Nanoglobes Wlan-minder User manual

WLAN-Minder User Manual

Page 2 of 53 NGCD000423.005 NanoGlobes Ltd

This page left intentional blank

WLAN-Minder User Manual

NanoGlobes Ltd NGCD000423.005 Page 3 of 53

WLAN-Minder

User Manual

• No Part of this manual may be reproduced without the

written permission of NanoGlobes Ltd.

• Software licences are granted for use with one processor

and are not transferable.

• NanoGlobes Ltd., make no representations or warranties

with respect to the contents hereof and specifically

disclaims any implied warranties of merchantability or

fitness for any particular purpose.

WLAN-Minder User Manual

Page 4 of 53 NGCD000423.005 NanoGlobes Ltd

WARRANTY

NanoGlobes Ltd warrant the WLAN-Minder RADIUS based control centre unit

against defective materials or workmanship for a period of one year from the date of

original purchase.

This warranty does not apply if the WLAN-Minder unit have been damaged by

neglect, improper handling or by any other cause not arising directly from defective

materials or workmanship.

NOTICE

The information herein has been carefully checked and is believed to be entirely

accurate at time of going to press. However no responsibility is assumed for any

inaccuracies or typographical errors. Furthermore, no liability is assumed arising

from the use of any product detailed within. NanoGlobes Ltd, reserves the right to

make alterations without notice and recognises that the information contained within

does not convey to the purchaser any license under the patent rights of NanoGlobes

Ltd.

All trademarks acknowledged.

WLAN-Minder User Manual

NanoGlobes Ltd NGCD000423.005 Page 5 of 53

Contents

1 Introduction .................................................... 7

1.1 About This Manual. ......................................... 7

1.2 WLAN-MinderFeatures...................................... 8

1.3 WLAN-MinderFrontPanelFeatures ........................... 9

1.4 WLAN-Minder Back Panel Features ............................ 9

1.5 UsingSmartCardswiththeWLAN-Minder..................... 10

1.6 UsingeTokenswiththeWLAN-Minder ........................ 10

2 InstallingtheWLAN-Minder....................................... 11

2.1 Configuring the IP Address. ................................. 11

2.2 Setting the BIOS Password. ................................. 14

2.3 AttachingTheWLAN-MindertotheNetwork ................... 15

3 InitialisingtheWLAN-Minder-CreatingtheRootCASystem. .......... 17

4 ConfiguringtheWLAN-Minder..................................... 23

4.1 Logging in to the WLAN-Minder web interface. ................. 23

4.2 WLAN-MinderWelcomeMenu ............................... 25

4.3 Configuring the Wireless LAN Access Point. ................... 26

4.4 TokenSettings. ........................................... 28

4.5 Creating User Accounts. ................................... 29

4.6 GeneratingaDuplicateAdministrationCard.................... 31

5 MaintainingtheWLAN-Minder. ................................... 33

5.1 Deleting User Accounts .................................... 33

5.2 Managing Users........................................... 34

5.3 Monitoring theNetwork. ................................... 36

5.4 Monitoring Logins. ........................................ 36

5.5 ViewingaUserToken. ..................................... 37

5.6 Backing Up the WLAN-Minder Configuration Files. .............. 39

5.7 RestoringaWLAN-MinderConfiguration. ..................... 41

5.8 ChangingtheSystemTime/Date............................. 43

6 Appendices.................................................... 44

6.1 HardwareSpecification..................................... 44

6.2 ConnectorPin-out. ........................................ 46

6.3 BIOS Administrator cable [NGL-210] pin-out. ................... 47

6.4 Windows Hyper-Terminal Setup for BIOS Administration. ........ 48

6.5 Unblocking a Blocked Smart Card / eToken. ................... 49

6.6 Two Character Country Codes. .............................. 50

7 References .................................................... 52

7.1 WLAN-Minder WorkstationClientUsersManual. ............... 52

WLAN-Minder User Manual

Page 6 of 53 NGCD000423.005 NanoGlobes Ltd

This page left intentionally blank.

WLAN-Minder User Manual

NanoGlobes Ltd NGCD000423.005 Page 7 of 53

1 Introduction

1.1 About This Manual.

This manual contains information pertinent to the configuration of a Wireless

LAN security system based on 802.1x authentication protocols. The security

system is based on using smart tokens in conjunction with WLAN-Minder client

software [Ref 1], and a central authentication service - provided by the WLAN-

Minder.

The manual covers the installation of the WLAN-Minder, and the issuing of

security tokens such as smart cards and USB eTokens.

The WLAN-Minder solution is designed to operate with Wireless LAN

components that support the IEEE 802.1x Extensible Authentication Protocol.

Nearly all of the newer generation of Wireless LAN products (Client adapters

and Access Points) support this protocol. However certain low cost units and

earlier designs do not support the IEEE 802.1x protocol, these products cannot

be used in a WLAN-Minder solution. In general all components that have been

certified by the Wi-Fi Consortium as being WPA compliant should operate with

the WLAN-Minder.

