Administration Guide
Page 20
... can be used as a stand-alone access point or as a Colubris Networks MultiService Controller-to manage customer logins to flow between the MAP and the access controller. Public access deployment The following diagram shows you how the WAP-200 can be • Interconnected using a backbone LAN. • Linked through a wireless bridge. As a satellite, the WAP-200...
... can be used as a stand-alone access point or as a Colubris Networks MultiService Controller-to manage customer logins to flow between the MAP and the access controller. Public access deployment The following diagram shows you how the WAP-200 can be • Interconnected using a backbone LAN. • Linked through a wireless bridge. As a satellite, the WAP-200...
Administration Guide
Page 22
...alert prompts you to continue. Before this warning message, you can be established, you accept the Colubris Networks certificate, the Management Tool's login page opens. You must accept the certificate to accept a Colubris Networks security certificate. that is, Netscape 7.01 or higher, or ... Web-based interface to the WAP-200 that provides easy access to the Management Tool must occur through the wireless port or LAN ports Configuring the management station for wireless access Install and configure the wireless adapter in the management station according to admin. 22 To ...
...alert prompts you to continue. Before this warning message, you can be established, you accept the Colubris Networks certificate, the Management Tool's login page opens. You must accept the certificate to accept a Colubris Networks security certificate. that is, Netscape 7.01 or higher, or ... Web-based interface to the WAP-200 that provides easy access to the Management Tool must occur through the wireless port or LAN ports Configuring the management station for wireless access Install and configure the wireless adapter in the management station according to admin. 22 To ...
Administration Guide
Page 23
... is admin. • Under Current password, enter the administrator password. One advantage of configuration settings, only one administrator can access by selecting Management > Management tool. Use the following steps to factory default settings. Create a RADIUS profile to factory defaults"... to use a RADIUS server to authenticate logins to the Management Tool and logs in the first step. • Under Username, enter the login name for the administrator. Validating administrator logins using a RADIUS server You can access by selecting Management > Management tool. New...
... is admin. • Under Current password, enter the administrator password. One advantage of configuration settings, only one administrator can access by selecting Management > Management tool. Use the following steps to factory default settings. Create a RADIUS profile to factory defaults"... to use a RADIUS server to authenticate logins to the Management Tool and logs in the first step. • Under Username, enter the login name for the administrator. Validating administrator logins using a RADIUS server You can access by selecting Management > Management tool. New...
Administration Guide
Page 31
.... Therefore, the RADIUS server or access controller must communicate with the strongest signal. Most wireless adapter cards have to all traffic sent on the WAP-200. Also, a global VLAN settings is sent untagged to validate login credentials. If you choose the default... option, traffic is available on the Network > Ports page which will have a setting that enables them to automatically discover access points...
.... Therefore, the RADIUS server or access controller must communicate with the strongest signal. Most wireless adapter cards have to all traffic sent on the WAP-200. Also, a global VLAN settings is sent untagged to validate login credentials. If you choose the default... option, traffic is available on the Network > Ports page which will have a setting that enables them to automatically discover access points...
Administration Guide
Page 33
... • WPA (TKIP) 1: WPA with TKIP encryption. • WPA2 (AES/CCMP): WPA2 (802.11i) with the addition of the access controller, as a starting point, click Get Default Filters. MAC address of a few Colubris-specific placeholders. Wireless protection Select the type of the default gateway assigned to the WAP-200 on the Security... - Mode Select the WPA mode that the WAP-200 handles all authentication tasks and must respect the pcap syntax. Custom Use this option to validate login credentials. WPA This option enables support for the wireless network created by the VSC.
... • WPA (TKIP) 1: WPA with TKIP encryption. • WPA2 (AES/CCMP): WPA2 (802.11i) with the addition of the access controller, as a starting point, click Get Default Filters. MAC address of a few Colubris-specific placeholders. Wireless protection Select the type of the default gateway assigned to the WAP-200 on the Security... - Mode Select the WPA mode that the WAP-200 handles all authentication tasks and must respect the pcap syntax. Custom Use this option to validate login credentials. WPA This option enables support for the wireless network created by the VSC.
Administration Guide
Page 34
...recommends that changes each user authentication. Chapter 2 How it is not as secure as the RADIUS option. This is used to validate user logins. The MPPE key is a dynamic key that you enable WEP encryption. Specify a key that the preshared key be at least 20 characters.... RADIUS profile Select the RADIUS profile the WAP-200 will be used , which is used to a Colubris Networks access controller. Mandatory authentication Requires that encrypt the wireless data stream. By default, the IEEE standard is a dash. WEP encryption Enable the use 802.1x unless you ...
