Home » ZyXEL Manuals » Wireless » ZyXEL NWA90AX » Manual Viewer

ZyXEL NWA90AX User Guide - Page 152

Configuring WWW Service Control, Authenticate Client Certificates,

Add to My Manuals
Save this manual to your list of manuals

Page 152 highlights

Chapter 15 System transferred data), authentication (one party can identify the other party) and data integrity (you know if data has been changed). It relies upon certificates, public keys, and private keys (see Chapter 14 on page 130 for more information). HTTPS on the Zyxel Device is used so that you can securely access the Zyxel Device using the Web Configurator. The SSL protocol specifies that the HTTPS server (the Zyxel Device) must always authenticate itself to the HTTPS client (the computer which requests the HTTPS connection with the Zyxel Device), whereas the HTTPS client only should authenticate itself when the HTTPS server requires it to do so (select Authenticate Client Certificates in the WWW screen). Authenticate Client Certificates is optional and if selected means the HTTPS client must send the Zyxel Device a certificate. You must apply for a certificate for the browser from a CA that is a trusted CA on the Zyxel Device. Please refer to the following figure. 1 HTTPS connection requests from an SSL-aware web browser go to port 443 (by default) on the Zyxel Device's web server. 2 HTTP connection requests from a web browser go to port 80 (by default) on the Zyxel Device's web server. Figure 99 HTTP/HTTPS Implementation Note: If you disable HTTP in the WWW screen, then the Zyxel Device blocks all HTTP connection attempts. 15.4.4 Configuring WWW Service Control Click Configuration > System > WWW to open the WWW screen. Use this screen to specify HTTP or HTTPS settings. NWA50AX/NWA90AX/NWA55AXE Series User's Guide 152

