Auth-1, Auth-2,
Auth-3, and so on; you can change these default names)