Only guidance is given in this manual about how the Access Points should be

configured. Each manufacturer will have their own menus and user interfaces

for configuration. Please refer to the Access Point User Manual for obtaining

information on setting up the Access Point unit.

WLAN-Minder User Manual

Page 8 of 53 NGCD000423.005 NanoGlobes Ltd

1.2 WLAN-Minder Features

• Control of Wireless LAN users access to a wired network.

• Plug-and-play solution: no server software installation required.

• Support for IEEE 802.1x compliant EAP-TLS mutual authentication

protocol. Authenticating the client to the network, and the network to the

client.

• Automatic generation of PKI root certificate and user certificates.

• Simple Web based administrator’s interface.

• ISO7816S smart card reader-writer built-in for issuing smart cards

• USB interface built-in to support USB based eTokens.

• RS232 Port for attaching mini serial printer for issuing user PIN numbers.

(Option)

• Smart media socket for providing backup/restore of server configuration

settings.

WLAN-Minder User Manual

NanoGlobes Ltd NGCD000423.005 Page 9 of 53

1.3 WLAN-Minder Front Panel Features

(1) Power On Indicator

(2) Access Point Network: Link and Traffic Status LEDs

(3) Local Network: Link and Traffic Status LEDs.

(4) eToken select LEDs used to indicate a USB eToken should be inserted.

(5) USB sockets for connecting eTokens to be initialised or read.

(6) Dual colour LEDs used to Indicate a smart card should be inserted or is

powered up.

(7) Smart card reader/writer slots.

1.4 WLAN-Minder Back Panel Features

(8) Power Socket +5VDC centre +.

(9) USB device interface for unit configuration from a host PC.

(10) RS232 Serial I/O interface for unit configuration [57600:8:N:1]

(11) Smart Media reader for configuration back up and restore.

(12) Reset button.

(13) Local Area Network Ethernet connector 10/100Mbps.

(14) Access Point Network Ethernet connector 10/100Mbps.

WLAN-Minder User Manual

Page 10 of 53 NGCD000423.005 NanoGlobes Ltd

1.5 Using Smart Cards with the WLAN-Minder

Smart cards are used to store a user’s identity and his network configuration

information. The smart card is used to verify the identity of the owner by

checking the PIN number entered by the owner.

The WLAN-Minder supports two ISO-7816 compliant smart card readers. They

are labelled as [User] and [Admin] respectively. Beside each card slot is a bi-

colour LED, which is used to signal the following states when the web browser

interface is in use:

}A GREEN flashing LED by a card slot is a prompt for the user to enter a

smart card into that slot.

}A RED LED indicates a card is inserted and powered up. The user should

NOT remove the smart card when the RED LED is lit.

INSERTING THE SMART CARD

The contacts surface of the smart card should be face down, and the card

inserted with the contacts at the edge closest to the centre of the WLAN-Minder

unit.

1.6 Using eTokens with the WLAN-Minder

USB eTokens may be used as an alternative to a smart card for storing a user’s

identity and network configuration information.

The WLAN-Minder supports two USB interfaces capable of supporting an

eToken. They are labelled as [User] and [Admin] respectively. Beside each USB

socket is an GREEN LED.

}A GREEN flashing LED by a USB socket is a prompt for the user to enter

an eToken. The Flashing will stop when the eToken is inserted.

ENSURE the CORRECT ORIENTATION is used when INSERTING the

eToken.

Table of contents

Popular Network Hardware manuals by other brands

socomec

socomec SNMP Card II quick start guide

NVR SYSTEMS

NVR SYSTEMS 4-CH user manual

Draytek

Draytek VigorSwitch G1240 quick start guide

Westermo

Westermo TD-34 LV installation manual

LaCie

LaCie Network Space MAX Quick install guide

ZoneVu

ZoneVu ZSI-450-IP Installation guide & user manual

QNAP

QNAP Turbo NAS Application notes

OpenEye

OpenEye MV Series quick start guide

Huawei

Huawei SmartAX MT880a quick start guide

Proxim

Proxim Tsunami QuickBridge 2454-R installation guide

Bay Networks

Bay Networks CLAM quick start guide

Innodisk

Innodisk SATADOM-SH 3SE Series manual

Cisco

Cisco CGR 1000 Series Getting connected guide

Matrix Switch Corporation

Matrix Switch Corporation MSC-HD161DEL product manual

National Instruments

National Instruments NI 653x user manual

B&B Electronics

B&B Electronics ZXT9-IO-222R2 product manual

Yudor

Yudor YDS-16 user manual

D-Link

D-Link ShareCenter DNS-320L datasheet

NanoGlobes WLAN-MINDER User manual

Popular Network Hardware manuals by other brands