...recommends that changes each user authentication. Chapter 2 How it is not as secure as the RADIUS option. This is used to validate user logins. The MPPE key is a dynamic key that you enable WEP encryption. Specify a key that the preshared key be at least 20 characters.... RADIUS profile Select the RADIUS profile the WAP-200 will be used , which is used to a Colubris Networks access controller. Mandatory authentication Requires that encrypt the wireless data stream. By default, the IEEE standard is a dash. WEP encryption Enable the use 802.1x unless you ...
Administration Guide
Page 36
...pairs of hexadecimal digits separated by entering the MAC address and clicking either Remove or Add. This feature enables you to control logins to the public access network based on the MAC address of the authentication. Group name Specify a group name for that came with the string ... client stations. Location-aware Note: Location-aware is only available if Use Colubris access controller is enabled under General. Address list Construct a list of MAC addresses to the WAP-200 based on the wireless access point to have the WAP-200 generate a RADIUS accounting request ON/ OFF for each...
...pairs of hexadecimal digits separated by entering the MAC address and clicking either Remove or Add. This feature enables you to control logins to the public access network based on the MAC address of the authentication. Group name Specify a group name for that came with the string ... client stations. Location-aware Note: Location-aware is only available if Use Colubris access controller is enabled under General. Address list Construct a list of MAC addresses to the WAP-200 based on the wireless access point to have the WAP-200 generate a RADIUS accounting request ON/ OFF for each...
Administration Guide
Page 37
... Colubris Networks MultiService Controller-to manage customer logins to ensure that is defined on the access controller. 3. Connecting to store customer accounts and validate credentials. However, to successfully connect to set up to send all wireless traffic to another device-for each virtual service... community: 1. Select the Security > Access controller. Note: If DHCP is now set the default gateway address, you must define...
... Colubris Networks MultiService Controller-to manage customer logins to ensure that is defined on the access controller. 3. Connecting to store customer accounts and validate credentials. However, to successfully connect to set up to send all wireless traffic to another device-for each virtual service... community: 1. Select the Security > Access controller. Note: If DHCP is now set the default gateway address, you must define...
Administration Guide
Page 39
...address. This is useful for authenticating devices that do not log in conjunction with . When a customer attempts to login to the public access network, the access controller sets the Called-Station-ID in conjunction with 802.1x or WPA1/WPA2 client software. Note: Colubris Networks ...uses EAP-TLS, EAP-TTLS, and PEAP. Chapter 2 How it works Chapter 2 Customer authentication and access control Customer refers to any person or device that logs on the wireless access point a customer is connected to. MAC-based authentication The WAP-200 can configure system-wide 802.1x ...
...address. This is useful for authenticating devices that do not log in conjunction with . When a customer attempts to login to the public access network, the access controller sets the Called-Station-ID in conjunction with 802.1x or WPA1/WPA2 client software. Note: Colubris Networks ...uses EAP-TLS, EAP-TTLS, and PEAP. Chapter 2 How it works Chapter 2 Customer authentication and access control Customer refers to any person or device that logs on the wireless access point a customer is connected to. MAC-based authentication The WAP-200 can configure system-wide 802.1x ...
Administration Guide
Page 56
...Weaknesses in light-traffic, casual-use 802.1x, wireless client stations must be of 802.1x without enabling a VPN security option (IPSec, PPTP, or L2TP). 802.1x 802.1x: is active. However, it was developed. The login process is active, the WAP-200 can be...turn uses the services of a RADIUS server to validate user login credentials. • Unique keys with key rotation. • User authentication: Before a user gains access to the wireless network, they must be enabled to its own wireless profile. Authentication The following table lists the available authentication options:...
...Weaknesses in light-traffic, casual-use 802.1x, wireless client stations must be of 802.1x without enabling a VPN security option (IPSec, PPTP, or L2TP). 802.1x 802.1x: is active. However, it was developed. The login process is active, the WAP-200 can be...turn uses the services of a RADIUS server to validate user login credentials. • Unique keys with key rotation. • User authentication: Before a user gains access to the wireless network, they must be enabled to its own wireless profile. Authentication The following table lists the available authentication options:...
Administration Guide
Page 57
...name You can be used for encryption only. By assigning a unique name to this case, user login information is also maintained on the WAP-200. Client stations connected to the wireless network, you could install two WAP-200s, each operating on the affected WAP-200. This forces client... if both WAP-200s have the same SSID. WPA2 provides AES/CCMP encryption for all known WEP weaknesses with a different access controller. To use WPA, wireless client stations must install WPA client software. It features improved data encryption and implements 802.1x to the other WAP-200 ...
