Campus Wireless Service Review

What We'll Cover
Basic Overview Components Client Configuration Authentication Topology Troubleshooting Known Issues

Basic Overview

Basic Setup
802.11b and 802.11g Standards 802.1x Authentication WPA Security 3 Channels 2 Wireless Switches Roaming Highly Scalable

Components

Components
[M]APs WXAccess Radiator LDAP “Red” Boxes VLANs

Client Configuration

Client Configuration
Windows XP and Vista: 802.1x Supplicant (SecureW32) TTLS with PAP. PAP User TTLS User Wired Autoconfig

Client Configuration
Mac OS X 10.3/10.4 Internet Connect 802.1x TTLS with PAP PAP User TTLS User Wireless Network

Client Configuration
Mac OS X 10.5 Network Preference Airport Advanced 802.1x TTLS with PAP PAP User TTLS User Wireless Network

Client Configuration

http://confluence.rave.ac.uk/confluence/display/SKLS/Wireless+access+information+and+software

OR
http://confluence.rave.ac.uk/confluence/x/fA0

Authentication

Authentication
Supplicant sends user credentials to Radius via Authenticator using SSL encryption Radius server connects to LDAP
No

NsMsg = LAN?

Reject

Radius returns SSL certificate chain to Supplicant via Authenticator

Yes

Credentials Correct?

No

Reject

Authenticator passes request to Radius Server

Yes Yes

Staff?
AP passes request to WXAccess(Authenticator)
No

Accept Return Attributes VLAN 40

Student? PC(Supplicant) attempts to join CAMPUS SSID
No

Yes

Accept Return Attributes VLAN 20

Accept Return Attributes VLAN 666

Topology

Topology

Troubleshooting

Troubleshooting
Logging – wifimon.rave.ac.uk Radius – wangdiaocha.rave.ac.uk Archived Logs

wifimon.rave.ac.uk

wifimon.rave.ac.uk

Radar

Known Issues

Known Issues
Blacklisting Flapping

Sign up to vote on this title
UsefulNot useful