Toshiba Magnia Z310 User Manual

MAGNIASoftware Access PointUser’s Guide V3.0

Chapter1 Outline of Software Access PointOutline of Software Access PointChapter1

924. Place a check mark in [RADIUS1] and click [Edit].5. Set the following items and click the [OK] button.Set a value in the [IP Address] edit box.

4.4.1.5 Wireless LAN stationThe following provides the setting procedure for the wireless LAN station.Step 1 Certificate issuance and installationFir

94Step 2. Setting the 802.1X function in the wireless LAN stationNext, set the 802.1X function.The following procedure is to enable the 802.1X functi

4. Set the following items and click the [OK] button.Select the [Use a certificate on this computer] radio button.Place a check mark in the [Validate

964.4.2 Configuration Example (2)Establish the environment, based on the following scenario.· Some stations are not supporting the 802.1X function.·

4.4.2.2 Access pointThe following is the setting procedure for the access point.Step 1 Setting the 802.1X function at the access pointMake settings f

984. Place a check mark in the [RADIUS1] check box and click the [Edit] button.5. Set the following items and click the [OK] button.Set a value in the

4.4.2.3 Wireless LAN stationThe following is the setting procedure for the wireless LAN station.Step 1 Setting the 802.1X stationSee "Configurat

1004.4.3 Configuration Example (3)Establish the environment, based on the following scenario.There are two parts, each with its own domain.Each par

4.4.3.2 Access pointThe following is the setting procedure for the access point.Step 1 Setting the 802.1X function at the access point.Make setting

21.1 OutlineThe MAGNIA Software Access Point is a software product that facilitates the Toshiba IntelArchitecture server to work as a wireless LAN ac

1024 Select [Default] and click the [Edit] button.5 Set the following items and click the [OK] button.Set "Rule-A" for [Rule name].Set "

7 Set the following items and click the [OK] button.Set a value in the [IP address] edit box. Specify the IP address or host name of theRADIUS-A serv

10410 Select theRADIUS1checkbox and click the [Edit] button.11 Set the following items and click the [OK] button.Set a value in the [IP address] edi

4.4.3.3 Wireless LAN stationThis must be set to match the respective domain’s RADIUS and CA.The setting procedure is explained on the following page

AppendixesAppendixes

108Appendix 1 SNMP SettingsWhen you set up the Software Access Point from the remote PC, using the Access PointConfiguration Utility, the SNMP Extens

109SNMP SettingsThe following explains the settings for SNMP for Windows NT, Windows 2000 and Server 2003,respectively[For Windows NT]For information

1106. Click the [OK] button.In the following example, "Accept SNMP Packets from any Host" is selected.When it is necessary to limit the host

1114. Select the [Security] tab.The page explained in [For Windows NT] above is displayed. The items to be set arethe same as in [For Windows NT].

112Appendix 2 SecurityBecause it is difficult to define the communication area of a wireless LAN network because of thewireless (radio) characteristi

31.2 Operating EnvironmentThe requirements for running the MAGNIA Software Access Point are as follows:Server MAGNIA Z310PC card IEEE 802.11b Wireles

113MAGNIA(AP)MAC Address whichthe access is permitted11-11-11-11-11-1122-22-22-22-22-22MAC address“11-11-11-11-11-11”MAC address“22-22-22-22-22-22”MAC

114For the configuration, see the following section.![3.2.2.3 [WEP] tab]· 802.1X FunctionAuthenticating each station can prevent illegal access of th

115· Communication areaAfter the equipment is installed, it is recommended to investigate the communication-enabledarea by using the station.Also, fro

116· Security enhancement using a firewallSecurity can be enhanced by combining an upper-level protocol having the encryption function,such as IPSec o

117Appendix 3 Trouble-shootingGeneral ProblemsProblem CorrectionCommunication between wireless LAN stations isnot possible.· Check whether the wirele

118Installation ProblemsProblem CorrectionDuring installation, the following message isdisplayed."The following driver is being installed:Device

119Access Point Configuration Utility ProblemsProblem CorrectionWhen the Access Point Configuration Utility starts,the message "Loading of the li

120Problem CorrectionWhen the denied MAC address is cleared in theAccess Point Configuration Utility, the message"The deletion of history failed&

121Access Point Statistics Utility ProblemsProblem CorrectionWhen you start up the Access Point StatisticsUtility, the following message appears:"

122Appendix 4 GlossaryTerm Explanation802.1X IEEE standard. Port-Based Network Access Control. This protocol isused to control access in units of p

41.3 ConfigurationThis section explains basic configurations of wireless LAN networks.For details on the 802.1X function, see the following chapter.!

