ZyXEL NWA3000-N User Manual Page 172
- Page / 386
- Table of contents
- TROUBLESHOOTING
- BOOKMARKS
Rated. / 5. Based on customer reviews
Chapter 14 Certificates
NWA3000-N Series User’s Guide
172
This process works as follows:
1 Tim wants to send a message to Jenny. He needs her to be sure that it comes from
him, and that the message content has not been altered by anyone else along the
way. Tim generates a public key pair (one public key and one private key).
2 Tim keeps the private key and makes the public key openly available. This means
that anyone who receives a message seeming to come from Tim can read it and
verify whether it is really from him or not.
3 Tim uses his private key to sign the message and sends it to Jenny.
4 Jenny receives the message and uses Tim’s public key to verify it. Jenny knows
that the message is from Tim, and that although other people may have been able
to read the message, no-one can have altered it (because they cannot re-sign the
message with Tim’s private key).
5 Additionally, Jenny uses her own private key to sign a message and Tim uses
Jenny’s public key to verify the message.
The NWA3000-N series AP uses certificates based on public-key cryptology to
authenticate users attempting to establish a connection, not to encrypt the data
that you send after establishing a connection. The method used to secure the data
that you send through an established connection depends on the type of
connection.
The certification authority uses its private key to sign certificates. Anyone can then
use the certification authority’s public key to verify the certificates.
A certification path is the hierarchy of certification authority certificates that
validate a certificate. The NWA3000-N series AP does not trust a certificate if any
certificate on its path has expired or been revoked.
Certification authorities maintain directory servers with databases of valid and
revoked certificates. A directory of certificates that have been revoked before the
scheduled expiration is called a CRL (Certificate Revocation List). The NWA3000-N
series AP can check a peer’s certificate against a directory server’s list of revoked
certificates. The framework of servers, software, procedures and policies that
handles keys is called PKI (public-key infrastructure).
Advantages of Certificates
Certificates offer the following benefits.
• The NWA3000-N series AP only has to store the certificates of the certification
authorities that you decide to trust, no matter how many devices you need to
authenticate.
- NWA3000-N Series 1
- About This User's Guide 3
- Document Conventions 4
- Icons Used in Figures 5
- Safety Warnings 6
- Chapter 4 8
- Chapter 5 8
- Chapter 14 11
- Chapter 15 11
- Table of Contents 14
- User’s Guide 15
- CHAPTER 1 17
- 1.2.1 Bridge / Repeater 18
- Figure 1 Bridge Application 19
- Figure 3 Bridging Example 20
- 1.2.2 AP + Bridge 22
- 1.2.3 MBSSID 22
- 1.3 Management Mode 23
- Web Configurator 24
- Command-Line Interface (CLI) 24
- M1 M2 M3 M4 24
- Console Port 25
- File Transfer Protocol (FTP) 25
- Controller 25
- 1.6 Hardware Connections 26
- 1.7 LEDs 27
- Table 2 LEDs (continued) 28
- Chapter 1 Introduction 30
- CHAPTER 2 31
- 2.2 Access 32
- 2.3 The Main Screen 33
- 2.3.1 Title Bar 34
- 2.3.2 Navigation Panel 34
