manualshive.com logo in svg

3Com 3CRWE80096A - 11 Mbps Wireless LAN Access Point 8000, Руководство пользователя

Беспроводная точка доступа 3Com 3CRWE80096A - 11 Мбит/с Wireless LAN Access Point 8000 обеспечивает быструю и надежную беспроводную связь. Скачайте бесплатное руководство пользователя на {веб-сайте} для настройки и управления этим устройством. Подробное описание функций и возможностей доступно в руководстве.

Поделиться
Скачать
background image

802.1x RADIUS Support

19

3Com 128-bit Dynamic Security Link Encryption.

 3Com’s proprietary 128-bit 

Dynamic Security Link is built into the access point and permits user-level 
authentication. This option can be used only with local access point 
authentication. Users must log in with username and password. (The access point 
username and password database can support up to 1000 names.) Once the user 
is authenticated, the access point dynamically creates a unique 128-encryption key 
for the user for that session. Encryption keys are generated automatically and so 
do not need to be supplied. To take advantage of this security setting, clients must 
use a 3Com Wireless LAN PC Card (model 3CRWE62092A).

802.1x RADIUS 
Support

The IEEE 802.1x standard specifies a general method for the provision of 
port-based network access control. It provides an architecture framework for 
User-RADIUS authentication through an authenticator such as a wireless access 
point or a switch. The access point supports any RADIUS implementation 
compliant with RFC 2865 and following standard EAP, RFC 2284, 2716, and 2548 
protocols. This includes support for port-based network access control, which 
permits standard security protocols such as EAP and RADIUS to provide centralized 
user identification, authentication, dynamic key management, and accounting. 
(The access point supports RADIUS Accounting per RFC2866: Username, Start 
time, Stop time, and Packet input/output.)

Using the Wireless 
802.1x Agent

3Com provides a software utility to allow Windows clients to authenticate to the 
Access Point 8000 using either EAP-MD5 or 3Com Serial Authentication. The 
802.1x agent can be used with any vendor’s PC card, but to take advantage of 
3Com’s Serial Authentication, it must be used with a 3Com Wireless LAN PC Card 
(model 3CRWE62092A) that has been upgraded to the latest firmware. A copy of 
the agent must be installed on each client computer

Use the 3Com CD to install the wireless 802.1x agent on systems running under, 
Windows 98, Windows 98 SE, Windows ME, Windows NT 4.0 with Service Pack 
6a, Windows 2000, or Windows XP. Systems running under Windows XP include 
support for EAP-MD5 and EAP-TLS. On Windows XP, the 802.1x agent is only 
required when using 3Com’s Serial Authentication.

Authentication and

Login

Authentication is initiated by associating to the access point. Alternatively, 
authentication can be manually initiated by selecting 

Start

 from the 802.1x agent 

menu. At login, the agent prompts for user name and password. The user name 
and password must match the name and password maintained by the RADIUS 
server.

When the agent is running, a status icon in the system tray monitors the 
authentication process. The appearance of this icon changes to reflect the current 
state of the authentication process. If the user hovers the mouse over the icon, a 
tool tip also appears to indicate the current authentication status. 

3Com does not supply RADIUS software or configuration instructions other than 
what is applicable for access point configuration. Refer to your system 
administrator for additional third-party software and configuration information. 
The access point supports any RADIUS server that complies with RFC 2865 and 
follows standard EAP, RFC 2284, 2716, and 2548. 

Содержание 3CRWE80096A - 11 Mbps Wireless LAN Access Point 8000

Страница 1: ...http www 3com com http support 3com com registration frontpg pl 11 Mbps Wireless LAN Access Point 8000 User Guide Version 1 1 Published April 2002 Version 1 1 2 ...

Страница 2: ...opy will be provided to you UNITED STATES GOVERNMENT LEGEND If you are a United States government agency then this documentation and the software described herein are provided to you subject to the following All technical data and computer software are commercial in nature and developed solely at private expense Software is delivered as Commercial Computer Software as defined in DFARS 252 227 7014...