Section	Page
NWA50AX/NWA90AX/NWA55AXE	1
Document Conventions	3
Contents Overview	4
Table of Contents	5
Introduction	12
1.1 Overview	12
1.2 Zyxel Device Roles	12
1.2.1 Root AP	14
1.2.2 Wireless Repeater	14
1.2.3 Radio Frequency (RF) Monitor	15
1.3 Sample Feature Applications	16
1.3.1 MBSSID	16
1.3.2 Dual-Radio	17
1.4 Zyxel Device Product Feature	18
AP Management	20
2.1 Management Mode	20
2.1.1 Standalone	20
2.1.2 Nebula Control Center	20
2.2 Switching Management Modes	22
2.3 Zyxel One Network (ZON) Utility	22
2.3.1 Requirements	22
2.3.2 Run the ZON Utility	23
2.4 Ways to Access the Zyxel Device	26
2.5 Good Habits for Managing the Zyxel Device	27
Hardware	28
3.1 Zyxel Device Single LED	28
3.1.1 Zyxel Device LED	28
Web Configurator	31
4.1 Overview	31
4.2 Accessing the Web Configurator	31
4.3 Navigating the Web Configurator	34
4.3.1 Title Bar	35
4.3.2 Navigation Panel	36
4.3.3 Standalone Mode Navigation Panel Menus	36
4.3.4 Cloud Mode Navigation Panel Menus	38
4.3.5 Tables and Lists	39
Standalone Configuration	42
Standalone Configuration	43
5.1 Overview	43
5.2 Starting and Stopping the Zyxel Device	43
Dashboard	45
6.1 Overview	45
6.1.1 CPU Usage	48
6.1.2 Memory Usage	49
Setup Wizard	51
7.1 Accessing the Wizard	51
7.2 Using the Wizard	51
7.2.1 Step 1 Time Settings	51
7.2.2 Step 2 Password and Uplink Connection	52
7.2.3 Step 3 Radio	53
7.2.4 Step 4 SSID	54
7.2.5 Summary	55
Monitor	56
8.1 Overview	56
8.1.1 What You Can Do in this Chapter	56
8.2 What You Need to Know	56
8.3 Network Status	57
8.3.1 Port Statistics Graph	58
8.4 Radio List	59
8.4.1 AP Mode Radio Information	61
8.5 Station List	62
8.6 WDS Link Info	63
8.7 Detected Device	64
8.8 View Log	66
Network	69
9.1 Overview	69
9.1.1 What You Can Do in this Chapter	69
9.2 IP Setting	69
9.3 VLAN	71
9.4 NCC Discovery	74
Wireless	76
10.1 Overview	76
10.1.1 What You Can Do in this Chapter	76
10.1.2 What You Need to Know	77
10.2 AP Management	77
10.3 Rogue AP	82
10.3.1 Add/Edit Rogue/Friendly List	85
10.4 DCS	86
10.5 Technical Reference	86
User	88
11.1 Overview	88
11.1.1 What You Can Do in this Chapter	88
11.1.2 What You Need To Know	88
11.2 User Summary	89
11.2.1 Add/Edit User	89
11.3 Setting	91
11.3.1 Edit User Authentication Timeout Settings	93
AP Profile	95
12.1 Overview	95
12.1.1 What You Can Do in this Chapter	95
12.1.2 What You Need To Know	95
12.2 Radio	96
12.2.1 Add/Edit Radio Profile	97
12.3 SSID	102
12.3.1 SSID List	103
12.3.2 Add/Edit SSID Profile	104
12.4 Security List	107
12.4.1 Add/Edit Security Profile	107
12.5 MAC Filter List	124
12.5.1 Add/Edit MAC Filter Profile	124
12.6 Layer-2 Isolation List	125
12.6.1 Add/Edit Layer-2 Isolation Profile	127
WDS Profile	128
13.1 Overview	128
13.1.1 What You Can Do in this Chapter	128
13.2 WDS Profile	128
13.2.1 Add/Edit WDS Profile	129
Certificates	130
14.1 Overview	130
14.1.1 What You Can Do in this Chapter	130
14.1.2 What You Need to Know	130
14.1.3 Verifying a Certificate	132
14.2 My Certificates	133
14.2.1 Add My Certificates	134
14.2.2 Edit My Certificates	136
14.2.3 Import Certificates	139
14.3 Trusted Certificates	140
14.3.1 Edit Trusted Certificates	141
14.3.2 Import Trusted Certificates	144
14.4 Technical Reference	145
System	146
15.1 Overview	146
15.1.1 What You Can Do in this Chapter	146
15.2 Host Name	146
15.3 Date and Time	147
15.3.1 Pre-defined NTP Time Servers List	149
15.3.2 Time Server Synchronization	150
15.4 WWW Overview	151
15.4.1 Service Access Limitations	151
15.4.2 System Timeout	151
15.4.3 HTTPS	151
15.4.4 Configuring WWW Service Control	152
15.4.5 HTTPS Example	153
15.5 SSH	159
15.5.1 How SSH Works	160
15.5.2 SSH Implementation on the Zyxel Device	161
15.5.3 Requirements for Using SSH	161
15.5.4 Configuring SSH	161
15.5.5 Examples of Secure Telnet Using SSH	162
15.6 FTP	163
Log and Report	165
16.1 Overview	165
16.1.1 What You Can Do In this Chapter	165
16.2 Email Daily Report	165
16.3 Log Setting	167
16.3.1 Log Setting Screen	168
16.3.2 Edit System Log Settings	169
16.3.3 Edit Remote Server	173
16.3.4 Active Log Summary	174
File Manager	177
17.1 Overview	177
17.1.1 What You Can Do in this Chapter	177
17.1.2 What you Need to Know	177
17.2 Configuration File	178
17.2.1 Example of Configuration File Download Using FTP	182
17.3 Firmware Package	183
17.3.1 Example of Firmware Upload Using FTP	184
17.4 Shell Script	185
Diagnostics	188
18.1 Overview	188
18.1.1 What You Can Do in this Chapter	188
18.2 Diagnostics	188
18.3 Remote Capture	189
LEDs	190
19.1 Overview	190
19.1.1 What You Can Do in this Chapter	190
19.2 Suppression Screen	190
19.3 Locator Screen	191
Reboot	193
20.1 Overview	193
20.1.1 What You Need To Know	193
20.2 Reboot	193
Shutdown	194
21.1 Overview	194
21.1.1 What You Need To Know	194
21.2 Shutdown	194
Local Configuration in Cloud Mode	195
Cloud Mode	196
22.1 Overview	196
22.2 Cloud Mode Web Configurator Screens	196
22.3 Dashboard	197
Network	199
23.1 Overview	199
23.1.1 What You Can Do in this Chapter	199
23.2 IP Setting	199
23.3 VLAN	201
Maintenance	202
24.1 Overview	202
24.1.1 What You Can Do in this Chapter	202
24.2 Shell Script	202
24.3 Diagnostics	203
24.4 View Log	204
Appendices and Troubleshooting	207
Troubleshooting	208
25.1 Overview	208
25.2 Power, Hardware Connections, and LED	208
25.3 Zyxel Device Management, Access, and Login	209
25.4 Internet Access	212
25.5 WiFi Network	213
25.6 Resetting the Zyxel Device	215
25.7 Getting More Troubleshooting Help	215
Importing Certificates	216
IPv6	240
Customer Support	248
Legal Information	253

Match case Limit results 1 per page

Chapter 15 System

NWA50AX/NWA90AX/NWA55AXE Series User’s Guide

152

transferred data), authentication (one party can identify the other party) and data integrity (you know if

data has been changed).

It relies upon certificates, public keys, and private keys (see

Chapter 14 on page 130

for more

information).

HTTPS on the Zyxel Device is used so that you can securely access the Zyxel Device using the Web

Configurator. The SSL protocol specifies that the HTTPS server (the Zyxel Device) must always

authenticate itself to the HTTPS client (the computer which requests the HTTPS connection with the Zyxel

Device), whereas the HTTPS client only should authenticate itself when the HTTPS server requires it to do

so (select

Authenticate Client Certificates

in the

WWW

screen).

Authenticate Client Certificates

optional and if selected means the HTTPS client must send the Zyxel Device a certificate. You must apply

for a certificate for the browser from a CA that is a trusted CA on the Zyxel Device.

Please refer to the following figure.

HTTPS connection requests from an SSL-aware web browser go to port 443 (by default) on the Zyxel

Device’s web server.

HTTP connection requests from a web browser go to port 80 (by default) on the Zyxel Device’s web

server.

Figure 99

HTTP/HTTPS Implementation

Note: If you disable

HTTP

in the

WWW

screen, then the Zyxel Device blocks all HTTP connection

attempts.

15.4.4

Configuring WWW Service Control

Click

Configuration > System > WWW

to open the

WWW

screen. Use this screen to specify HTTP or HTTPS

settings.