Installation guide
Table Of Contents
- Preface
- Introduction
- Management and Monitoring Capabilities
- Device Initialization
- Basic Configuration
- Device Configuration
- Device Management
- Device Monitoring
- Troubleshooting
- Frequency Domains and Channels
- Bootloader CLI and Scan Tool
- ASCII Character Chart
- Frequently Asked Questions (FAQs)
- Glossary
- Abbreviations
- Statement of Warranty
- Technical Services and Support
Device Configuration
ORiNOCO® 802.11n Access Points - Software Management Guide 57
Configure the following parameters:
Click OK and COMMIT, to save the configured parameters.
5.5.2 RADIUS
Remote Authentication Dial In User Service (RADIUS) is a networking protocol that provides centralized Authentication,
Authorization, and Accounting (AAA) management for nodes to connect and use a network service.
The AP device supports the following Authentication and Accounting mechanisms:
• MAC Access Control Via RADIUS Authentication: Allows only the MAC addresses that are registered on the
RADIUS server to access the wireless network.
• 802.1x Authentication using RADIUS: Refer 802.1x Authentication
• RADIUS Accounting: By using an external RADIUS server, the AP device can track and record the length of client
sessions by sending the RADIUS accounting messages per RFC2866. When a wireless client is successfully
authenticated, RADIUS accounting is initiated by sending an “Accounting Start” request to the RADIUS server. When
the wireless client session ends, an “Accounting Stop” request is sent to the RADIUS server.
5.5.2.1 Authentication Attributes
• User-Name: Specifies the name of the user that needs to be authenticated. It must be sent in Access-Request packets,
if available.
• User-Password: Specifies the user password to be authenticated, or the user's input following an Access-Challenge.
It is only used in Access-Request packets.
• NAS-IP-Address: Specifies the identifying IP Address of the NAS (AP device) which is requesting authentication of the
user, and should be unique to the NAS (AP device) within the scope of the RADIUS server. NAS-IP-Address is only used
in Access-Request packets.
• State: Specifies the attribute sent by the server to the client in an Access-Challenge and must be sent unmodified
from the client to the server in the new Access-Request reply to that challenge, if any.
• Class: Specifies the attribute sent by the server to the client in an Access-Accept and should be sent unmodified by the
client to the accounting server as part of the Accounting-Request packet if accounting is supported.
• Session-Time-out: Specifies the attribute that sets the maximum number of seconds of service to be provided to the
user before termination of the session or prompt. This Attribute is available to be sent by the server to the client in an
Access-Accept or Access-Challenge.
• Termination-Action: Specifies the action taken by the NAS (AP device) when the specified service is completed. It is
only used in Access-Accept packets.
• Called-Station-Id: Specifies the MAC address of the AP device’s wireless interface, with which the client gets
authenticated.
• Calling-Station-Id: Specifies the MAC address of the wireless client being authenticated.
Parameter Description
Profile Name Specifies the name of the Security Profile that is being created. To configure, enter the
desired Profile Name.
Authentication
Mode
Specifies the security mode for the wireless network. The Auth Mode may vary between
None, WEP, PSK, 802.1x. (See Create a New Security Profile)
Entry Status Specifies the status of the security profile selected.
By default, it is enabled. To configure, select the Entry Status from the drop down menu.