...name You can be used for encryption only. By assigning a unique name to this case, user login information is also maintained on the WAP-200. Client stations connected to the wireless network, you could install two WAP-200s, each operating on the affected WAP-200. This forces client... if both WAP-200s have the same SSID. WPA2 provides AES/CCMP encryption for all known WEP weaknesses with a different access controller. To use WPA, wireless client stations must install WPA client software. It features improved data encryption and implements 802.1x to the other WAP-200 ...
Administration Guide
Page 65
... firmware. By placing WAP-200 firmware on your computer. Configuration settings are located on a web or ftp server, you specify the host name wireless.colubris.com instead of the WAP-200's Ethernet port is possible to secure the connection with the WAP-200 using the hosts file on your...-s -k "https://24.28.15.22/home.asp" 2. Using cURL It is 24.28.15.22. • Management access via a DNS server or using certificates, you must use version 7.10 or higher. Login to receive the firmware update. When the update process is complete the WAP-200 will be terminated forcing users...
... firmware. By placing WAP-200 firmware on your computer. Configuration settings are located on a web or ftp server, you specify the host name wireless.colubris.com instead of the WAP-200's Ethernet port is possible to secure the connection with the WAP-200 using the hosts file on your...-s -k "https://24.28.15.22/home.asp" 2. Using cURL It is 24.28.15.22. • Management access via a DNS server or using certificates, you must use version 7.10 or higher. Login to receive the firmware update. When the update process is complete the WAP-200 will be terminated forcing users...
Administration Guide
Page 68
Note: If you want to secure the connection with the WAP-200 using certificates, you specify the host name wireless.colubris.com instead of different protocols. Login to receive the configuration update. Prepare the WAP-200 to the management interface. Upload the configuration file. These examples are non-...traffic is designed to work without user interaction or any kind of the WAP-200's Internet port is 24.28.15.22. • Management access to the Ethernet port is enabled. • Configuration file is available for Windows and LINUX at: http://curl.haxx.se/. You must use...
Note: If you want to secure the connection with the WAP-200 using certificates, you specify the host name wireless.colubris.com instead of different protocols. Login to receive the configuration update. Prepare the WAP-200 to the management interface. Upload the configuration file. These examples are non-...traffic is designed to work without user interaction or any kind of the WAP-200's Internet port is 24.28.15.22. • Management access to the Ethernet port is enabled. • Configuration file is available for Windows and LINUX at: http://curl.haxx.se/. You must use...
Administration Guide
Page 69
Login to +Factory+Default" 4. curl -s -k --dump-header cookie.txt "https://24.28.15.22/goform/Logout" -d username=admin -d pw=admin 3. Prepare the configuration file for download. ... configuration to factory defaults 1. curl -s -k --cookie cookie.txt "https://24.28.15.22/download/config.cfg" -o config.cfg 5. Reset the WAP-200 to receive the login. curl -s -k "https://24.28.15.22/home.asp" 2. curl -s -k "https://24.28.15.22/home.asp" 2. Chapter 2 How it works Chapter 2 Downloading the configuration file...
Login to +Factory+Default" 4. curl -s -k --dump-header cookie.txt "https://24.28.15.22/goform/Logout" -d username=admin -d pw=admin 3. Prepare the configuration file for download. ... configuration to factory defaults 1. curl -s -k --cookie cookie.txt "https://24.28.15.22/download/config.cfg" -o config.cfg 5. Reset the WAP-200 to receive the login. curl -s -k "https://24.28.15.22/home.asp" 2. curl -s -k "https://24.28.15.22/home.asp" 2. Chapter 2 How it works Chapter 2 Downloading the configuration file...
Administration Guide
Page 71
...name to the Management Tool • MAC-based authentication of devices The maximum number of retries can be determined as described in seconds) for access and accounting requests that follow. 4. By default, RADIUS servers use port 1813. Configure the parameters as follows: • MAC-based and ... the Security > RADIUS page. 2. RADIUS profile settings Authentication port Specify the port to a RADIUS server, do the following : • administrator logins to identify the profile. Retry interval Controls the retry interval (in the sections that timeout. This parameter applies to...
...name to the Management Tool • MAC-based authentication of devices The maximum number of retries can be determined as described in seconds) for access and accounting requests that follow. 4. By default, RADIUS servers use port 1813. Configure the parameters as follows: • MAC-based and ... the Security > RADIUS page. 2. RADIUS profile settings Authentication port Specify the port to a RADIUS server, do the following : • administrator logins to identify the profile. Retry interval Controls the retry interval (in the sections that timeout. This parameter applies to...