- 2.3.2.1 Dashboard 35
- 2.3.2.2 Monitor Menu 35
- 2.3.2.3 Configuration Menu 35
- FOLDER OR 36
- TAB FUNCTION 36
- 2.3.2.4 Maintenance Menu 37
- 2.3.3 Warning Messages 38
- 2.3.4 Site Map 38
- 2.3.5 Object Reference 38
- Figure 14 Object Reference 39
- Table 8 Object References 39
- 2.3.5.1 CLI Messages 40
- 2.3.5.2 Console 40
- Table 9 Console (continued) 42
- 2.3.6 Tables and Lists 44
- Table 10 Common Table Icons 46
- Table 11 Common Table Icons 46
- 2.3.6.3 Working with Lists 47
- CHAPTER 3 49
- 3.3.1 Feature 50
- 3.3.2 MGNT Mode 50
- 3.3.3 LAN Setting 50
- 3.3.4 Wireless 50
- 3.4 Objects 51
- 3.5 System 52
- 3.5.2 Logs and Reports 53
- 3.5.3 File Manager 53
- 3.5.4 Diagnostics 53
- 3.5.5 Shutdown 53
- CHAPTER 4 55
- Management 99 10.10.99.10/24 56
- Staff 101 10.1.101.254/24 56
- Guest 102 10.1.102.254/24 56
- 4.1.1.1 Controller 57
- 4.1.1.2 Managed APs 57
- 4.2 Rogue AP Detection 63
- Chapter 4 Tutorials 64
- 4.2.1 Rogue AP Containment 67
- 4.3 Load Balancing 69
- Technical Reference 73
- CHAPTER 5 75
- 5.2 Dashboard 76
- Chapter 5 Dashboard 77
- Chapter 5 Dashboard 78
- 5.2.1 CPU Usage 80
- 5.2.2 Memory Usage 81
- CHAPTER 6 83
- 6.3 LAN Status 84
- 6.3.1 LAN Status Graph 86
- 6.4 AP List 87
- 6.5 Radio List 89
- 6.6 Station List 93
- 6.7 Rogue AP 94
- 6.8 Legacy Device Info 95
- 6.9 View Log 96
- 6.10 View AP Log 100
- Chapter 6 Monitor 101
- NWA3000-N Series User’s Guide 101
- LABEL DESCRIPTION 101
- Chapter 6 Monitor 102
- CHAPTER 7 103
- 7.2.3 CAPWAP and IP Subnets 104
- 7.2.4 Notes on CAPWAP 105
- CHAPTER 8 107
- 8.2 LAN Setting 108
- Chapter 8 LAN Setting 109
- LABEL DESCRIPTION 109
- CHAPTER 9 111
- 9.2 Controller 112
- 9.3 AP Management 113
- Chapter 9 Wireless 114
- 9.3.1 Edit AP List 115
- 9.4 MON Mode 116
- Chapter 9 Wireless 117
- 9.5 Load Balancing 119
- 9.6 DCS 122
- 9.7 Technical Reference 124
- Load Balancing 126
- CHAPTER 10 127
- 10.1.2 What You Need to Know 128
- 10.1.3 Before You Begin 128
- 10.2 Device HA General 129
- Chapter 10 Device HA 130
- 10.3 Active-Passive Mode 131
- Chapter 10 Device HA 133
- 10.4 Technical Reference 135
- Cluster ID 136
- CHAPTER 11 137
- 11.2 User Summary 138
- 11.2.1 Add/Edit User 139
- 11.3 Setting 141
- Chapter 11 User 142
- Chapter 11 User 143
- CHAPTER 12 147
- WPA and WPA2 148
- IEEE 802.1x 148
- 12.2 Radio 149
- Chapter 12 AP Profile 150
- Chapter 12 AP Profile 151
- 12.3 SSID 154
- 12.3.2 Security List 158
- 12.3.3 MAC Filter List 161
- CHAPTER 13 165
- 13.2 MON Profile 166
- 13.2.1 Add/Edit MON Profile 167
- 13.3 Technical Reference 168
- Friendly APs 169
- Chapter 13 MON Profile 170
- CHAPTER 14 171
- Advantages of Certificates 172
- Self-signed Certificates 173
- Factory Default Certificate 173
- Certificate File Formats 173
- 14.2 My Certificates 175
- Chapter 14 Certificates 176
- 14.2.1 Add My Certificates 177
- characters 178
- Chapter 14 Certificates 179
- 14.2.2 Edit My Certificates 181
- 14.2.3 Import Certificates 184
- 14.3 Trusted Certificates 185
- 14.4 Technical Reference 191
- CHAPTER 15 193
- 15.2 Host Name 194
- 15.3 Date and Time 194
- Chapter 15 System 196
- Figure 86 Loading 198
- 15.4 Console Speed 199
- 15.5 WWW Overview 200
- 15.5.5 HTTPS Example 203
- 15.5.5.3 Login Screen 204
- 15.6 SSH 209
- 15.6.1 How SSH Works 210
- 15.6.4 Configuring SSH 212
