Brocade Communications Systems Mobility 7131 Series Service Manual Page 208
- Page / 520
- Table of contents
- BOOKMARKS
Rated. / 5. Based on customer reviews
196 Brocade Mobility 7131 Access Point Product Reference Guide
53-1002517-01
6
6. Click the Apply button to return to the WLAN screen to save any changes made within the
Kerberos Configuration field of the New Security Policy screen.
7. Cli c k th e Cancel button to undo any changes made within the Kerberos Configuration field and
return to the WLAN screen. This reverts all settings for the Kerberos Configuration field to the
last saved configuration.
Configuring 802.1x EAP Authentication
The IEEE 802.1x standard ties the 802.1x EAP authentication protocol to both wired and wireless
LAN applications.
The EAP process begins when an unauthenticated supplicant (client device) tries to connect with
an authenticator (in this case, the authentication server). The Mobility 7131 Access Point passes
EAP packets from the client to an authentication server on the wired side of the Mobility 7131
Access Point. All other packet types are blocked until the authentication server (typically, a Radius
server) verifies the MU’s identity.
To configure 802.1x EAP authentication on the Mobility 7131 Access Point:
1. Select Network Configuration -> Wireless -> Security from the Mobility 7131 Access Point menu
tree.
If security policies supporting 802.1x EAP exist, they appear within the Security
Configuration screen. These existing policies can be used as is, or their properties edited
by clicking the Edit button. To configure a new security policy supporting 802.1x EAP,
continue to step 2.
2. Click the Create button to configure a new policy supporting 802.1x EAP.
The New Security Policy screen displays with no authentication or encryption options
selected.
3. Select the 802.1x EAP radio button.
The 802.1x EAP Settings field displays within the New Security Policy screen.
Realm Name Specify a realm name that is case-sensitive, for example, BROCADE.COM. The realm name
is the name domain/realm name of the KDC Server. A realm name functions similarly to a
DNS domain name. In theory, the realm name is arbitrary. However, in practice a Kerberos
realm is named by uppercasing the DNS domain name that is associated with hosts in the
realm.
Primary KDC Specify a numerical (non-DNS) IP address and port for the primary Key Distribution Center
(KDC). The KDC implements an Authentication Service and a Ticket Granting Service,
whereby an authorized user is granted a ticket encrypted with the user's password. The
KDC has a copy of every user password.
Backup KDC Optionally, specify a numerical (non-DNS) IP address and port for a backup KDC. Backup
KDCs are referred to as slave servers. The slave server periodically synchronizes its
database with the primary (or master) KDC.
Remote KDC Optionally, specify a numerical (non-DNS) IP address and port for a remote KDC. Kerberos
implementations can use an administration server allowing remote manipulation of the
Kerberos database. This administration server usually runs on the KDC.
Port Specify the ports on which the Primary, Backup and Remote KDCs reside. The default port
number for Kerberos Key Distribution Centers is Port 88.
- Brocade Mobility 7131 1
- Access Point 1
- Document History 2
- Contents 3
- Chapter 3 Getting Started 5
- Chapter 5 Network Management 6
- Chapter 8 CLI Reference 8
- Chapter 10 Adaptive AP 8
- Chapter B Usage Scenarios 9
- 53-1002517-01 10
- About This Guide 11
- Related publications 12
- Getting technical help 12
- Introduction 13
- New Features 14
- Hotspot Customization 15
- WAN Failover 15
- Proxy ARP Support 16
- Multi Cipher Support 16
- Dynamic Chain Selection 17
- Dedicated Sensor Support 17
- LED Disable 17
- Feature Overview 18
- 802.11n Support 19
- Sensor Support 19
- Mesh Roaming Client 21
- Separate LAN and WAN Ports 21
- Multiple Mounting Options 22
- Sixteen Configurable WLANs 22
- • Kerberos Authentication 23
- • EAP Authentication 23
- • WEP Encryption 23
- Kerberos Authentication 24
- EAP Authentication 24
- WEP Encryption 25
- KeyGuard Encryption 25
- Firewall Security 26
- VPN Tunnels 26
- VLAN Support 27
- Updatable Firmware 27
- Power-over-Ethernet Support 28
- MU-MU Transmission Disallow 28
- Voice Prioritization 29
- Support for CAM and PSP MUs 29
- Statistical Displays 29
- DHCP Support 30
- Transmit Power Control 30
- Mesh Networking 31
- Additional LAN Subnet 31
- Hotspot Support 32
- Manual Date and Time Settings 33
- Dynamic DNS 33
- Auto Negotiation 33
- Adaptive AP 33
- Rogue AP Enhancements 34
- QBSS Support 34
- Triple Radio Support 34
- IP Filtering 35
- MU Rate Limiting 35
- Per Radio MU Limit 35
- Power Setting Configuration 36
- AMSDU Transmission Support 36
