9 introduction to radius, 1 types of radius messages, 1 access-challenge – ZyXEL Communications G-2000 Plus User Manual

ZyAIR G-2000 Plus User’s Guide

Chapter 7 Wireless Security

100

7.9 Introduction to RADIUS

RADIUS is based on a client-sever model that supports authentication and accounting, where
access point is the client and the server is the RADIUS server. The RADIUS server handles
the following tasks among others:

• Authentication

Determines the identity of the users.

• Accounting

Keeps track of the client’s network activity.

RADIUS user is a simple package exchange in which your ZyAIR acts as a message relay
between the wireless station and the network RADIUS server.

7.9.1 Types of RADIUS Messages

The following types of RADIUS messages are exchanged between the access point and the
RADIUS server for user authentication:

• Access-Request

Sent by an access point requesting authentication.

• Access-Reject

Sent by a RADIUS server rejecting access.

• Access-Accept

Sent by a RADIUS server allowing access.

7.9.1.1 Access-Challenge

Sent by a RADIUS server requesting more information in order to allow access. The access
point sends a proper response from the user and then sends another Access-Request message.

WPA Group Key

Update Timer

The WPA Group Key Update Timer is the rate at which the AP (if using WPA-

PSK key management) or RADIUS server (if using WPA key management)

sends a new group key out to all clients. The re-keying process is the WPA

equivalent of automatically changing the WEP key for an AP and all stations in a

WLAN on a periodic basis. Setting of the WPA Group Key Update Timer is also

supported in WPA-PSK mode. The ZyAIR default is 1800 seconds (30 minutes).

Apply

Click Apply to save your changes back to the ZyAIR.

Reset

Click Reset to reload the previous configuration for this screen.

Table 26 Wireless: WPA

LABEL

DESCRIPTION