Use the Firebox as an Authentication Server for Wireless Authentication

If you select the WPA EnterpriseWPA2 Enterprise, or WPA/WPA2 Enterprise authentication methods in your wireless configuration, you can use the Firebox as the authentication server for wireless authentication.

To configure a Firebox wireless device to use the Firebox as an authentication server, from Fireware Web UI or Policy Manager:

  1. Select Network > Wireless.
  2. Adjacent to the Access point 1, Access point 2, or Wireless Guest configuration, click Configure .
  3. Select the Wireless tab.

Screen shot of the Wireless tab with Firebox-DB authentication selected

Wireless interface settings in Fireware Web UI

Screen shot of wireless settings page

Wireless interface settings in Policy Manager.

  1. From the Encryption (Authentication) drop-down list, select WPA Enterprise, WPA2 Enterprise or WPA/WPA2 Enterprise.
  2. From the Encryption algorithm drop-down list, select the encryption method to use. For more information, see Set the Encryption Level.
  3. From the Authentication server drop-down list, select Firebox-DB.
  4. In the EAP authentication timeout text box, you can change the timeout value for authentication. The default is 3600 seconds.
  5. From the EAP protocol drop-down list, select the EAP protocol wireless clients must use to connect to the access point.
  • EAP-PEAP — EAP Protected Extensible Authentication Protocol
  • EAP-TTLS — EAP Tunneled Transport Layer Security
  • EAP-TLS — EAP Transport Layer Security
  1. From the EAP tunnel protocol drop-down list, select the EAP tunnel protocol to use. The available tunnel protocols depend on the selected EAP protocol.
  2. Select the certificate type to use for authentication.
  • Default certificate signed by Firebox — This is the default.
  • Third party certificates — Select from a list of installed third party certificates.
  1. If you selected Third party certificates, select a certificate from the Certificate drop-down list.
  2. To use a certificate authority (CA) to validate the client certificate, select the Validate client certificate check box. Select a CA certificate from the CA Certificate drop-down list.

For more information about certificates, see About Certificates.

  1. Save the configuration to the Firebox.

To use this authentication method, you must configure your Firebox as an authentication server. For more information, see Configure Your Firebox as an Authentication Server.

See Also

Set the Wireless Authentication Method