Страница 3: ...ifferent Antenna 11 Omnidirectional Antenna 11 Ceiling Mount Omnidirectional Antenna 12 Ceiling Mount Hallway Antenna 12 Directional Panel Antenna 13 Connecting an Optional Antenna 13 Installing Software Utilities 14 3 ACCESS POINT SECURITY Upper Layer Authentication 17 EAP MD5 17 EAP TLS 17 3Com Serial Authentication 18 Additional Security Configuration Options 18 802 1x RADIUS Support 19 Using t...

Страница 4: ...on Password 33 Restoring Factory Defaults 33 Resetting the Access Point 33 Backing up Configurations 33 Restoring Configurations 33 Viewing Statistics 34 Viewing System Status 35 5 CONDUCTING A SITE SURVEY Before You Begin 37 Choosing Trial Locations 37 Environmental Requirements 37 Electrical Requirements 38 Summary of the Survey Procedure 38 Using the Site Survey Tool 39 Setting up Equipment 39 ...

Страница 5: ...Returning Products for Repair 48 REGULATORY COMPLIANCE INFORMATION INDEX ...

Страница 6: ......

Страница 7: ...en the wired and wireless networks In this configuration the access point provides the link between the wired network and wireless clients Clients can move freely throughout the service area of the access point and remain associated with the larger network allowing client access to the full range of network services For complete wireless coverage several access points can be connected to an existi...

Страница 8: ...faces SNMP HP OpenView and 3Com Network Supervisor 3NS Authentication features Supports RADIUS authentication between the wireless client and the RADIUS servers in conjunction with the IEEE 802 1x For Serial Authentication requires the 3Com 3CRWE62092A wireless LAN PC card upgraded with the latest firmware Supports client authentication by MAC address list on access point or on RADIUS server 802 1...

Страница 9: ...oftware Utilities on page 14 6 To set up a wireless client to authenticate through the access point to your RADIUS server refer to Using the Wireless 802 1x Agent on page 19 7 To set access point security or configure the wireless network refer to Configuring the Access Point 8000 on page 23 8 Review the system settings and ensure they are suitable for your site ...

Страница 10: ......

Страница 11: ...ther electrical equipment The power supply must be located near a power source If you are connecting the access point to a wired network the location must provide an Ethernet connection You will need to run an Ethernet cable from the power supply to the access point An access point provides coverage at distances of up to 1000 feet Signal loss can occur if metal concrete brick walls or floors block...

Страница 12: ... the access point at a 45 degree angle As a rule the initial orientation of the antennas should be perpendicular to the floor After network startup you may need to adjust the antennas to fine tune coverage in your area Depending on the coverage required for your site you may want to replace the standard detachable antennas with one of the external antennas available for use with the access point S...

Страница 13: ...ructions on the mounting template supplied in the box and refer to the following illustration Preferably mount the access point near the ceiling above any obstructions that could block transmission Position the antenna so that the arms point out and away from the access point at a 45 angle 1 2 3 4 ...

Страница 14: ...ng them so they grip the T rail snugly Tighten the screws on the T rail grip Position the antenna so that the arms point down and away from the access point at a 45 angle NOTE After installation there may be some play in the fit of the T rail grips on the T rail This is likely due to the size of the T rails but should not prevent a secure grip R E S E T T O P O W E R S U P P LY P O W E R W I R E L...

Страница 15: ...connect the power make sure you connect the cable to the port labeled To Access Point on the power supply When the access point receives power the LEDs light The access point is IEEE 802 3af compliant Before connecting the access point to your own power over Ethernet hub or switch ensure that your equipment also complies with the IEEE 802 3af standard If you supply your own Ethernet cable for conn...

