Manualshelf

User's Manual

ManualsBrandsZyXEL ManualsNetwork RouterZyXEL ZYAIR B-2000
61626364656667686970
ZyAIR B-2000 Wireless LAN Gateway with 4-Port Switch
4-4 Wireless LAN Security Setup
Access-Accept
Sent by a RADIUS server allowing access.
Access-Challenge
Sent by a RADIUS server requesting more information in order to allow access. The access point
sends a proper response from the user and then sends another Access-Request message.
The following types of RADIUS messages are exchanged between the access point and the RADIUS server
for user accounting:
Accounting-Request
Sent by the access point requesting accounting.
Accounting-Response
Sent by the RADIUS server to indicate that it has started or stopped accounting.
In order to ensure network security, the access point and the RADIUS server use a shared secret key, which
is a password, they both know. The key is not sent over the network. In addition to the shared key,
password information exchanged is also encrypted to protect the network from unauthorized access.
4.3.3 Sequence for EAP Authentication
The following figure shows the authentication steps when you enable EAP and specify a RADIUS server on
your access point.
Figure 4-3 Sequence for EAP Authentication
The steps below describe how the IEEE 802.1X EAP authentication works.
Step 1. The wireless client sents a “request” message to the ZyAIR..
Step 2. The ZyAIR sends a “request” message to the wireless client for identity information.
Step 3. The wireless client replies with the password and username information.
Step 4. The ZyAIR receives the message and repackets this information into an Access-Request
package which is then sent to the remote RADIUS server (or the Authentication server).