Netgear WC7520 - ProSafe 20-AP Wireless Controller Reference Manual
Managing Security Profiles and Profile Groups
79
ProSafe 20-AP Wireless Controller WC7520
Client Authentication section
Note:
The options that display onscreen depend on the selection from Network Authentication drop-down
list.
Network Authentication
From the drop-down list, select the authentication type to be used: see
Data Encryption
From the drop-down list, select the data encryption type to be used. The
options available for data encryption as well as other requirements such as
entering a key or passphrase depend on the network authentication settings:
see
options available for data encryption as well as other requirements such as
entering a key or passphrase depend on the network authentication settings:
see
Wireless Client Security
Separation
Separation
From the drop-down list, select Disable to prevent associated wireless clients
from communicating with each other or Enable to allow such communication.
Wireless client separation is intended for hotspots and other public access
situations.
from communicating with each other or Enable to allow such communication.
Wireless client separation is intended for hotspots and other public access
situations.
VLAN
Enter the VLAN ID to be associated with this security profile. This VLAN ID
needs to match the VLAN ID that is used by other network devices.
needs to match the VLAN ID that is used by other network devices.
Authentication Settings section
Note:
The options that display onscreen depend on the selection from Network Authentication drop-down
list.
Open System, Shared
Key, WPA-PSK,
WPA2-PSK, and
WPA-PSK & WPA2-PSK
Key, WPA-PSK,
WPA2-PSK, and
WPA-PSK & WPA2-PSK
MAC ACL
Select one of the following radio buttons:
• Local. Use local MAC authentication. The Local MAC ACL
Group drop-down list displays so you can select a group. For
more information, see
more information, see
• External. Use external MAC authentication. The External
Radius Server drop-down list displays so you can select a
server. You can use either the basic-Auth RADIUS server or
a RADIUS server of an advanced authentication group. You
cannot use the external LDAP server. For information about
setting up and enabling internal and external authentication
servers, see
server. You can use either the basic-Auth RADIUS server or
a RADIUS server of an advanced authentication group. You
cannot use the external LDAP server. For information about
setting up and enabling internal and external authentication
servers, see
Note:
The MAC ACL radio buttons do not display onscreen if
the network authentication uses an external RADIUS server.
The reason for this is that you can configure either MAC
authentication with an external RADIUS server or network
authentication with an external RADIUS server, but not both.
That is, if you configure an external RADIUS server with WPA,
WPA2, or WPA & WPA2 (or you use Legacy 802.1X) , you
cannot use external MAC authentication, and the MAC ACL
radio buttons do not display on screen. You still can use
internal MAC authentication.
authentication with an external RADIUS server or network
authentication with an external RADIUS server, but not both.
That is, if you configure an external RADIUS server with WPA,
WPA2, or WPA & WPA2 (or you use Legacy 802.1X) , you
cannot use external MAC authentication, and the MAC ACL
radio buttons do not display on screen. You still can use
internal MAC authentication.
Table 15. Basic security profile definition settings (continued)
Setting
Description