Страница 16: ... POW ER SUPPLY E T H E R N E T W IR E L E S S P O W E R TO ACCESS POIN T TO HUB S W IT CH Ethernet LED Description Power On Access point has power Off Access point is not receiving power Wireless Blinking The access point is operating The blink speed ranges from approximately once every 2 5 seconds to approximately 10 times per second depending on the signal strength and transmission speed Off The...

Страница 17: ...ion by grounding the outer shield as recommended Some arrestor designs provide over voltage protection for the signal sent down the cable If you use such Model number 3CWE490 3CWE492 3CWE497 3CWE498 Design and type Omnidirectional fiberglass Ceiling mount omnidirectional Ceiling mount hallway Directional Panel indoor outdoor Frequency Range 2 400 2 4835 GHz 2300 2500 Mhz 2300 2500 Mhz 2300 2500 Mh...

Страница 18: ...This antenna does not have an electrical connection between the mask mount and the coaxial cable shield However adding a lightning arrestor will correct this situation by grounding the outer shield as recommended Some arrestor designs provide over voltage protection for the signal sent down the cable If you use such a design be sure that it can pass signals used in the 2 5 GHz signal range Many in...

Страница 19: ...rictions apply In all other countries transmit power is limited to 100 mW You must manually select Low or Medium power from the Data Transmission Properties page of the configuration management system See Setting Data Transmission Properties on page 27 for information on manually selecting transmission levels Connecting an Optional Antenna To ensure the physical safety of anyone near the antenna a...

Страница 20: ...ransmission Properties on page 27 Installing Software Utilities The 3Com Administrator Utilities CD includes tools and utilities to help you set up and administer the wireless components of your network Software tools and utilities are presented as Tools and Utilities options on the main menu of the CD and include Install the Utility Software and Documentation This option installs the Wireless Inf...

Страница 21: ...rvisor manage additional 3Com equipment You should install the service pack only after installing the 3Com Network Supervisor Install Adobe Acrobat Reader For users who do not already have Acrobat Reader 5 0 for viewing the PDF documentation a current version is included on the CD Install Internet Explorer 5 5 A copy of Internet Explorer is included on the CD in case you are running an older brows...

Страница 22: ......

Страница 23: ...uire certificates or other security information installed on client machines At login the RADIUS server verifies the username and password provided by the user Once the user is authenticated the server informs the access point of successful authentication and data traffic from the client is allowed to pass to the wired network EAP MD5 provides authentication only It is possible to configure the ac...

Страница 24: ...es use of two complementary authentication schemes Additionally the client and the access point dynamically update session keys while the network session is in progress Because Serial Authentication is a 3Com proprietary scheme it must be used with the 3Com Wireless LAN PC Card model 3CRWE62092A and the 3Com Access Point 8000 Serial authentication is supported by the 3Com 802 1x agent described be...

Страница 25: ...lients to authenticate to the Access Point 8000 using either EAP MD5 or 3Com Serial Authentication The 802 1x agent can be used with any vendor s PC card but to take advantage of 3Com s Serial Authentication it must be used with a 3Com Wireless LAN PC Card model 3CRWE62092A that has been upgraded to the latest firmware A copy of the agent must be installed on each client computer Use the 3Com CD t...

Страница 26: ...ter Use this field to identify the network adapter to use for connections requiring authentication The list box lists all the network adapters found in the computer The highest level of security 3Com s Serial Authentication is available when the 3Com Wireless LAN PC card is installed and selected Authentication Method This field lets you specify the authentication method used for this connection T...

Страница 27: ...e Wireless 802 1x Agent 21 whenever an untrusted certificate is received The 802 1x agent remembers the last trusted certificate whether imported or manually verified and automatically accepts that certificate ...

Страница 28: ......

Страница 29: ...ure that you have current information Automated operations intelligent defaults and the ability to detect Network misconfigurations and offer optimization suggestions make this application ideal for network managers at all levels of experience Together with the optional 3Com Network Supervisor Advanced Package 3Com Network Supervisor Version 3 5 helps businesses manage larger networks and easily u...

