This lesson describes how to configure tan Open BAT oas a 802.1x Supplicant.
You may need to refer to the following lessons for a complete working 802.1x environment (Supplicant - Authenticator - Server):
Environment without controller:
- How to use an Open BAT or a Controller as RADIUS Server and set up User accounts
- How to configure an Open BAT as 802.1x authenticator
Environment with controller to manage the APs:
- How to use an Open BAT or a Controller as RADIUS Server and set up User accounts
- How to create a profile on a WLC and apply it on BAT Acces points
- How to configure a Radius Profile on the WLC and include it in Logical settings
These How to are complementary and use the following settings for the radius authentication:
EAP - PEAP with MSCHAPv2 as tunnel method.
Representation
Preliminary steps
Give the BAT an IP address (in our example: 192.168.1.130)
You can refer to the lesson ""How to give an Open BAT or a WLC an IP address""
Add the BAT in LANconfig
You can refer to the lesson ""How to discover a BAT or a WLC in LANconfig""
Configure the BAT as an Access Client
You can refer to the lesson ""How to configure an Open BAT as Access Client"" but refer to this lesson for the security settings.
Security settings
As method, select 802.11i (WPA)-802.1x
For the key enter : ""user"":""password"" as defined in the radius server.
In our example user: laurent and password: lolothebest. So the key to enter is: laurent:lolothebest (see screenshot)
Select PEAP/MSCHAPV2 as client EAP method