Ubiquiti AirRouter, Руководство пользователя

Страница: 14 / 38

12 Ubiquiti Networks, Inc.
Chapter 3: AirOS™ AirRouter User Guide
• EAP EAP (Extensible Authentication Protocol)
IEEE 802.1x authentication method. This method is
commonly used in Enterprise networks.
PSK
WPA Pre-shared Key A passphrase needs to be specified
when the Pre‑shared Key method is selected. The
pre-shared key is an alpha-numeric password between 8
and 63 characters long.
EAP
EAP - Station Mode
WPA Anonymous Identity (Only applicable in Station
or Station WDS mode with EAP-TTLS.) Identification
credential (also known as identity) used by the supplicant
for EAP authentication.
WPA User Name
(Only applicable in Station and Station
WDS mode.) Identification credential (also known as
anonymous identity) used by the supplicant for EAP
tunneled authentication (EAP-TTLS) in unencrypted form.
WPA User Password (Only applicable in Station and
Station WDS mode.) Password credential used by the
supplicant for EAP authentication.
EAP- Access Point Mode
Radius Server IP Specifies the RADIUS Server’s IP address.
RADIUS is a networking protocol providing centralized
Authentication, Authorization, and Accounting (AAA)
management for computers in order to connect to, and
use a network service.
Radius Server Port
Specifies the RADIUS Server’s UDP
port. The most commonly used port is 1812, but that
depends on the RADIUS Server you are using.
Radius Server Secret Specifies the password. A shared
secret is a case-sensitive text string used to validate
communication between two RADIUS devices.
Note: When connecting devices in AP-WDS-to-
AP-WDS mode, the WPA/WPA2 security methods
will not function. When connecting AP-WDS
devices to another AP-WDS device use none or
the WEP security method. However, this may
compromise the security of your network. In case
of connecting STA-WDS clients to an AP-WDS
device, all security methods are available and
work properly.
MAC ACL
MAC ACL (Only applicable in Access Point and Access
Point WDS mode) MAC Access Control List (ACL) lets you
allow or deny clients connectivity to the AirRouter. When
enabled, select one of the policies:
•
Allow Wireless clients in the list have access to the
AirRouter. Any wireless clients that have not been added
to the list will not have access to the AirRouter.
•
Deny
Wireless clients in the list will be denied access
to the AirRouter. Any wireless client that is not in the list
can access the AirRouter.
The MAC addresses of the wireless clients can be added
and removed using the Add and Remove buttons.
Note: MAC Access Control should be used in
combination with a security method such as
WPA™ or WPA2™. It should not be used as the
only method of security on your network.
Click Change to save the changes.