Страница 30: ...he 3Com wireless LAN devices that are associated to each service area Devices in a different subnet than your computer are identified with exclamation points You can refresh this display by clicking Refresh You should refresh the display for example after you change a device IP address 2 In the Wireless Network Tree select the device you want to configure If more than one wireless LAN device appea...

Страница 31: ...pted to assign an address on the same subnet as your computer Refresh Scans the network and displays the connected 3Com 11 Mbps Wireless LAN devices Choose NIC If your computer has more than one network interface card installed allows you to choose which card you want to use Close Closes the device manager window and ends the session Help Launches the device manager help page in your browser Any c...

Страница 32: ...s provided and click Save If you change the IP address you cannot continue to configure the access point using the old IP address If you want to continue configuring this access point you must close your browser and start a new configuration session When you specify an IP address the access point cannot act as a DHCP server Make sure that clients are using IP addresses on the same network Wireless...

Страница 33: ...the Channel list Network Traffic Accelerator To increase performance click On enhanced performance If you experience problems when equipment other than 3Com 11 Mbps Wireless LAN equipment is being used click Off Data Preamble To increase performance click Short enhanced performance When equipment that does not support short preamble is also being used click Long Data Rate These settings configure ...

Страница 34: ...een 1 and 256 and click Save To disable load balancing click Off When load balancing is Off the default up to 256 clients can associate with the access point If you specify a small number of clients it is recommended that you also choose the shortest possible time in the Client List Timeout setting Client to Client Blocking When this setting is On clients associating with the access point are prev...

Страница 35: ...cess Point Encryption Settings RADIUS Serial Authentication with Dynamic Encryption Key Enables mutual RADIUS authentication implementation which allows client and RADIUS to mutually authenticate EAP TLS and perform user authentication EAP MD5 You can select either 40 bit or 128 bit Dynamic Encryption Selecting Auto Session Key Renew causes the access point and clients to periodically change sessi...

Страница 36: ...d Key security requires you to set up an encryption string or hexadecimal keys as described for 40 bit Encryption Shared Key Wi Fi 128 bit Dynamic Security Link This setting requires that you select Access Point Local Authentication Encryption option under Security Settings 128 bit Dynamic Security Link is the highest level of access point local security requiring a user name and password to acces...

Страница 37: ...entication servers dynamic key exchange servers and accounting servers If you enter an invalid IP address for any of the servers an error message is displayed Once an accounting server is set up you can turn accounting on or off from this page If the servers are set up and accounting is turned off the settings remain saved To set up the servers you will need to specify a valid IP address as well a...

Страница 38: ...log If you do not have a syslog server you can install the one shipped with the access point Use the 3Com CD Tools and Utilities options to install the 3CDaemon syslog server Upgrading the System You can download system firmware upgrade files from the 3Com Web site at http www 3com com and install those upgrades on the access point You must have a TFTP server set up on which to store the upgrade f...

Страница 39: ...r and holding it in for five seconds Resetting the Access Point The Reset Wireless Access Point page allows you to reboot the access point without affecting the current configuration settings You can also reset the hardware by disconnecting and reconnecting the power Backing up Configurations Access Point configurations can be saved as data files and later used to restore the access point configur...

Страница 40: ...ccessfully received RTS frames successfully transmitted and received frames for which no CTS frames were received in response to RTS frames being sent CTS frames received in response to an RTS frames transmitted that did not have their corresponding ACK packets successfully received frames that were retransmitted frames received with checksum error duplicate frames received frames received with th...

Страница 41: ...the interface which were discarded because of an unknown or unsupported protocol Interface Statistics Displays the interface statistics for the access point The top table displays the interface counts showing the cumulative packets or frames sent and received and the bytes sent and received over the Ethernet and wireless interfaces The bottom table displays the rates per second for each of these p...

