Netgear WNDAP360 WNDAP360 Reference Manual - Page 46

Table 10., Authentication Settings of the Edit Security Profile Screen Continued - access control

Get Netgear WNDAP360 PDF manuals and user guides View all Netgear WNDAP360 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 46 highlights

ProSafe Dual Band Wireless-N Access Point WNDAP360 Table 10. Authentication Settings of the Edit Security Profile Screen (Continued) Field Description Wireless Client Security Separation If you enable wireless client security separation by selecting Enable from the drop-down list, the associated wireless clients are not be able to communicate with each other. By default, Disable is selected from the drop-down list. This feature is intended for hotspots and other public access situations. Dynamic VLAN From the drop-down list, select how VLANs operate by making one of the following selections: • Disable. Disables dynamic VLANs, and enables static VLANs. This is the default setting. • Optional. Enables dynamic VLANs but if a RADIUS server does not return a VLAN ID, the wireless station is still allowed to connect to the wireless access point. • Required. Enables dynamic VLANs. If a RADIUS server does not return a VLAN ID, the wireless station is not authenticated and cannot connect to the wireless access point. For dynamic VLANs to operate (that is, the selection is Optional or Required), the following is required: • The hubs and switches on your LAN need to support the VLAN (802.1Q) standard. • The authentication is set to any RADIUS type authentication: either the network authentication in the wireless security profile or the remote MAC address database authentication for the MAC Authentication feature can be used. VLAN ID Access Control Enter the default VLAN ID that needs to be associated with this wireless security profile. The default VLAN ID is 1. The VLAN ID needs to match the VLAN ID that is used by the other devices in your network. Note: Access control functions only when static VLANs are enabled, that is, you select Disable from the Dynamic VLAN drop-down list. Access Control Policy The Access Control radio buttons let you enable or disable access control through a RADIUS server to ensure that clients are connected to the wireless access point through the correct VLAN. • Disable. Access control is disabled. This is the default setting. • Enable. Access control is enabled. Clients are authenticated through a RADIUS server. When access control is enabled, the access control policy lets you specify whether or not a client can access the wireless access point when the client is not authenticated because the VLAN ID is incorrect. Select a radio button to enable or disable access: • Disable. If the RADIUS server does not authenticate the client, the client is still allowed to connect to the wireless access point through the default VLAN (which is specified in the VLAN ID field) instead of through the VLAN to which the client is assigned in the RADIUS server. • Enable. If the RADIUS server does not authenticate the client, the client is not allowed to connect to the wireless access point. 6. Click Apply to save your settings. Wireless Configuration and Security 46

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
Wireless Configuration and Security
46
ProSafe Dual Band Wireless-N Access Point WNDAP360
6.
Click
Apply
to save your settings.
Wireless Client Security
Separation
If you enable wireless client security separation by selecting
Enable
from the
drop-down list, the associated wireless clients are not be able to communicate
with each other. By default, Disable is selected from the drop-down list. This
feature is intended for hotspots and other public access situations.
Dynamic VLAN
From the drop-down list, select how VLANs operate by making one of the
following selections:
Disable
. Disables dynamic VLANs, and enables static VLANs. This is the
default setting.
Optional
. Enables dynamic VLANs but if a RADIUS server does not return a
VLAN ID, the wireless station is still allowed to connect to the wireless access
point.
Required
. Enables dynamic VLANs. If a RADIUS server does not return a
VLAN ID, the wireless station is not authenticated and cannot connect to the
wireless access point.
For dynamic VLANs to operate (that is, the selection is Optional or Required),
the following is required:
• The hubs and switches on your LAN need to support the VLAN (802.1Q)
standard.
• The authentication is set to any RADIUS type authentication: either the
network authentication in the wireless security profile or the remote MAC
address database authentication for the MAC Authentication feature can be
used.
VLAN ID
Enter the default VLAN ID that needs to be associated with this wireless security
profile. The default VLAN ID is 1. The VLAN ID needs to match the VLAN ID that
is used by the other devices in your network.
Access Control
Note:
Access control functions only when static VLANs are enabled, that is, you
select
Disable
from the Dynamic VLAN drop-down list.
The Access Control radio buttons let you enable or disable access control
through a RADIUS server to ensure that clients are connected to the wireless
access point through the correct VLAN.
Disable
. Access control is disabled. This is the default setting.
Enable
. Access control is enabled. Clients are authenticated through a
RADIUS server.
Access Control Policy
When access control is enabled, the access control policy lets you specify
whether or not a client can access the wireless access point when the client is
not authenticated because the VLAN ID is incorrect.
Select a radio button to enable or disable access:
Disable
. If the RADIUS server does not authenticate the client, the client is
still allowed to connect to the wireless access point through the default VLAN
(which is specified in the VLAN ID field) instead of through the VLAN to which
the client is assigned in the RADIUS server.
Enable
. If the RADIUS server does not authenticate the client, the client is not
allowed to connect to the wireless access point.
Table 10.
Authentication Settings of the Edit Security Profile Screen (Continued)
Field
Description