1. Home
    2. /
  2. Manuals
    3. /
  3. Siemens
    4. /
  4. SL2-141
    5. /
  5. 24
Page 116 / 144 Scroll up to view Page 111 - 115
ADSL Router User Manual
For 802.1X Wireless Network
When a wireless client requests access to a network, it is required to be authenticated by a central
authentication server (RADIUS Server). Only an authenticated user can be granted by the network
access and thereby unauthorized is blocked.
Wireless Security:
Choose 802.1x as the authentication
protocol, your data transmission between the
router and the clients will be protected with
the settings that you set in this web page.
RADIUS Server IP Address:
RADIUS Server is a protocol for carrying
authentication, authorization, and
configuration information between a
Network Access Server which desires to
authenticate its links and a shared
Authentication Server. Please type in the IP
Address for the RADIUS Server.
RADIUS UDP Port:
Except for the IP address of the RADIUS
Server, you have to enter the port number for
the server. Port 1812 is the reserved
RADIUS-authentication port described in
RFC 2138. Earlier AP (RADIUS clients) use
port 1945. The default value will be shown
on this box. You can keep and use it.
RADIUS Share Secret:
A share secret is like a password, which is
used between RADIUS Server and the
specific AP (RADIUS client) to verify
identity. Both RADIUS Server and the AP
(RADIUS client) must be use the same
shared secret for successful communication
to occur. Type in the words for the share
secret.
After finished settings, click
Apply
for
activation.
Example for Configuration 802.1x environment
You will need the following components for establishing an 802.1x environment in your network.
±
Windows 2000 Server: RADIUS server installed using “Internet Authentication Service”.
Certificate Services is installed
±
AP (Router): It should be connected to Windows 2000 Advanced Server through the LAN port.
The DHCP server for the router is used and 802.1x must be enabled.
±
802.1x client: A WLAN card supporting WEP is used.
108
Page 117 / 144
Chapter 5:Connection Mode
±
Authentication Mechanism
For WPA (Wi-Fi Protected Access)
WiFi-Protected Access:
The WPA is suitable for enterprises. It must be
used in conjunction with an authentication
server such as RADIUS to provide centralized
access control and management. It can
provides stronger encryption and
authentication solution than others WPA mode.
Data Encryption (WPA):
Select the data encryption for the WPA mode.
There are three types that you can choose,
TKIP, AES, TKIP+AES.
TKIP takes the original master key only as a
starting point and derives its encryption
keys mathematically from this master key.
Then it regularly changes and rotates the
encryption keys so that the same encryption
key will be never used twice.
AES provides security between client
workstations operating in ad hoc mode. It
uses a mathematical ciphering algorithm
that employs variable key sizes of 128, 192
or 256 bits.
TKIP+AES combines the features and
functions of TKIP and AES.
WPA Group Rekey Interval
:
Type in the time for the WPA group rekey
interval. The unit is second.
RADIUS Server IP Address:
RADIUS Server is a protocol for carrying
authentication, authorization, and
configuration information between a Network
Access Server which desires to authenticate its
links and a shared Authentication Server.
Please type in the IP Address for the RADIUS
Server.
RADIUS UDP Port:
Except for the IP address of the RADIUS
Server, you have to enter the port number for
the server. Port 1812 is the reserved
RADIUS-authentication port described in RFC
2138. Earlier RADIUS clients use port 1945.
The default value will be shown on this box.
You can keep and use it.
RADIUS Share Secret:
A share secret is like a password, which is used
between IAS and the specific RADIUS client
to verify identity. Both IAS and the RADIUS
client must be use the same shared secret for
successful communication to occur. Type in
the words for the share secret.
After finished settings, click
Apply
for
activation.
109
Page 118 / 144
ADSL Router User Manual
For WPA-PSK/WPA2-PSK/Mixed WPA-PSK
WiFi-Protected Access:
WPA-PSK is useful for small places such as
home environment without having
authentication servers. It allows the use of
manually-entered keys or passwords and is
designed to be easy to set up for home users.
Format:
Choose the typing method of encryption key.
You have to click either
Hexadecimal digits
or
ASCII characters
and type the keys on
the field of Pre-Share Key.
Pre-Share Key:
Please type with the key between 8 and 63
characters, or 64 hexadecimal digits.
Only
the devices with a matching key that you set
here can join this network.
WPA Group Rekey Interval
:
Type in the time for the WAP group rekey
interval. The unit is second.
Data Encryption (WPA):
Select the data encryption for the WPA
mode. There are three types that you can
choose, TKIP, AES, TKIP+AES.
TKIP takes the original master key only
as a starting point and derives its
encryption keys mathematically from this
master key. Then it regularly changes and
rotates the encryption keys so that the
same encryption key will be never used
twice.
AES provides security between client
workstations operating in ad hoc mode. It
uses a mathematical ciphering algorithm
that employs variable key sizes of 128, 192
or 256 bits.
TKIP+AES combines the features and
functions of TKIP and AES
.
After finished settings, click
Apply
for
activation.
110
Page 119 / 144
Chapter 5:Connection Mode
For WPA-2 (Wi-Fi Protected Access)/For Mixed WPA2/WPA
WiFi-Protected Access:
The WPA2 is suitable for enterprises. It must
be used in conjunction with an
authentication server such as RADIUS to
provide centralized access control and
management. It can provides stronger
encryption and authentication solution than
others WPA mode.
Data Encryption (WPA):
Select the data encryption for the WPA
mode. There are three types that you can
choose, TKIP, AES, TKIP+AES.
TKIP takes the original master key only
as a starting point and derives its
encryption keys mathematically from this
master key. Then it regularly changes and
rotates the encryption keys so that the
same encryption key will be never used
twice.
AES provides security between client
workstations operating in ad hoc mode. It
uses a mathematical ciphering algorithm
that employs variable key sizes of 128, 192
or 256 bits.
TKIP+AES combines the features and
functions of TKIP and AES.
WPA2 Pre-authentication:
The wireless client that has associated with
an AP (A) can do the authentication with
another AP (B) in advance. If the client
roams to AP(B), it can associate with AP(B)
quickly. Please click Enabled to inactivate
this function.
Network Re-auth Interval:
When a wireless client has associated with
the number greater than the setting here, it
would be disconnected and the
authentication will be executed again. The
default value is 36000.
WPA Group Rekey Interval
:
Type in the time for the WPA group rekey
interval. The unit is second.
RADIUS Server IP Address:
RADIUS Server is a protocol for carrying
authentication, authorization, and
configuration information between a
Network Access Server which desires to
authenticate its links and a shared
Authentication Server. Please type in the IP
Address for the RADIUS Server.
RADIUS UDP Port:
Except for the IP address of the RADIUS
Server, you have to enter the port number for
the server. Port 1812 is the reserved
111
Page 120 / 144
ADSL Router User Manual
RADIUS-authentication port described in
RFC 2138. Earlier RADIUS clients use port
1945. The default value will be shown on
this box. You can keep and use it.
RADIUS Share Secret:
A share secret is like a password, which is
used between IAS and the specific RADIUS
client to verify identity. Both IAS and the
RADIUS client must be use the same shared
secret for successful communication to
occur. Type in the words for the share secret.
After finished settings, click
Apply
for
activation.
112

Rate

3.5 / 5 based on 2 votes.

Popular Siemens Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top