Reference Manual

ManualsBrandsNetgear ManualsWirelessNetgear WC9500

131

132

133

134

135

136

137

138

139

140

Manage Security Profiles and Profile Groups

136

ProSAFE Wireless Controller WC9500

Manage Authentication Servers and Authentication

Server Groups

You can set up internal and external authentication servers and server groups that the

wireless controller can use for authentication.

Authentication Server Concepts

You can specify three types of authentication servers: internal, external RADIUS, and

external LDAP:

• Internal authentication server. The wireless controller handles authentication. If you

use this setting, set up WiFi clients on the User Management screen (see Manage Users,

Accounts, and Passwords on page 222.)

• External RADIUS server. Y

ou can define a basic external RADIUS server that you would

typically use in the profiles of a basic profile group of a small-scale network. You must

specify its configuration on the basic Authentication Server screen (see Configure Basic

Authentication Server Settings on page 137) so that you can select this authentication

option during the configuration of a profile. As part of the advanced authentication server

settings, you can define multiple external RADIUS servers that you would typically use in

a more complex network with many profiles.

ou can then assign different RADIUS

servers to different profiles.

By default, the external RADIUS server for the basic authentication group is called

basic-Auth. Y

ou cannot change this name. By default, the external RADIUS

authentication servers for the advanced authentication groups are called Auth1 through

Auth8, and you can change these names. You can assign the basic-Auth server to an

advanced profile group, and you can assign a RADIUS server of an advanced

authentication group to the basic profile group.

WPA-PSK & WPA2-PSK

Note: Use this option if

the network includes both

WPA and WPA2 clients.

TKIP + AES To configure WPA-PSK & WPA2-PSK authentication:

1. (Optional) Select the Show Passphrase check box to display

the characters in the WPA Passphrase (Network Key) field.

2. Type a passphrase of at least eight characters in the WP

Passphrase (Network Key) field.

Note: The Data Encryption menu displays TKIP + AES, which

is the only available option. Both TKIP and AES are supported.

Note: For information about requirements for a WPA

passphrase, see Table 9 on page 349.

Table 6. Network authentication and data encryption settings (continued)

Network Authentication

Selection

Data

Encryption

Options

Configuration Steps