V1.0 7-08
Module Overview
Security Overview
SSID
MAC Filter
Captive Portal
802.1X
EAP Exchange
(Controller used as pass-through doesnt have to know EAP type)
Trusted
Network
802.11 a/b/g
Secured Link
Aruba
Client Controller Authentication
Server
Request Identity
Authentication Server
Response Identity (anonymous) Response Identity
Authenticator
PEAP Start
Client
Certificate
Client Key exchange
Cert. verification
Request credentials
Response credentials
Success
EAP-PEAP
Based on TLS
Hides EAP exchange
Requires both server and client authentication
Developed by Microsoft, Cisco and RSA Security
Evolved into MS-PEAP and EAP-GTC
EAP-TTLS
Similar to PEAP, but allows for any EAP authentication protocol
Requires 3rd party client
Developed by Funk Software
SSID RF
Ethernet a/g Management
Optimizations
AAA
Regulatory
Virtual AP
Properties
SNMP
SSID
AAA
6-35
Copyright 2008 Aruba Networks, Inc. All rights reserved
Profiles (cont.)
V1.0 - 8-08