Netgear WC7660SKT Reference Manual - Page 104
Manage Authentication Servers and Authentication Server Groups, Authentication Server Concepts
View all Netgear WC7660SKT manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 104 highlights
ProSAFE Wireless Controller WC7600 Manage Authentication Servers and Authentication Server Groups You can set up internal and external authentication servers and server groups that the wireless controller can use for authentication. Authentication Server Concepts You can specify three types of authentication servers: internal, external RADIUS, and external LDAP: • Internal authentication server. The wireless controller handles authentication. If you use this setting, set up WiFi clients on the User Management screen (see Manage Users, Accounts, and Passwords on page 150.) • External RADIUS server. You can define a basic external RADIUS server that you would typically use in the profiles of a basic profile group of a small-scale network. You must specify its configuration on the basic Authentication Server screen (see the next section) so that you can select this authentication option during the configuration of a profile. As part of the advanced authentication server settings, you can define multiple external RADIUS servers that you would typically use in a more complex network with many profiles. You can then assign different RADIUS servers to different profiles. By default, the external RADIUS server for the basic authentication group is called basic-Auth. You cannot change this name. By default, the external RADIUS authentication servers for the advanced authentication groups are called Auth1 through Auth8, and you can change these names. You can assign the basic-Auth server to an advanced profile group, and you can assign a RADIUS server of an advanced authentication group to the basic profile group. See the following configuration guidelines for external RADIUS servers: - You need to add only the IP address of the wireless controller as a RADIUS client to the RADIUS server. All managed access points are then automatically known to the RADIUS server. - For configuration guidelines for external MAC authentication, see Guidelines for External MAC Authentication on page 110. - For configuration guidelines for external authentication of captive portal users, see Manage Guest Network Access on page 145. • External LDAP server. You can define one external LDAP server (commonly referred to as an Active Directory [AD] server). You must specify its configuration on the basic Authentication Server screen (see the next section) so that you can select this authentication option during the configuration of a profile. By default, the external LDAP server for the basic authentication group is called basic-LDAP. You cannot change this name, and you cannot configure any LDAP servers Manage Security Profiles and Profile Groups 104