3 security – CNET CWR-854 User Manual

28

3.3.3 Security

Here users define the security type and level of the wireless network. Selecting different methods
provides different levels of security. Please note that using any encryption may cause a
significant degradation of data throughput on the wireless link. There are five Encryption
types supported: “None”, “WEP”, “WPA (TKIP)”, ”WPA2(AES)”, and “WPA2 Mixed”.



No Encryption Used



Encryption: “None” means no encryption used. Users can enable 802.1x
Authentication and enter the RADIUS server parameters – port, IP address and
Password.



Use 802.1x Authentication: Is a port access protocol for protecting networks via
authentication. If wireless user is authenticated (via 802.1x), a virtual port is
opened on the router/access point allowing for communication. If authentication
fails, the router/access point will deny access to the user.



Authentication RADIUS Server: RADIUS is the Remote Access Dial-In User
Service, an Authorization, Authentication, and Accounting (AAA) client-server
protocol, which is used when a AAA dial-up client logs in or out of a Network
Access Server. Typically, a RADIUS server is used by Internet Service Providers
(ISP) to perform AAA tasks. AAA phases are described as follows:


Authentication phase: Verifies a user name and password against a local
database. After the credentials are verified, the authorization process
begins.



Authorization phase: Determines whether a request is allowed access to a
resource. An IP address is assigned for the Dial-Up client.



Accounting phase: Collects information on resource usage for the purpose
of trend analysis, auditing, session time billing, or cost allocation.

Users must enter RADIUS Server’s Port number, IP address and Password.



Apply Changes: Click on “Apply Changes” to save the setting.



Reset: Click on “Reset” button to undo your changes.