Ieee 802.1X Device Authentication - GE MDS Mercury Series Reference Manual
Wireless ip/ethernet transceiver, covering ap and remote units
Hide thumbs
Also See for MDS Mercury Series:
- Setup manual (4 pages) ,
- Setup manual (4 pages) ,
- Reference manual (76 pages)
Table of Contents
05-4446A01, Rev. C
Figure 3-56. Approved Remotes Submenu
•
—Enter the MAC address of Remote.
Add Remote
[
Any valid 6-digit hexadecimal MAC address; 00:00:00:00:00:00
•
—Enter the MAC address of Remote. For security
Delete Remote
purposes, you should delete a stolen or deprovisioned radio
from this list.
•
Add Associated Remotes
the approved remote list. Alternatively, you can enter each
Remote MAC manually.
•
Delete All Remotes
current list.
•
View Approved Remotes
address. These radios are authorized to join this AP. If a Remote
is not in this list, it cannot associate with this AP.
3.7.3 IEEE 802.1x Device Authentication
This section covers the configuration needed for the radios to access the
IEEE 802.1x device authentication server, which provides Device Level
Security and for Wireless Access Security. GE MDS does not provide
the server software.
Operation of Device Authentication
Device authentication forces the radio to authenticate before allowing
user traffic to traverse the wireless network. When Device Security is
configured to use IEEE 802.1x as the Authentication Method, Remote
radios need three types of certificates: public (client), private, and root
(Certificate Authority). These files are unique to each Remote radio and
must first be created at the server and then installed into each unit via
TFTP. The certificate files must be in DER format.
Device authentication uses the serial number of each radio as the
Common Name (CN) in its certificate and in its RADIUS identity field.
Mercury Reference Manual
Invisible place holder
—Add all currently associated remotes to
—Remove (complete purge) all Remotes from
—Listing of approved Remotes by MAC
]
89
Chapters
Table of Contents
Troubleshooting
