Configuring Wireless Access Points

  • Published on Jul 7, 2025
  • 1 minute(s) read
Prev Next

Each wireless access point (WAP) must be configured with the according settings (see Table: Required wireless access point settings).

Table:  Required wireless access point settings
SettingValue
Encryption protocolWAP Enterprise or WAP2 Enterprise
Encryption algorithmAES
RADIUS protocol

One of the supported EAP or PEAP protocols:

  • EAP-TTLSv0/PAP
  • PEAPv0/EAP-GTC
  • PEAPv0/EAP-MSCHAPv2
  • PEAPv1/EAP-GTC
  • PEAPv1/EAP-MSCHAPv2
RADIUS serverEnter the IP address and the RADIUS port (default 1812) for OneSpan Authentication Server.
Shared secretA passphrase used to authenticate the RADIUS client and OneSpan Authentication Server to each other.

If your wireless access point does not support wireless session settings from the configured RADIUS server, change the default reAuthPeriod configuration setting to the required period before a fast reconnect should be attempted. One hour is the recommended period.

Configure the supplicant to request authentication details for every full authentication whenever possible. If this is not configured, each automatic full reconnection attempt (not fast reconnect) will cause a failed authentication.