User's Manual

ManualsBrandsAirgo Networks ManualsElectronicsTrue MIMO Access Point

2 Planning Your Installation

14 Installation and User Guide: Airgo Access Point

Planning Network Features

The Airgo AP offers an extensive set of configuration parameters and network service features.

Automated and default options are available for most of these, making it necessary to configure

only a few of the AP parameters to set up a basic network. As needs change, additional features can

be configured to support new network services.

Network feature planning involves the following decisions:

Feature Planning Issues

Physical

Network

Estimate how many APs are expected initially and with growth. Determine whether

wireless backhaul will be required.

Network

Management

Determine the network management structure.

• A network management solution such as NM Portal or NMS Pro is strongly

recommended for all multiple AP installations.

• NM Portal is recommended for small to mid-size networks.

• NMS Pro is recommended for large enterprise networks. NMS Pro can be used in

conjunction with NM Portal for an efficient, hierarchical network management

solution.

• If wireless backhaul is selected, then network management must include NM

Portal.

Authentication Determine how to verify the identity of users requesting access to the network. An

authentication scheme is required for all except open access.

• Pre-shared key (PSK) authentication uses matching keys assigned prior to the

authentication session and stored on the AP and in the client. With PSK, no external

authentication server is required. This approach is useful for small to mid-size

networks in which keys can be easily configured and modified, as needed.

• RADIUS user authentication relies upon individual login and password. This

approach is preferred for medium-large and enterprise networks that must

accommodate sizable, changing user populations. RADIUS is the most common

protocol used in authentication servers.

The Airgo AP can take advantage of the authentication services provided by an

external third party RADIUS server or the internal RADIUS security portal on the

Airgo AP. In conjunction with an external RADIUS server, the security portal

provides wireless backhaul authentication services and can serve as a backup

authentication server if the external RADIUS server is not available.

An authentication zone is a group of one or more RADIUS servers providing user

authentication services within an SSID. If multiple SSIDs are configured, then you

can create an authentication zone for each.

The chosen authentication method influences how services can be configured in the

network.

Security Modes Choose WPA, WEP, or open security modes.

• WPA is recommended, unless WEP is required for communication with legacy

systems.

• WPA security is compatible with WEP and with open security. WEP is not

compatible with open security.

• Guest access requires the open security mode.

• The preferred encryption method is AES, unless TKIP or WEP are required for

compatibility with legacy systems.