AirLive MW-2000S User Manual

Page 106

Advertising
background image

Chapter 7. Web Interface Configuration

AirLive MW-2000S User’s Manual

101

y

802.1X Authentication: The system supports 802.1X. When the option is enabled, an extra link

will become available for going to the Roaming Out and 802.1X Client Device Settings page,
the administrator could further set up for the 802.1x capable device that are allowed to
authenticate against the local user database. Select 802.1X Authentication from the hyperlink.
Enter IP address, Subnet Mask, and shared Secret Key of the authorized devices. An example
would be those downstream Access Points with 802.1x option turned on and shared Secret Key
set accordingly.

Click the hyperlink Roaming out & 802.1X Client Device Settings to enter the Roaming out &
802.1X Client Device Settings interface. Choose the desired type, Disable, Roaming Out or
802.1X, and key in the 802.1x client’s IP address and network mask and then click Apply to
complete the settings.

y

Username Format: When Complete option is checked, both the username and postfix will be

transferred to the RADIUS server for authentication. On the other hand, when Only ID option is
checked, only the username will be transferred to the external RADIUS server for authentication.

y

NAS Identifier: The Network Access Server (NAS) Identifier of the system for the external

RADIUS server.

y

Class-Policy Mapping

This function applies the selected policy to specific clients grouped by the RADIUS class attribute.
The clients will be applied with the assigned policy while logging on to the system.

y

Server: The IP address of the external RADIUS server.

y

Authentication Port: Enter the authentication port of the RADIUS server.

y

Accounting Port: The accounting port of the external RADIUS server.

y

Secret Key: The Secret Key for RADIUS authentication.

y

Accounting Service: The system supports RADIUS accounting that can be enabled or disabled.

y

Authentication Protocol: The configurations of the system must match the configurations of the

remote RADIUS server. RAP (Password Authentication Protocol) transmits password in plain text
without encryption. CHAP (Challenge Handshake Authentication Protocol) is a more secured
authentication protocol with hash encryption.


Notice: If the RADIUS Server does not assign idle-timeout value, the MW-2000S will use the local
idle-timeout.






Advertising
Popular Brands
Popular manuals