WPA-Enterprise for Small Businesses (Part 3) - Page 2

By Eric Geier | Posted September 03, 2008

Adding Users to the Elektron User List

 

If you specified that the Elektron Accounts be used, then you must populate the list with account credentials for each of your clients. Under the Authentication section on the left menu, select the Elektron Accounts entry. To add a user account, click the plus sign on the main toolbar, which will trigger a pop-up dialog box.

Screen shot
Figure 3: Edit Elektron Account
(Click for larger image)
.

 

The Username and Password are the only required fields. To help distinguish the person the account is for, you can use the Real Name field. It’s best to keep the Store Password in Reversible Format option disabled. This feature is for authentication databases that use plain text passwords, which you can read more about in the Help files of Elektron.

 

If you plan to remotely administer the server, you can check the User Can Administer Elektron option to give the particular account the ability to remotely connect with the Elektron Settings program from a computer other than the one on which the server is installed. The Account is Disabled option prevents the account from gaining access to the network. This option can be used in conjunction with the administer option to provide remote admin capability, but no network access.

 

The Member of section populates with any Elektron Account Groups you’ve created. Creating Elektron Account Groups, Authorization Policies, and assigning users to certain groups lets you make complex authentication schemes. For example, you could create an Employee and Management group and assign each Elektron Account to the appropriate group. Then you could create a Policy under the Authorization section to limit accounts belonging to the Employee group to using the network only between the hours of 9am to 5pm. (This is just one example of how you can use groups and policies.)

 

Adding Access Points (APs)

 

There is still one crucial part left to make your WPA-Enterprise network work. You need to input the Shared Secret value and other information for each of your APs into the RADIUS server software. Under the Authorization section, select the Access Points entry. Then, to add an AP entry, click the plus sign on the toolbar, which brings up the Edit Access Point dialog box.

Screen shot
Figure 4: Edit Access Point
(Click for larger image)
.

 

You need to input the IP Address of the AP or wireless router into the appropriate field. This is the same address you use to access the Web-based configuration screen of the AP or router. If you have just one wireless router, this address is probably the same as the Default Gateway value shown in the connection status details of Windows.

 

Next you can assign the AP entry with a Friendly Name for easier identification. Finally, you must type in a New Shared Secret for the particular AP or wireless router. You should use a long shared secret with mixed case and character types. However, make sure you keep this piece of information for each AP in a safe spot; later you’ll have to input it into the particular AP or router.

 

Stay Tuned—the final installment will take you step-by-step through configuring your wireless router or APs and your computers to work with the Elektron server.

Adapted from Wi-FiPlanet.com.

Do you have a comment or question about this article or other small business topics in general? Speak out in the SmallBusinessComputing.com Forums. Join the discussion today!



Page 2 of 2

Previous Page
1 2
 

Comment and Contribute


     

    Get free tips, news and advice on how to make technology work harder for your business.

    Submit
    Learn more
     
    You have successfuly registered to
    Enterprise Apps Daily Newsletter
    Thanks for your registration, follow us on our social networks to keep up-to-date