123Term ExplanationMD5-Challenge Authentication method using the MD5 algorithm. The authenticationserver checks whether the user name and password of

51.3.2 Consisting of Wireless and Wired LANsA wireless LAN network and wired LAN network can be connected via MAGNIA (Software AccessPoint).PCs on th

61.3.3 Consisting of multiple access pointsCombining multiple access points can make up a flexible network.When two access points are provided as sho

Chapter2 Installation ProcedurInstallation ProcedureChapter2

82.1 Software Access PointThis section explains the procedure for installing and uninstalling the MAGNIA Software AccessPoint.2.1.1 Installing the S

94. On this screen, select the components to be installed.Click the [Next] button to start copying the files. Memo If you want to use the Access Poi

10 Memo Some protocol components, such as NWLink protocol, demand a setup like a TCP/IP protocol.Please perform and continue the required setup oper

ii…………………………………………………………………………………………………………………………………………………………………………………………………………1. No part of this document may be transcribed or reproduced without the

112.1.1.2 For installation in Windows 2000When a wireless LAN card driver or software for other than this product is installed, uninstall it.![2.1.2

125. On the screen, select the components to be installed.Click the [Next] button to start copying the files. Memo If you want to use the Access Poin

137. When the following screen is displayed, click the [Finish] button.8. Install the wireless LAN card.Refer to the server's manual for more inf

142.1.1.3 For installation in Server 2003Install a wireless LAN card after installing the MAGNIA Software Access Point.1. Log on as Administrator (or

155. On the screen, select the components to be installed.Click the [Next] button to start copying the files. Memo If you want to use the Access Poin

167. When the following screen is displayed, click the [Finish] button.8. Install the wireless LAN card.Refer to the server's manual for more inf

1710. When the following screen is displayed, click the [Continue Anyway] button to start tocopy the files. Installation of the driver is completed.1

182.1.2 Uninstalling the Software Access PointThis section describes the un-installation procedure for the MAGNIA Software Access Point.2.1.2.1 For W

192.1.3.2 For Windows 2000/Server 2003It is not possible to upgrade MAGNIA Software Access Point in Windows2000 nor Server2003.Uninstall the earlier v

202.2 Access Point Configuration UtilityIf you install the Access Point Configuration Utility, you can set up the MAGNIA Software AccessPoint from a

iiiThis document contains important information to be observed to prevent damage to users andbystanders or their property and to use the purchased pro

214. Specify the program folder and click the [Next] button.5. When the following screen is displayed, click the [Finish] button.

222.2.2 Uninstalling the Access Point Configuration UtilityThe following describes the un-installation procedure.1. Activate the [Add/Remove Programs

Chapter3 UtilitiesUtilitiesChapter3

243.1 Outline of UtilitiesThe utilities provided by this product are as follows.1. Access Point Configuration UtilityThis utility sets up the access

3.2 Access Point Configuration Utility (Local)Sets up the MAGNIA Software Access Point.This utility is installed at the same time the MAGNIA Software

26[Windows 2000/Server 2003]1. Double-click [Software Access Point] on the Control Panel on the server in which theSoftware Access Point is installed.

3.2.2 Using the utilityWhen the Access Point Configuration Utility is activated, the main screen has the following fivepages:[Basic Setting][WEP][Acc

28! Common to all the tabsItem DescriptionSpecifies the wireless LAN adapter to setup.Selection TOSHIBA Wireless LAN Card 802.11a/b(AP)/TOSHIBA Wirele

3.2.2.1 [Connect to] dialog boxSpecifies the connection destination.! [Connect to] dialog boxItem DescriptionConnects to the computer on which the Acc

303.2.2.2 [Basic Setting] tabMakes basic settings of the MAGNIA Software Access Point.! [Basic Setting] tabItem DescriptionSpecifies the frequency ban

ivPrefaceThis manual describes how to install and operate the MAGNIA Software Access Point.This manual consists of the following four chapters:Chapter

Item DescriptionSpecifies the name of the logical network configured by theaccess point.The same setting item is provided on the station that runs ini

32Item DescriptionSpecifies the country where Wireless LAN Card and thesoftware are used.Selection Depends on the card.Default Depends on the card.[Co

Item DescriptionSpecifies the size of the area covered by access points.Selection Large/Medium/SmallDefault Large[Distance between Aps]combo boxRemark

