beautypg.com

Implementing an 802.1x security solution – Allied Telesis AT-WA7500 User Manual

Page 164

background image

6 - Configuring Security

164

Clear this check box to block transmissions from end devices that
are not using WEP encryption.

WEP Transmit Key

Determines which of the four WEP keys this access point uses to
transmit data.

WEP Key 1 through WEP Key 4

For WEP 64, enter five ASCII characters or five hex pairs. For WEP
128, enter 13 ASCII characters or hex pairs. For WEP 128, enter 16
ASCII characters or hex pairs.

To enter a hexadecimal key, prefix it with 0x. For example, the
ASCII key ABCDE is equivalent to 0x4142434445.

4. Select Submit Changes to save your changes. To activate your

changes, select Save/Discard Changes from the menu bar then Save
Changes and Reboot. For help, see Saving Configuration Changes
on page 41.

Implementing

an 802.1x

Security

Solution

AT-WA7500 access points can help implement 802.1x security in an
802.11b or 802.11a network. The IEEE 802.1x standard provides an
authentication protocol for 802.11 LANs. 802.1x provides strong
authentication, access control, and key management, and lets wireless
networks scale by allowing centralized authentication of wireless end
devices.

The 802.1x authentication process uses a RADIUS server, which is the
authentication server, and access points, which are the authenticators,
to manage the wireless end device authentication and wireless
connection attributes. Extensible Authentication Protocol (EAP)
authentication types provide devices with secure connections to the
network. They protect credentials and data privacy. Examples of EAP
authentication types include Transport Layer Security (EAP-TLS) and
Tunneled Transport Layer Security (EAP-TTLS).

To implement 802.1x security, you must have the following:

‰ A trusted certificate authority (CA), which issues digital

authentication certificates. The authentication server must have a
certificate installed on it. Also, if the end devices are using EAP-
TLS, each one needs a client certificate.

‰ An authentication server (RADIUS server), which is software that is

installed on a PC or server on your network or an EAS. The
authentication server accepts or rejects requests from end
devices that want to communicate with the 802.1x-enabled
network.

See also other documents in the category Allied Telesis Computer hardware: