OmniAccess AP1101 - Technical Overview Presentation - October 2016 - EN

Network
Solution
s
WLAN AP1101 TECHNICAL OVERVIEW

October 2016
COPYRIGHT 2016 ALE INTERNATIONAL ALL RIGHTS RESERVED.
Agenda
1. Introduction
2. Hardware
3. AP-Group management
AP-Group principles
Distributed architecture
4. Features
Management Interface
IP assignment and L2 segmentation
SSID configuration
Available authentication modes
Authentication mode for captive portal
RF Dynamic Assignment (RDA)
Dynamic WIPS
Fast roaming 802.11r, OKC and WMM
5. Conclusion and references

2
Introduction
Which needs for SMB and WLAN ?
EASY TO DEPLOY
KEY REQUIREMENTS
A minimum or No IT/Network expertise onsite
A minimum or No RF/WLAN expertise onsite
FEATURES
PERFORMANCE & SECURITY

Security for Users and Infrastructure (Encryption, AAA, Guests)
Radio Management (BSSID, RF Optimization, etc.)
COSTS
COMPETITIVE PRICE
Tough market, easy deployment vs Features, comply with IT policies
Performances and Features at what Cost ?
E A S Y D E P L O Y M E N T O R S E C U R I T Y, C O S T O R F E ATU R E S , P E R F O R M A N C E O R AVAI B I L I T Y ?
3
Introduction
AP1101
Easy
deployment
with Wizard
based
configuration
and optimized
GUI
Management
solution for
Captive
Portal
Centralized
view with APgroup
architecture
Take
advantage
of 802.11k
and 802.11v
for 802.11ac
Dynamic RF
Assignment
Support of
VoWLAN with
WMM and
seamless
roaming
802.11ac
Faster
wireless
connection
for Users
4
Introduction
AP1101 a Small and Medium Business Solution
Perfect for WLAN coverage on distributed SMB or remote sites
A functional Coverage in-line with SMB needs
A 802.11ac Solution, high-available and secure
Simplicity without compromises

Plug and Play Design, Wizard based configuration
Addition of an overlay WLAN coverage without any consequent modification of premises, or a centralized
Infrastructure
Secure and centralized control in a reduced time.
Management adapted to the SMB customers

Centralized management of a 16 x AP group
5
Agenda
1. Introduction
2. Hardware
AP-Group principles
4. Features
SSID configuration
Dynamic WIPS

6
Hardware
AP1101 - Specification
Radios
2x2:2 11ac Wave1
Support of both 2.4GHz and 5GHz RF bands
Integrated antennas (dual band, omnidirectional)
Up to 867Mbps at 5GHz and 300Mbps for 2.4Ghz
Ethernet connectivity
10/100/1000 single interface
Power
Maximum Consumption 10 W
DC source: 48 V DC nominal, +/- 5%
Compliant PoE 802.3af
Certifications
Wi-Fi Certified (802.11.a, b, g, n and ac)
Indoor and Plenum Certified
7
Hardware
AP1101 Device view
Kesington security type lock slot
Tile rail mounting slots
DC Power
Reset button
Hidden LED
LED
Red
Green
Blue
Red, Green, Blue
Signification
System start up
Single band running (2.4Ghz or 5Ghz)
Dual band running (2.4Ghz and 5Ghz)
Power off
Console port
8
Ethernet port
Hardware
AP1101 Package contents
15/16 and 9/19 inches ceiling rail

adapters
2x2:2 11ac Wave1
ADDITIONAL WALL MOUNTING KIT IS SOLD

SEPARATELY:
OAW-AP-MNT-W
OAW-AP-MNT-C
9
Agenda
1. Introduction
2. Hardware
AP-Group principles
4. Features
SSID configuration
Dynamic WIPS

10
Management
AP1101 - AP-Group principles Overview
3
1
An AP-Group is composed of
several connected AP via the LAN
in "overlay" mode and this
without infrastructure changes
Another AP has the possibility

to rescue the role of centralized
management. It is called SVC ( "
Secondary Virtual Controller ")
All other AP are member.

They are called Members
5
2
In an AP-group , one AP
supports the role of the
centralized management . It
is called PVC ( Virtual
Primary Controller ")
ID Group 100
11
The group is identified by a

ID group" and all the AP
with the same ID group" are
put in the same group .
Management
AP1101 - AP-Group principles Roles in a group
2
The AP with the second

highest MAC is designated SVC
01:02
1
In case of a VLAN with several

AP started at the same time : the
AP having the highest MAC is
designated PVC
01:03
All other APs become a

member of the group, this up
to a maximum of 16 AP in a
group.
01:01
mywifi-0103
3
Once PVC is designated, it

emits an SSID dedicaced to the
configuration of the PLCgroup.
R2.1 version : <16 AP in a AP-group

12
Management
AP1101 - AP-Group principles Group sizing
3
1
An AP-Group cannot contain

more than 16 AP
2
To have more than 16 APs on a

network, it is convenient to configure
several Group -ID or configure two
separated VLAN.
The 17th AP is not taken

into account and will
remain in "joining state
16 AP
VLAN X OR GROUP ID X
13
VLAN Y OR GROUP ID Y
Management
AP1101 - AP-Group principles Group sizing - 2
The different Clusters are on a VLAN
segment or a separated group ID
Common IT services and

management
DHCP
Radius
OmniVista
Building 1
Building 2
Building 3
DC / WAN
AP-Group 256 users

(~ average of 25 users per AP)
Administration domain (SVC), RF distinct domain

14
Management
AP1101 - Distributed architecture
4
Members exchange RF
synchronization information,
resources usage information, etc.
3
Members establish their

WLAN adjacency to know
their radio environment
LAN
2
1
via a single IP interface (GM IP) :

Synchronisation of configurations
coordination of RF computation
Interface of AP-Group management
Management of notifications
15
AP Member :
User database management.
Authentications management
Local ACL management, etc.
Agenda
1. Introduction
2. Hardware
AP-Group principles
4. Features
SSID configuration
Dynamic WIPS

16
Features
Management interface
2
WLAN networks
creation
AP-group and AP configuration

management
5
4
Monitoring the network usage
Access to advanced management
Monitoring and managing the network

users
A G U I D E S I G N E D TO M A N A G E T H E E S S E N T I A L AN D O F F E R S A M E AP P E A R E N C E O N P C , TAB L E T O R S M A R T P H O N E
17
Features
APs assign a SSID and tag packets
on a VLAN
10.1.20.X
DHCP
RADIUS
If AP tags packets on
a VLAN, 802.1q may
be configured on
switches first
172.31.92.x
10.1.20.X
IP assignment is done under authority of

a external DHCP, APs are not directly
involved in the IP assignment process.
18
Features
AP1101 SSID configuration
It is possible to specify :
Maximal downlink/uplink bandwidth per user.
Maximal bandwidth for the SSID
SSID activation or deactivation on 2,4GHz

and 5GHz bands
Maximal number of users per radio

19
Features
OPEN
Captive portal can enforce HTTP clients to display a Web
authentication page before access to the network
WPA
BSSID
PERSONNAL
WPA 2
WPA 2 + WPA
WPA-PSK (Pre-shared key) is adapted to personal
or small enterprise network (no authentication
server is necessary).
ENTERPRISE
Strong authentication 802.1x, EAP (EAP types: EAP-TLS, EAPTTLS/MSCHAPv2, PEAPv0/EAP-MSCHAPv2, PEAPv1/EAP-GTC, EAP-SIM)
20
Features
Authentication modes for captive portal
Supports the captive portal authentication method,
where a Web page is presented to invited users
when they attempt to access the Internet (hotels ,
conference centers)
DHCP
PORTAL AND
INTERNAL USER
DATABASE
GUEST
READ-ONLY ADMIN
GUEST ADMIN
SYSTEM ADMIN
AP1101 includes management access for read-only

users, guest administrators and system
administrators
Redirection to a internal
portal
21
Features
Authentication modes for captive portal - 2
It is possible to use an authentication mode other than
login/password mode (access code or Terms of Service )
Each user can be logged

with its first Name, last
Name and mail address
It is possible to save
usage behavior on
external TFTP Server
Each user has a defined

time-limited access
22
Features
Each AP is listening the adjacent channels on a regular basis , the
scan takes into account the load of the AP in order to avoid any
impact on AP clients ( " Video / Voice -aware scanning )
ACS (Automatic Channel Selection) : the group has a distribution of

channels that avoid any interference between neighbor cells
23
APS (Automatic Power Selection) : Each

AP adapts its power transmission to avoid
lacks in the radio coverage
Features
Dynamic WIPS
In the presence of a
doctor nothing can harm
The " AP Locate" feature ( flashing

LED ) can help you to find the physical
location of the Rogue AP
DE
AU
TH
A Rogue AP can be automatically

blacklisted. AP1101 sends " DEAUTH "
to the client associated with the rogue
AP
An AP is automatically classified as
Rogue AP if it is connected to the same
wired network and / or broadcast by the
same SSID
R O G U E AP D E T E C T I O N , U S E R S S E C U R I S ATI O N A N D L O C ATI O N
24
Features
3
DHCP
The WMM priorizes traffic in function of

access categories
802.11r allows part of keys which

come from the server to be cached
in the wireless network and enables
future connections rely on the
cached keys
Negotiation protocol 802.11i specifies when

authentication is based on 802.1x, the
roaming client must renegotiate its keys with
the centralized authentication server.
FAST TRANSITION ~50ms
S U P PO RT o f VoWL AN WIT H WM M QOS AN D SE AM L ESS ROAM I NG

25
Radius
Agenda
1. Introduction
2. Hardware
AP-Group principles
4. Features
SSID configuration
Dynamic WIPS

26
AP1101
Conclusion
EASY TO DEPLOY
Integrated Web Management and Intuitive Configuration

Automated deployment of AP in Cluster with Virtual Controller
Embedded Guest Management with Captive Portal
FEATURES
COSTS
Simplicity, Security and performance,

Entry level price with Enterprise class features
Available bundles/bulk for VAD and resellers
Multi-purpose authentication and automatic Voice VLAN

Dynamic Wireless Intrusion Prevention System Rogue AP detection
Dynamic Radio Frequency Management and Optimization
Fast and optimized Roaming and dynamic VoWiFi management
E A S Y D E P L O Y M E N T, S T R O N G S E C U R I T Y, U N M ATC H E D P R I C E / P E R F O R M A N C E / F E ATU R E R ATI O

27
AP1101
References
1. Product page:
https://businessportal2.alcatel-lucent.com/products/omniaccess
-wlan/omniaccess-wlan-access-points/omniaccess-ap1101
2. Datasheet: http://enterprise.alcatel-lucent.com/docs/?id=101668
3. Product Presentation:
https://businessportal2.alcatel-lucent.com/node/428426
4. User manual:
5. Installation guide:
28
Follow us on:
Twitter.com/ALUEnterprise
Facebook.com/ALUEnterprise
Youtube.com/user/enterpriseALU
Linkedin.com/company/alcatellucententerprise
Slideshare.net/Alcatel-Lucent_Enterprise
Storify.com/ALUEnterprise
29
enterprise.alcatel-lucent.com
30

OmniAccess AP1101 - Technical Overview Presentation - October 2016 - EN

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

OmniAccess AP1101 - Technical Overview Presentation - October 2016 - EN

Uploaded by

Copyright:

Available Formats

Network

WLAN AP1101 TECHNICAL OVERVIEW

COPYRIGHT 2016 ALE INTERNATIONAL ALL RIGHTS RESERVED.

5. Conclusion and references

PERFORMANCE & SECURITY

Simplicity without compromises

Management adapted to the SMB customers

5. Conclusion and references

Tile rail mounting slots

15/16 and 9/19 inches ceiling rail

2x2:2 11ac Wave1

ADDITIONAL WALL MOUNTING KIT IS SOLD

5. Conclusion and references

Another AP has the possibility

All other AP are member.

The group is identified by a

The AP with the second

In case of a VLAN with several

All other APs become a

Once PVC is designated, it

R2.1 version : <16 AP in a AP-group

An AP-Group cannot contain

To have more than 16 APs on a

The 17th AP is not taken

Common IT services and

AP-Group 256 users

Administration domain (SVC), RF distinct domain

Members establish their

via a single IP interface (GM IP) :

5. Conclusion and references

AP-group and AP configuration

Monitoring the network usage

Access to advanced management

Monitoring and managing the network

IP assignment is done under authority of

SSID activation or deactivation on 2,4GHz

Maximal number of users per radio

AP1101 includes management access for read-only

COPYRIGHT 2016 ALE INTERNATIONAL ALL RIGHTS RESERVED.

Each user can be logged

Each user has a defined

ACS (Automatic Channel Selection) : the group has a distribution of

APS (Automatic Power Selection) : Each

The " AP Locate" feature ( flashing

A Rogue AP can be automatically

The WMM priorizes traffic in function of

802.11r allows part of keys which

Negotiation protocol 802.11i specifies when

FAST TRANSITION ~50ms

S U P PO RT o f VoWL AN WIT H WM M QOS AN D SE AM L ESS ROAM I NG

5. Conclusion and references

Integrated Web Management and Intuitive Configuration

Simplicity, Security and performance,

Multi-purpose authentication and automatic Voice VLAN

E A S Y D E P L O Y M E N T, S T R O N G S E C U R I T Y, U N M ATC H E D P R I C E / P E R F O R M A N C E / F E ATU R E R ATI O

COPYRIGHT 2016 ALE INTERNATIONAL ALL RIGHTS RESERVED.

You might also like