343.2.2.3 [WEP] tabMakes settings for the WEP key and 802.1X function.See the following section, too.![Appendix 2 Security]For details on the 802.1X

! [WEP] tabItem DescriptionSpecifies whether to use the 802.1X function.Not used It does not use 802.1X function.Used It uses 802.1X function.Selectio

36Item DescriptionSpecifies the length of the key to be distributed.5bytes/13bytes(When [TOSHIBA Wireless LAN Card(AP)] is selectedin [Wireless LAN Ad

Item DescriptionSelects one of the keys 1 to 4 and specifies the WEPcryptographic key to send data.Characters ASCII character string or hexadecimal nu

383.2.2.4 [RADIUS Setting] dialog boxSets rules for the RADIUS server that does authenticate.! [RADIUS Setting] dialog boxItem DescriptionSpecifies th

Item DescriptionDisplays the RADIUS servers' hostnames or IP addresses.Specify whether to use the RADIUS server or not.Four RADIUS servers can be

403.2.2.5 [RADIUS Setting - Rule - Add/Edit] dialog boxSets rules which apply to the RADIUS server.! [RADIUS Setting - Rule - Add/Edit] dialog boxItem

vContentsApplicable Versions and Technical RevisionsNotations Used in This DocumentCHAPTER1 OUTLINE OF SOFTWARE ACCESS POINT ...

Item DescriptionRemarks Example of settings:<Domain name>\<user name>TOSHIBA\user01: (Direct addressing)TOSHIBA\*: All the users under

423.2.2.6 [RADIUS Setting - RADIUS] dialog boxSpecifies the connection to the RADIUS server.! [RADIUS Setting RADIUS] dialog boxItem DescriptionSpecif

3.2.2.7 [Access Restriction] tabRestrains specific wireless LAN stations from accessing the network by registering permissibleMAC addresses. See the f

44Item Description[Access permitted MACaddress]list boxLists the MAC addresses of the wireless LAN stations that arepermitted to access the network.[A

3.2.2.8 [Log Information] tabActivates Access Point Statistics Utility and Access Point Log Utility.! [Log Information] tabItem DescriptionStatistics

463.2.2.9 [Hardware Resource] tabSets hardware resource items.This tab is displayed only when Windows NT is used.! [Hardware Resource] tabItem Descrip

3.3 Access Point Configuration Utility (Remote)Sets up the MAGNIA Software Access Point from a remote PC.The versions of MAGNIA Software Access Point

483.3.1 Starting the utility1. Select [Programs]-[MAGNIA software AP Configuration]-[AP Configuration Utility].2. In the [Computer Name] combo box, e

3.3.2 Using the utilityThe method for using the utility is the same as when you use the Access Point ConfigurationUtility in local mode (on the serve

503.4 Wired LAN Selection UtilityThis utility connects wireless and wired LAN networks with each other (or releases theconnection). When the wireles

vi3.6.4 Statistics Saved in the Log...66CHAPTER4 802.1

[Windows 2000/Server 2003]1. Activate [Selection of Wired LAN] on the Control Panel on the server in which theSoftware Access Point is installed.

523.4.2 [Selection of Wired LAN Network Adapter] dialog boxWhen the Wired LAN Selection Utility is started, the following dialog box is displayed.Sel

OS.When AFT/ALB of Intel LAN card is usedWhen using the AFT (Adapter Fault Tolerance)/ALB (Adaptive Load Balancing) function on theIntel LAN card driv

543.5 Access Point Statistics UtilityThis utility displays the operation statistics of the MAGNIA Software Access Points. You can seethe packet'

Menu Command Description[View]-[Auto Refresh]Changes the operation statistics update interval.[3.5.5 Setting the Auto-Refresh Interval][Help]-[About

563.5.3.1 LAN Adapter statisticsThe table below shows the items displayed for the LAN adapter statistics.Value DescriptionDevice name Name of the LAN

Value DescriptionRxMulticastFrames Total number of frames received by the access point for multiplestations.RxMulticastBytes Total frame length (total

583.5.4 Station Statistics ScreenThis screen enables you to check the station statistics.When the station statistics is displayed, the wireless LAN a

3.5.4.1 Statistics displayed in tableThe statistics displayed in table are explained below.Value DescriptionMAC address MAC address of the station.Sta

60Value DescriptionRxUnicastFrames Total number of frames received (unicast) by the access pointfrom the station.RxUnicastBytes Total frame length (to

viiApplicable Versions and Technical RevisionsSummary of Revision DateFirst edition 2001-07-07Windows Version MAGNIA Software Access Point V1.0Second

3.5.5 Setting the Auto-Refresh IntervalSet the display's update interval.Item DescriptionSpecifies the time interval (in sec.) at which the disp

623.6 Access Point Log UtilityThis utility saves the MAGNIA Software Access Point's operation statistics as a CSV file. You cansave the packet&a

Item Description[About ApLog]dialog boxDisplays the utility's version information, the target accesspoint's version information, and copyrig

64Item DescriptionDefault AllRemarks When [Selected AP only] is selected, select fromthe list the access point that is to collect thestation statistic

3.6.2.1 [Browse For Folder] dialog boxSelect the folder where the logs are to be saved.When the log collection starts, a folder named "Adapter&qu

663.6.3 Task Tray IconWhen the log collection starts, the icon below will appear on the task tray.To stop the log, right-click this icon and select [

3.6.4.2 Access Point StatisticsValue DescriptionTxUnicastFrames Total number of frames transmitted by the access point to asingle station.TxUnicastByt

683.6.4.4 Station StatisticsValue DescriptionDate Date when the data was collected.Formats set under [Regional Options] on the Control Panel aresuppor

Value DescriptionNewKeyTxWhen Remaining time until the next new WEP key is to be distributed.NewKeyTxPeriod Distribution time interval of new WEP keys

Chapter4 802.1X Function802.1X FunctionChapter4

viiiNotations Used in This DocumentThis document uses the following notations:Symbols!Notice! : Provides information that the user should observe to

724.1 OverviewThe 802.1X function restricts the connection of unauthorized stations by authenticating eachstation. It rejects transmissions from unau

4.2 802.1X FunctionThis section explains the 802.1X function more specifically.4.2.1 Required EnvironmentThe following environment is required to us

744.2.2 Authentication and Distribution of WEP KeyThis section explains authentication (re-authentication) and the distribution of the WEP key.4.2.2.

4.2.2.2 Authentication typeSeveral types of authentication are available. The wireless LAN station and RADIUS server needto predetermine which type o

764.2.2.3 Distribution of WEP keyWhen authentication ends successfully, the access point distributes the WEP key to the station.(Whether the WEP key c

4.2.2.4 Re-authenticationSecurity can be enhanced by periodically making re-authentication even after the station haspassed the authentication.The re-

784.2.3 Coexistence of Station Not Supporting the 802.1X FunctionWith the MAGNIA Software Access Point, a station that supports the 802.1X function (

4.3 RADIUS Selection FunctionWhen 802.1X authentication starts, this RADIUS selection function looks at the EAP/Identity sentby the station and selec

80With this configuration, a station (STA B) in Domain B will be unable to connect to the accesspoint (AP A) in Domain A because the authentication wi

Use one of the above expressions when registering the EAP/Identity with the access point. Theaccess point will compare the EAP/Identity sent from the

ixScreenFor convenience of explanation, only the part of screens needed for operation is shown.The user should key in the bold element shown.The scree

82Rule-B applies below:Domain ACA-ADomaiin BRADIUS-AAP-A(MAGNIA)STA-ARouter RouterAP-B(MAGNIA)CA-BRADIUS-BSTA-B(Connected toAP-A)

4.3.2.4 RADIUS Selection OperationThe diagram below shows a sample operation when the access point selects a RADIUS server.In this example, the access

844.4 Configuration ExampleThis section explains how to establish the 802.1X environment, giving specific examples.4.4.1 Configuration Example (1)Th

4.4.1.2 CA (Certificate Authority)Install "Certificate Service" in MAGNIA-SRV.For details on "Certificate Service", refer to Windo

865. Set the following items and click the [Finish] button.Enter the IP address of the access point and RADIUS server in [Client address].In this exam

4. Click the [Add] button.5. Select conditions and click the [Add] button.This example defines that this policy should be used when [Client-Friendly-N

886. Click the [Next] button.7. Select [Grant remote access permission] and click the [Next] button.

8. Click the [Edit Profile] button and select the [Authentication] tab.9. Set the following items and click the [OK] button.Place a check mark in the

90Step 3. Setting Active Directory1. Activate [Active Directory User and Computer].2. Open properties of the user whose access is to be permitted.In

4.4.1.4 Access pointThe following is the setting procedure for the access point.Step 1 Setting the 802.1X function at the access pointMake settings f