Netgear WC7500-Wireless User Manual - Page 141
basic-Auth, Auth1, External LDAP server, basic-LDAP, Network Authentication, Authentication, Server
View all Netgear WC7500-Wireless manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 141 highlights
ProSAFE Wireless Controller option during the configuration of a profile. As part of the advanced authentication server settings, you can define multiple external RADIUS servers that you would typically use in a more complex network with many profiles. You can then assign different RADIUS servers to different profiles. By default, the external RADIUS server for the basic authentication group is called basic-Auth. You cannot change this name. By default, the external RADIUS authentication servers for the advanced authentication groups are called Auth1 through Auth8, and you can change these names. You can assign the basic-Auth server to an advanced profile group, and you can assign a RADIUS server of an advanced authentication group to the basic profile group. See the following configuration guidelines for external RADIUS servers: - You must add the IP address of the wireless controller as a RADIUS client to the RADIUS server. All managed access points are then automatically known to the RADIUS server. - For configuration guidelines for external MAC authentication, see Guidelines for External MAC Authentication on page 146. - For configuration guidelines for external authentication of captive portal users, see Manage Guest Network Access Through Guest Portals and Captive Portals on page 223. • External LDAP server. You can define one external LDAP server (commonly referred to as an Active Directory [AD] server). You must specify its configuration on the basic Authentication Server page (see Configure Basic Authentication Server Settings on page 142) so that you can select this authentication option during the configuration of a profile. By default, the external LDAP server for the basic authentication group is called basic-LDAP. You cannot change this name, and you cannot configure any LDAP servers for the advanced authentication groups. You can assign the basic-LDAP server to both the basic profile group and to advanced profile groups. All three servers can be active so that the profiles that you set up can be configured to work with different authentication servers. For example, you could set up a guest profile with no authentication, an engineering profile that uses external RADIUS authentication, and a marketing profile that uses external LDAP authentication. Note: For authentication, you can configure and use a single LDAP server only. However, you can configure and use several RADIUS servers. The settings that you specify on the Authentication Server page affect the selections that are available in the Network Authentication menu and the corresponding Authentication Server field on the Edit Profile page. For information about how to configure security profiles, see Configure a Profile in the Basic Profile Group on page 124 and Configure a Profile in an Advanced Profile Group on page 131. Manage Security Profiles and Profile Groups 141