Filter
Top Products
AT-TQ2403 Management Software User's Guide 183
Figure 87: User Certification Installation – Certification Issued
A success message is displayed indicating the certificate is now installed on the client.
Figure 88: User Certification Installation – Certification Installed
Configuring RADIUS Server for VLAN tags
A VLAN is a grouping of ports on a switch or a grouping of ports on different switches. Dynamic VLANs
allow you to assign a user to a VLAN, and switches dynamically use this information to configure the port
on the switch automatically. Selection of the VLAN is usually based on the identity of the user. The
RADIUS server informs the NAS (for example the access point) of the selected VLAN as part of the
authentication. This setup enables users of Dynamic VLANs to move from one location to another
without intervention and without having to make any changes to the switches.
In the case of AT-TQ2403 Wireless Access Point, if the user has selected to use an external RADIUS
server (configured on the Security page) then an External RADIUS server will try to authenticate the
user. A user’s authentication credentials are passed to a RADIUS server. If these credentials are found to
be valid, the NAS configures the port to the VLAN indicated by the RADIUS authentication server.
Configuring a RADIUS server
A RADIUS server needs to be configured to use Tunnel attributes in Access-Accept messages, in order
to inform the access point about the selected VLAN. These attributes are defined in RFC 2868 and their
use for dynamic VLAN is specified in RFC 3580.