What authentication methods can be used on a 7211 to secure its connectivity to a AP?

Summary

This article talks about various authentication methods supported on a 7211 model CPE

Question

What authentication methods can be used on a 7211 to secure its connectivity to a AP?

Customer Environment

Usually a outdoor wireless network that requires a CPE for providing network access to its subscribers or users.

Root Cause

Incompatible EAP authentication methods on the RADIUS server side.

Troubleshooting Steps

7211 model CPE can only support TTLS authentication method if you prefer 802.1x based authentication on the WAN side. Its doesn't support PEAP. It doesn't support TLS either which requires a non-Ruckus certificate to be loaded on the CPE.

Just make sure your RADIUS server provides TTLS EAP method to support 7211 CPE connectivity.

Workaround

Following steps explain how to securely connect a 7211 model CPE to a wireless network:
1. You need a wireless AP to provide network access to the CPE
2. Configure secure authentication method on the AP to secure the traffic
3. Setup a RADIUS server if you want to provide 802.1x authentication method to the users
4. On the 7211, go to the Configuration --> Wireless page
5. Click on the "Wan" tab
6. Choose the encryption method that will be compatible with the AP
7. Choose PSK as the WPA Authentication option if the AP requires passphrase based authentication
8. You have to choose 802.1x _instead_ if you want more advanced authentication method with a RADIUS backend

Just as an example, following KB link talks about setting Microsoft NPS to act as a AAA server.
https://support.ruckuswireless.com/answers/000002109 

Article Number:
000002611

Updated:
February 18, 2014 12:49 AM (over 7 years ago)

Tags:
Configuration, Installation, Troubleshooting, Known Issues and Workarounds, ZoneDirector, MediaFlex

Votes:
0

This article is:
helpful
not helpful

Working...Please wait

This is here to prevent you from accidentally submitting twice.

The page will automatically refresh.