User's Manual
PC and Server Configuration
41
Using WPA-Enterprise
This is the most secure and most complex system.
WPA-Enterprise provides greater security and centralized management, but it is more complex
to configure.
Wireless Station Configuration
For each of the following items, each Wireless Station must have the same settings as the
Wireless Access Point.
SSID (ESSID)
This must match the value used on the Wireless Access Point.
Note! The SSID is case sensitive.
802.1x
Authentication
Each client must obtain a Certificate which is used for authentication for
the Radius Server.
802.1x
Encryption
Typically, EAP-TLS is used. This is a dynamic key system, so keys do
NOT have to be entered on each Wireless station.
Radius Server Configuration
If using WPA-Enterprise mode, the Radius Server on your network must be configured as
follow:
• It must provide and accept Certificates for user authentication.
• There must be a Client Login for the Wireless Access Point itself.
• The Wireless Access Point will use its Default Name as its Client Login name.
• The Shared Key, set on the Security Profile Settings Screen of the Access Point, must
match the Shared Secret value on the Radius Server.
• Encryption settings must be correct.