- 15.6.5.2 Example 2: Linux 213
- 15.7 Telnet 214
- 15.8 FTP 215
- 15.9 SNMP 217
- 15.9.1 Supported MIBs 218
- 15.9.2 SNMP Traps 218
- 15.9.3 Configuring SNMP 219
- 15.10 Internal RADIUS Server 221
- Chapter 15 System 223
- 15.11 Technical Reference 225
- CHAPTER 16 227
- Chapter 16 Log and Report 228
- 16.3 Log Setting 229
- 16.3.1 Log Setting Summary 230
- Chapter 16 Log and Report 231
- 16.3.2 Edit Log Settings 232
- 16.3.3 Edit Remote Server 236
- 16.3.4 Active Log Summary 238
- CHAPTER 17 241
- AP exit sub command mode 242
- 17.2 Configuration File 243
- Chapter 17 File Manager 245
- Chapter 17 File Manager 246
- 17.3 Firmware Package 248
- 17.4 Shell Script 249
- CHAPTER 18 253
- 18.3 Packet Capture 254
- Chapter 18 Diagnostics 255
- 18.3.1 Packet Capture Files 256
- 18.4 Wireless Frame Capture 258
- Chapter 18 Diagnostics 260
- CHAPTER 19 263
- Chapter 19 Reboot 264
- CHAPTER 20 265
- Chapter 20 Shutdown 266
- CHAPTER 21 267
- I forgot the password 269
- 21.4 Internet Access 270
- Device HA is not working 273
- Chapter 21 Troubleshooting 278
- CHAPTER 22 279
- APPENDIX A 285
- Appendix A Log Descriptions 286
- LOG MESSAGE DESCRIPTION 286
- Table 99 User Logs 287
- Appendix A Log Descriptions 289
- Table 101 System Logs 290
- Table 102 Device HA Logs 292
- CODE DESCRIPTION 295
- Table 103 WLAN Logs 296
- Table 104 Account Logs 297
- Table 105 File Manager Logs 297
- Table 106 DHCP Logs 298
- Table 111 Rogue AP Logs 303
- Table 113 DCS Logs 304
- APPENDIX B 305
- Internet Explorer 306
- APPENDIX C 319
- Figure 130 RTS/CTS 322
- Fragmentation Threshold 323
- Preamble Type 323
- IEEE 802.11g Wireless LAN 323
- Wireless Security Overview 324
- Types of EAP Authentication 326
- PEAP (Protected EAP) 327
- Dynamic WEP Key Exchange 328
- Encryption 329
- User Authentication 330
- Security Parameters Summary 332
- APPENDIX D 333
- APPENDIX E 373
- Industry Canada Statement 374
- IMPORTANT NOTE 375
- Notices 375
- ZyXEL Limited Warranty 376
- Registration 377
- Appendix E Legal Information 378
Related products and manuals for Routers ZyXEL NWA3000-N
Routers ZyXEL N300 User Manual
(216 pages)
(216 pages)
Routers ZyXEL MAX-306M1 User Manual
(376 pages)
(376 pages)
Routers ZyXEL P-2302HW User Manual
(128 pages)
(128 pages)
Routers ZyXEL P-1100 User Manual
(130 pages)
(130 pages)
Routers ZyXEL P-660H-TX User Manual
(89 pages)
(89 pages)
Routers ZyXEL P-791R User Manual
(8 pages)
(8 pages)
Routers ZyXEL P-660HW-D Series User Manual
(339 pages)
(339 pages)
Routers ZyXEL Prestige 202H User Manual
(309 pages)
(309 pages)
Routers ZyXEL P-660HN-T1H User Manual
(322 pages)
(322 pages)
Routers ZyXEL ZyAIR G-560 User Manual
(9 pages)
(9 pages)
Routers ZyXEL NBG-418N User Manual
(228 pages)
(228 pages)
Routers ZyXEL 4-Port User Manual
(444 pages)
(444 pages)
Routers ZyXEL P-661HW User Manual
(383 pages)
(383 pages)
Routers ZyXEL P-336M User Manual
(17 pages)
Routers ZyXEL NBG334W User Manual
(71 pages)
(71 pages)
Routers ZyXEL LTE6100 User Manual
(189 pages)
(189 pages)
Routers ZyXEL ISG50 User Manual
(880 pages)
(880 pages)
Routers ZyXEL P-2602R/RL-DXA User Manual
(11 pages)
(11 pages)
Routers ZyXEL 802.11g User Manual
(114 pages)
(114 pages)
© 2020, manymanuals.com. All rights reserved. | 1.411 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals