User Guide Part 2

Wi-Fi Array

242 Configuring the Wi-Fi Array

9. Filter List: If you wish to apply a set a filters to this SSID’s traffic, select

the desired Filter List. See “Filters” on page 289.

10. Authentication: The following authentication options are available:

• Open: This option provides no authentication and is not

recommended.

• RADIUS MAC: Uses an external RADIUS server to authenticate

stations onto the Wi-Fi network, based on the user’s MAC address.

Accounting for these stations is performed according to the

accounting options that you have configured specifically for this SSID

or globally (see Step 12 below).

• 802.1x: Authenticates stations onto the Wi-Fi network via a RADIUS

server using 802.1x with EAP. The RADIUS server can be internal

(provided by the Wi-Fi Array) or external.

11. Encryption: From the pull-down list, choose the encryption that will be

required—specific to this SSID—either None, WEP, WPA, WPA2 or WPA-

Both. The None option provides no security and is not recommended;

WPA2 provides the best practice Wi-Fi security.

Each SSID supports only one encryption type at a time (except that WPA

and WPA2 are both supported on an SSID if you select WPA-Both). If you

need to support other encryption types, you must define additional

SSIDs. The encryption standard used with WPA or WPA2 is selected in

the Security>Global Settings window (page 225). For an overview of the

security options, see “Security Planning” on page 70 and “Understanding

Security” on page 210.

12. Global: Check the checkbox if you want this SSID to use the security

settings established at the global level (refer to “Global Settings” on

page 225). Clear the checkbox if you want the settings established here to

take precedence. Additional sections will be displayed to allow you to

If this SSID is on a VLAN, the VLAN must have management turned on in

order to pass CHAP authentication challenges from the client station to the

RADIUS server.