Operation Of Device Authentication; Operation Of User Authentication - GE MDS iNET 900 Reference Manual

Mds inet series wireless ip/ethernet transceiver

Hide thumbs Also See for MDS iNET 900:

Reference manual (173 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

Table of Contents

Operation of Device Authentication

Device authentication forces the radio to authenticate before allowing

user traffic to traverse the wireless network. When Device Security is

configured to use RADIUS as the Authentication Method, Remote

radios need three types of certificates: public (client), private, and root

(Certificate Authority). These files are unique to each Remote radio and

need to first be created at the server and then installed into each unit via

TFTP. The certificate files must be in DER format.

Device authentication uses the serial number of each radio as the

Common Name (CN) in its certificate and in its RADIUS identity field.

Each Access Point and Remote radio must be identified/recognized by

the RADIUS Server through the Common Name (Serial number) and IP

address entries.

NOTE: Consult your RADIUS network administrator for assistance in

configuration, or for help with other issues that may arise.

To activate device authentication, select

and set

Device Auth Method

as the active mode. The behavior of this setting differs

RADIUS

depending on whether it is implemented on an Access Point or a Remote

transceiver. An explanation of these behaviors is given below:

Access Point: When

is set to

, the AP disasso-

Device Auth Method

RADIUS

ciates all associated Remotes and waits for the RADIUS Server to

Authenticate the Remotes before allowing data to be passed from them.

When approval is received from the RADIUS Server, data from the

Remote is allowed to pass.

Remote: When

is set to

, the Remote halts any

Device Auth Method

RADIUS

data it is passing, and requests Authentication from the RADIUS Server.

If accepted, data is allowed to be transmitted.

Operation of User Authentication

When user authentication is set to

, you must enter a

Local

RADIUS

valid user name and password before being allowed to manage the radio.

mode both of these fields may be up to 40 characters long. In

RADIUS

mode the user name is

and the password may be up to 8 char-

Local

iNET

acters long.

When set to

, all logins to the local configuration services are

RADIUS

required to be authenticated via the RADIUS Server, including telnet

and SSH (Secure Shell) sessions. Authentication must be accepted

before access to the radio menu is granted.

iNET Series Reference Manual

05-2806A01, Rev. J

Table of Contents

Show Quick Links

Quick Links:
Pc Connection & Log in Procedures

Hide quick links:

Table of Contents

Troubleshooting

This manual is also suitable for:

Mds inet-ii 900

Operation Of Device Authentication; Operation Of User Authentication - GE MDS iNET 900 Reference Manual

Operation of Device Authentication

Operation of User Authentication

Hide quick links:

Troubleshooting

Related Manuals for GE MDS iNET 900

Related Content for GE MDS iNET 900

This manual is also suitable for:

Table of Contents