- IPSec VPN Support 36
- Theory of Operations 37
- MAC Layer Bridging 38
- Media Types 39
- MU Association Process 39
- Operating Modes 40
- Management Access Options 41
- MAC Address Assignment 41
- Hardware Installation 43
- Package Contents 44
- Access Point Placement 45
- Power Options 47
- Power Injector System 47
- Cabling the Power Injector 49
- Mobility 7131N Access Point 50
- • Light pipe 55
- • Badge for light pipe 55
- • Decal for badge 55
- • Security cable (optional) 55
- LED Indicators 57
- Dual Radio (2.4/5 GHz) LEDs 59
- Single Radio 2.4 GHz LEDs 60
- Single Radio 5 GHz LEDs 60
- Setting Up MUs 61
- Getting Started 63
- Basic Device Configuration 65
- Configuring Device Settings 67
- Testing Connectivity 76
- Where to Go from Here? 76
- System Configuration 79
- Configuring Power Settings 82
- Available Power 83
- Power 2.4 GHz 84
- Maximum Transmit 84
- Power 5 GHz 84
- Power 5 GH 85
- Adaptive AP Setup 87
- Configuring Data Access 89
- LAN1, LAN2 or WAN interfaces: 90
- Importing a CA Certificate 93
- Ensure the 97
- Configuring SNMP Settings 99
- Feature MIB Feature MIB 100
- Mobility 7131 Access Point 103
- Mobility 7131 Access 103
- • Enabling SNMP Traps 104
- Enabling SNMP Traps 105
- Configuring LLDP Settings 111
- Mobility 7131 114
- Logging Configuration 115
- Updating Device Firmware 121
- Network Management 127
- Configuring VLAN Support 130
- Configuring WAN Settings 139
- • Novatel Merlin 870 143
- Configuring Port Forwarding 146
- Configuring Dynamic DNS 147
- Customizing a Hotspot Display 168
- (mutually exclusive) 173
- Configuring MU Rate Limiting 188
- Configuring Router Settings 190
- Setting the RIP Configuration 191
- Configuring IP Filtering 193
- Creating a Global Filter 196
- LAN and WLAN filter policies 197
- Assessing IP Filter Stats 199
- In this chapter 201
- Configuring Security Options 202
- Setting Passwords 202
- Mobility 205
- 7131 Access Point 205
- Configuring WEP Encryption 211
- Configuring Firewall Settings 222
- Available Protocols 226
- Configuring VPN Tunnels 228
- Configuring Auto Key Settings 236
- Configuring IKE Key Settings 238
- VPN Configuration - Example 241
- Viewing VPN Status 242
- Displaying Rogue AP Details 250
- Configuring the Radius Server 253
- Group Member 256
- Attribute 256
- Mapping Users to Groups 259
- Monitoring Statistics 265
- Viewing LAN Statistics 268
- Viewing Wireless Statistics 273
- Viewing WLAN Statistics 274
- Viewing Radio Statistics 279
- Retry Histogram 282
- Viewing MU Statistics Summary 283
- Viewing MU Details 284
- Pinging Individual MUs 286
- MU Authentication Statistics 286
- CLI Reference 293
- Admin and Common Commands 294
- Description: 295
- Syntax: 295
- Example: 295
- Network Commands 298
- Network Type Filter Commands 310
- Network WAN Commands 313
- Network WAN NAT Commands 315
- Related Commands: 318
- Network Wireless Commands 330
- Network ACL Commands 348
- GHz].advanced)>show 358
- GHz].advanced)>set 359
- GHz].mesh)>show 360
- GHz].mesh)>delete 361
- Descripton: 370
- Network Rogue-AP Commands 373
- Network Firewall Commands 380
- Network Router Commands 383
- Network IP Filter Commands 387
- System Commands 390
- Power Setup Commands 394
- Adaptive AP Setup Commands 395
- LLDP Commands 398
- System Access Commands 399
- Description: ) 402
- System SNMP Commands 407
- System SNMP Traps Commands 410
- System User Database Commands 415
- System Radius Commands 421
- Description: set 425
- zone-list 434
- System Log Commands 435
- Firmware Update Commands 443
- Statistics Commands 445
- Configuring Mesh Networking 455
- Spanning Tree Protocol (STP) 457
- Defining the Mesh Topology 457
- Normal Operation 458
- Configuring AP#1: 470
- Configuring AP#2 474
- Configuring AP#3 474
- Configuring AP#1 476
- Where to Go From Here 484
- Adaptive AP Management 484
- Licensing 484
- Switch Discovery 484
- Auto Discovery using DHCP 485
- Manual Adoption Configuration 485
- Adaptive AP WLAN Topology 486
- Configuration Updates 486
- Adaptive AP Switch Failure 487
- Adaptive Mesh Support 487
- Extended WLANs Only 488
- Independent WLANs Only 489
- Adaptive AP Configuration 491
- Option Data Type Value 492
- Switch Configuration 493
- IPSec and Independent WLAN 496
- Technical Specifications 501
- Electrical Characteristics 502
- Country Codes 503
- Country Code Country Code 504
- Usage Scenarios 507
- Code Data type 508
- • 1 TFTP Server 509
- DHCP Priorities 510
- BootP Options 511
- • Sends a true BootP request 512
- BootP Priorities 513
- • 1 Cisco VPN device 517
Related products and manuals for WLAN access points Brocade Communications Systems Mobility 7131 Series
(65 pages)© 2020, manymanuals.com. All rights reserved. | 0.272 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals