Services Deployment Considerations

Before defining the access point‘s configuration using the Services menu, refer to the following deployment guidelines to ensure the configuration is optimally effective:

• We recommend that each RADIUS client use a different shared secret password. If a shared secret is compromised, only the one client poses a risk as opposed all the additional clients that potentially share that secret password.
• Consider using an LDAP server as a database of user credentials that can be used optionally with the RADIUS server to free up resources and manage user credentials from a secure remote location.
• Designating at least one secondary server is a good practice to ensure RADIUS user information is available if a primary server were to become unavailable.