Страница 42: ...36 CHAPTER 4 CONFIGURING THE ACCESS POINT 8000 ...

Страница 43: ...l Locations To set up the tests you install the access point temporarily in several trial locations Look at your site floor plan and make a list of work areas where clients are likely to be positioned For example list the office cubicles where users will be logging on to the 3Com Wireless LAN Then select several trial locations for the access point and make a list of these locations For example yo...

Страница 44: ...s intended or known to produce heat such as space heaters laser printers heat guns or soldering irons Single devices drawing more than 20 of the rated value of the circuit Multiple devices drawing a total of more than 60 of the rated circuit value Summary of the Survey Procedure Following is a summary of the basic procedure for setting up and running the site survey tests For details see the topic...

Страница 45: ...th a static IP address you only need to make note of it one time If the access point gets its IP address from a DHCP server you will need to find it each time you move the access point while conducting the survey Launching the Tool Launch the tool from the Windows Start menu Select Start Programs 3Com 11 Mbps Wireless LAN Administrator Utilities 3Com Site Survey The 3Com 11 Mbps Wireless LAN Site ...

Страница 46: ...ach access point location At any time during the testing you can save the current set of tests start a new set of tests and print test results For a description of the commands available in the utility see Site Survey Menus on page 41 Interpreting Test Results As you run the tests the Site Survey utility keeps track of results and builds a list of access point locations rated from best to least de...

Страница 47: ... Survey window File New Survey Start a new set of tests Open Open a set of tests that you saved previously Save Save the current set of tests Save As Save the current set of tests with a new name Print Print the current set of test results Print Preview Show a preview of how the printout will look Print Setup Set up the print page Exit Exit the Site Survey utility Edit Delete Selected Items Delete...

Страница 48: ......

Страница 49: ...he power brick Verify the network wiring and topology for proper configuration Check that the cables used are the proper type Access point powers up but does not associate with wireless clients Confirm that the WLAN service area on the access point matches that on the clients Verify that the clients are operating correctly Make sure that security settings on the access point match those on the cli...

Страница 50: ...ss point in the Wireless Network Tree In the Device Manager window click the Refresh button to refresh the Wireless Network Tree Then click the access point in the Wireless Network Tree and click Properties The IP address you specified is now listed If you want to continue configuring the access point click Configure Your wired LAN DHCP server malfunctions but the access point DHCP server fails to...

Страница 51: ... such as technical documentation and software library as well as support options that range from technical education to maintenance and professional services 3Com Knowledgebase Web Services This interactive tool contains technical product information compiled by 3Com expert technical engineers around the globe Located on the World Wide Web at http knowledgebase 3com com this service gives all 3Com...

Страница 52: ...vices To find out more about your support options call the 3Com technical telephone support phone number at the location nearest you When you contact 3Com for assistance have the following information ready Product model name part number and serial number A list of system hardware and software including revision levels Diagnostic error messages Details about recent configuration changes if applica...

Страница 53: ...Poland Portugal South Africa Spain Sweden Switzerland U K 0800 297468 0800 71429 800 17309 0800 113153 0800 917959 0800 1821502 06800 12813 1800 553117 1800 9453794 800 8 79489 0800 23625 0800 0227788 800 11376 00800 3111206 0800 831416 0800 995014 900 983125 020 795482 0800 55 3072 0800 966197 Latin America Brazil Mexico Puerto Rico Central and South America 0800 13 3266 01 800 849CARE 800 666 50...

Страница 54: ...Uruguay Venezuela 0810 222 3266 511 241 1691 0800 133266 or 55 11 5643 2700 525 201 0004 562 240 6200 525 201 0004 525 201 0004 525 201 0004 525 201 0004 511 241 1691 525 201 0004 525 201 0004 From the following countries you may call the toll free numbers select option 2 and then option 2 Austria Belgium Denmark Finland France Germany Hungary Ireland Israel Italy Netherlands Norway Poland Portuga...

