Creating a New WLAN
In addition to the initial WLAN you created during the Setup Wizard process, you can create new WLANs using the Wi-Fi Networks Dashboard component.
To create a new WLAN, expand the
Wi-Fi Networks section and click
Figure 45 Click Create to create a new wireless networkFigure 46 Creating a new WLAN
- Enter a Name for this wireless network.
Select the WLAN
Usage Type from the following options:
- Standard: Use this WLAN type for most regular wireless network usage.
Guest Access: Use this WLAN type for a guest WLAN. Guest access policies and access controls will be applied. For more information, see
NOTEAs of release 200.7, Social Media WLANs are a subset of Guest Access WLANs, and are configured using the Guest WLAN settings. Social Media WLANs require the visitor to log in using a social media account before being granted Internet access. For more information, see Social Media WLANs.
- Hotspot Service: Use this WLAN type for a Hotspot (aka, WISPr) WLAN. If Hotspot is used, a Hotspot Service must first be configured on the Admin & Services > Services > Hotspot Service page (or from the Wi-Fi Networks > Create WLAN> Create Service page). For more information, see Hotspot Services.
Authentication Method to use:
NOTEUnless using an external authentication server (i.e., RADIUS server) select Open authentication, and combine with WPA2 encryption for secure Wi-Fi access.
- Open: No authentication method is used. "Open" authentication allows the use of WPA2, WEP or no encryption. Open authentication + WPA2 encryption (also known as WPA-PSK) is the most common type of WLAN encryption method and should be the default configuration if there are no special requirements for authentication or encryption.
- 802.1X EAP: Authentication against either the internal database or an external RADIUS server. The 802.1X EAP authentication method (also known as "WPA2-Enterprise") provides effective authentication regardless of the encryption method, and requires a back-end (RADIUS) authentication server. WPA2-Enterprise provides secure connectivity by ensuring that every device must authenticate to an authentication server before it is allowed access to network resources. Authentication can be based on digital certificates, and granular policies can be designed to govern the level of access, provide visibility and control over devices on the network.
MAC Address: Authentication using the client's MAC address against an external RADIUS server or internal database.
NOTEMAC address authentication using "Local Database" is available as of Unleashed release 200.7.
Encryption Method to use:
- WPA2: Encrypt traffic using the WPA2 standard. WPA2 is the only encryption method certified by the Wi-Fi Alliance, and is the recommended method.
- None: No encryption; communications are sent in clear text.
- Choose whether a Captive Portal will be used for web-based authentication.
If either 802.1X EAP, MAC Address or Web Auth (Captive Portal) options are chosen, select an
Authentication Server from the list.
If an external authentication server is to be used rather than the internal database, click
Create Service to create an AAA server object to authenticate against.
NOTEAlternatively, you can create AAA servers on the Admin & Services > Services > AAA Servers page. For more information, see AAA Servers.
- If an external authentication server is to be used rather than the internal database, click Create Service to create an AAA server object to authenticate against.
- Click OK to save your changes and deploy the new WLAN.
NOTEFor advanced WLAN configuration options, see Advanced WLAN Configuration.