Configuring Wireless Access Points
Before you can configure the wireless APs in your network, you must first make sure they are deployed in a way that provides full coverage of your wireless network. For more information on deploying APs, see Chapter 7, Wireless AP Placement.
Configure your wireless APs to support WEP encryption, WPA encryption (optionally), and 802.1X authentication. Additionally, configure the RADIUS client on your wireless APs with the following settings:
The IP address or name of a primary RADIUS server, the shared secret, UDP ports for authentication and accounting, and failure detection settings.
The IP address or name of a secondary RADIUS server, the shared secret, UDP ports for authentication and accounting, and failure detection settings.
To balance the load of RADIUS traffic between the primary and secondary IAS servers, configure half of the wireless APs with the primary IAS server as their primary RADIUS server and the secondary IAS server as their secondary RADIUS server. Configure the other half of the wireless APs with the secondary IAS server as their primary RADIUS server and the primary IAS server as their secondary RADIUS server.