Страница 55: ... by one or more of the following measures Reorient or relocate the receiving antenna Increase the separation between the equipment and receiver Connect the equipment into an outlet on a circuit different from the one which the receiver is connected to Consult the dealer or an experienced radio TV technician for help The user may find the following booklet prepared by the Federal Communications Com...

Страница 56: ...826 Electromagnetic compatibility and Radio spectrum Matters ERM ElectroMagnetic Compatibility EMC standard for 2 4 GHz wideband transmission systems and HIgh PErformance Radio Local Area Network HIPERLAN equipment EN 60950 Safety of information technology equipment including electrical business equipment Marking by the symbol indicates that this product cannot be used in France SAFETY COMPLIANCE ...

Страница 57: ...5 17 EAP TLS 17 login 19 serial authentication 18 upper layer authentication 17 authentication MAC address 31 B backup configuration 33 backups configuration templates 33 beacon period 27 blocking client communications 28 broadcast ESSID 28 C cable 5 ceiling mount hallway antenna 12 ceiling mount omnidirectional antenna 12 change administration password 33 changing passwords administration 33 user...

Страница 58: ...on 29 MAC address access list 31 open network 18 security options 17 18 serial authentication 31 user access list 30 serial authentication 18 31 server DHCP 26 site electrical considerations 38 site survey 37 SNMP management 31 software utilities 14 802 1x agent 14 19 documentation 14 installing 14 15 TFTP server tool 14 statistics 34 channel retry counts 35 Ethernet statistics 34 forwarding count...

Отзывы:

Нет отзывов

Похожие инструкции для 3CRWE80096A - 11 Mbps Wireless LAN Access Point 8000

Asante FriendlyNET FR3002AL User Manual Addendum preview
FriendlyNET FR3002AL
Бренд: Asante Страницы: 16
TP-Link TL-WR641G User Manual preview
TL-WR641G
Бренд: TP-Link Страницы: 86
Cambium Networks cnPilot e501S Quick Start Manuals preview
cnPilot e501S
Бренд: Cambium Networks Страницы: 2
H3C WA Series Getting Started Manual preview
WA Series
Бренд: H3C Страницы: 69
Wisnetworks WIS-Q2300 User Manual preview
WIS-Q2300
Бренд: Wisnetworks Страницы: 26
YoYo YOYORouter BE5 Quick Start Manual preview
YOYORouter BE5
Бренд: YoYo Страницы: 10
Air Live WN-220ARM User Manual preview
WN-220ARM
Бренд: Air Live Страницы: 72
EnGenius ENH220EXT Quick Installation Manual preview
ENH220EXT
Бренд: EnGenius Страницы: 4
EnGenius ENH200 Specifications preview
ENH200
Бренд: EnGenius Страницы: 5
EnGenius ENH210EXT Datasheet preview
ENH210EXT
Бренд: EnGenius Страницы: 4
EnGenius EAP600 Manual preview
EAP600
Бренд: EnGenius Страницы: 85
HPE AP22 Product End-Of-Life Disassembly Instructions preview
AP22
Бренд: HPE Страницы: 4
Allnet ALL02860ND Quick Installation Manual preview
ALL02860ND
Бренд: Allnet Страницы: 14
BroadMobi BMC R708A User Manual preview
BMC R708A
Бренд: BroadMobi Страницы: 27
Zalip CDM531 User Manual preview
CDM531
Бренд: Zalip Страницы: 50
Novatel Sprint mifi 4082 Getting Started preview
Sprint mifi 4082
Бренд: Novatel Страницы: 86
CommScope RUCRUS Q950 LTE Quick Setup Manual preview
RUCRUS Q950 LTE
Бренд: CommScope Страницы: 5
Sitecom X3 N300 Installation Manual preview
X3 N300
Бренд: Sitecom Страницы: 10

Бренды по названию

Популярные бренды

Загрузить еще бренды