Broadcast ssid and closed system, Broadcast, Ssid and closed system – Proxim ORiNOCO AP-700 User Manual
Page 103
Performing Advanced Configuration
AP-700 User Guide
SSID/VLAN/Security
103
–
You can set the VLAN ID to “-1” or “untagged” if you do not want clients that are using a specific SSID to be members of a VLAN
workgroup. Only one “untagged” VLAN ID is allowed per interface.
–
The VLAN ID must match an ID used by your network; contact your network administrator if you need assistance defining the VLAN
IDs.
6. If editing an entry, enable or disable the VLAN using the VLAN Status drop-down menu. If adding, this drop-down menu will not appear.
7. Enable or disable the SSID Authorization status from the drop-down menu.
SSID Authorization is the RADIUS based authorization of the SSID for a particular client. The authorized SSIDs are sent as the tunnel
attributes.
8. Enable or disable RADIUS accounting on the VLAN/SSID under the Accounting Status drop-down menu.
9. Enable or disable RADIUS MAC authentication status on the VLAN/SSID under the RADIUS Authentication Status drop-down menu.
10. Enable or disable MAC Access Control List status on the VLAN/SSID under the MAC ACL Status drop-down menu.
11. Enter the Rekeying Interval in seconds. The default interval is 900 seconds.
12. Enter the Security Profile used by the VLAN in the Security Profile field.
NOTE
If you have two or more SSIDs per interface using a security Profile with a security mode of Non Secure, be aware that security being
applied in the VLAN is not being applied in the wireless network.
13. Define the RADIUS Server Profile Configuration for the VLAN/SSID:
–
RADIUS MAC Authentication Profile
–
RADIUS EAP Authentication Profile
–
RADIUS Accounting Profile
If 802.1x, WPA, or 802.11i security mode is used, the RADIUS EAP Authentication Profile must have a value.
A RADIUS Server Profile for authentication for each VLAN shall be configured as part of the configuration options for that VLAN.
RADIUS profiles are independent of VLANs. The user can define any profile to be the default and associate all VLANs to that profile.
Four profiles are created by default, “MAC Authentication”, “EAP Authentication”, Accounting”, and “Management”.
14. Specify a QoS Profile. Refer to the
Enabling QoS and Adding QoS policies
section for more information.
15. Reboot the AP.
Broadcast SSID and Closed System
Broadcast SSID allows the broadcast of a single SSID when the AP is configured for multiple SSIDs. Broadcast SSID may only be enabled
for a single SSID. This object can only be configured using the CLI and SNMP using a MIB browser or network management application.
Closed System manages the way probe requests are handled. If enabled, the AP will respond to probe requests with an SSID only if the client
has specified the SSID in the probe request. If the client sends a probe request with a null or “ANY” SSID, the AP will respond with a null
SSID. If disabled, the AP will respond with each configured SSID, whether or not an SSID has been specified in the probe request. This
option is disabled by default.
For more information, on Broadcast SSID and Closed System, refer to Technical Bulletin 69680 at
.