Manualshelf

User's Manual Part 2

ManualsBrandsRiverbed Technology ManualsElectronicsXS-3900 Wireless LAN Array
11121314151617181920
Wireless LAN Array
116 Configuring the Xirrus Array
z RADIUS 802.1x with EAP—802.1x uses a RADIUS server to
authenticate large numbers of clients, and can handle different
EAP (Extensible Authentication Protocol) authentication
methods, including EAP-TLS, EAP-TTLS and EAP-PEAP. The
RADIUS server can be internal (provided by the XS-3900) or
external. An external RADIUS server offers more functionality
and security, and is recommended for large deployments. When
using this method, user names and passwords must be entered
into the RADIUS server for user authentication.
The Xirrus Wireless LAN Array will accept up to 512 ACL
entries.
z MAC Address ACLs (Access Control Lists)—MAC address
ACLs provide a list of client adapter MAC addresses that are
allowed or denied access to the wireless network. Access Control
Lists work well when there are a limited number of users—in this
case, enter the MAC addresses of each user in the Allow list. In
the event of a lost or stolen MAC adapter, enter the affected MAC
address in the Deny list.
Procedure for Configuring Network Security
1. WPA Enabled: Choose Yes to enable WPA (Wi-Fi Protected Access), or
choose No to disable WPA.
2. WPA2 Enabled: Choose Yes to enable WPA2 (Wi-Fi Protected Access 2),
or choose No to disable WPA2.
3. TKIP Enabled: Choose Yes to enable TKIP (Temporal Key Integrity
Protocol), or choose No to disable TKIP.
4. AES Enabled: Choose Yes to enable AES (Advanced Encryption
Standard), or choose No to disable AES.
5. WPA Group Rekey Time (in seconds): Enter a value to specify the group
rekey time (in seconds). The default is 600.