ProCurve Access Point 530
features

• Choice of IEEE 802.11i, Wi-Fi Protected Access 2 (WPA2), or WPA: locks out unauthorized wireless access by authenticating users prior to granting network access; robust Advanced Encryption Standard (AES) or Temporal Key Integrity Protocol (TKIP) encryption secures the data integrity of the wireless traffic

• ProCurve Identity Driven Manager (IDM) security and access control:
  • Per-user ACLs:  permit or deny user access to specific network resources based on user identity and time of day, allowing multiple types of users (employees, visitors, temporary workforce) on the same network to access specific network services without risk to network security or unauthorized access to sensitive data
  • Automatic VLAN assignment:  automatically assigns users to the appropriate VLAN based on their identity, community, and time of day
  • Rate limits:  automatically applies ingress rate limits to user traffic based on identity, community, and time of day

• IEEE 802.1X: provides port-based user authentication with support for Extensible Authentication Protocol (EAP), TLS, TTLS, SIM, GTC, and PEAP, with choice of AES, TKIP, and static or dynamic WEP encryption for protecting wireless traffic between authenticated clients and the access point

• Neighbor access point (rogue AP) and ad-hoc wireless network detection: Periodic scanning is provided for neighboring access points and ad-hoc wireless networks. Information collected during the scan, including BSSID, SSID, channel, RSSI, security setting, and radio type (802.11b, b/g, or a mode) are captured for each wireless device detected. If configured, the access point can enter dedicated scan mode to provide continuous scanning of the surrounding RF environment.

• Up to 16 BSSIDs per radio with separate VLAN, security, and authentication: permits network administrators to control user access to network resources based on user authentication and level of trusted security between the client and access point

• Local RADIUS authentication: provides "enterprise-grade" 802.11i (WPA2) wireless security for small wireless LAN networks; serves as backup authentication in the event primary and secondary network RADIUS servers are unavailable due to network disruption

• RADIUS-based MAC authentication: a wireless client is authenticated with a RADIUS server based on the MAC address of the client; this is useful for clients that have minimal or no user interface

• Local MAC authentication: deny or allow network access based on wireless client MAC address, which is compared to a database stored on the access point

• Local wireless bridge client traffic filtering: when enabled, prevents communication between wireless devices associated with the same access point

• Closed system: restricts broadcast of SSID as a security measure to conceal presence of the wireless network; access point does not respond to the wireless client probe request of "ANY"

• Secure Sockets Layer (SSL): encrypts all HTTP traffic, allowing secure access to the browser-based management interface of the access point

• Secure Shell (SSHv2): encrypts all transmitted data for secure, remote command-line interface (CLI) access over IP networks

• Management VLAN: secures management access to the access point; the management VLAN is used to manage the access point through remote management tools such as the Web interface, SSH, telnet, or SNMP

• Management access control: To provide more security for the access point, management interfaces that are not required can be disabled, including the Web browser, telnet, and Secure Shell (SSH), as well as the serial console port and reset button.

• Advanced dual-radio design:
  • Simultaneous 802.11a and 802.11g radio operation:  supports dual-band wireless clients and provides backward compatibility for 802.11b wireless devices
  • Dual 802.11b/g radio operation:  provides high-capacity 802.11b/g data and voice wireless LAN coverage in networks where support for 802.11a is not a requirement

• Antenna flexibility accommodates a wide range of wireless LAN deployments:
  • Per-radio integrated diversity antenna with omnidirectional coverage:  provides robust, dual-radio wireless LAN coverage for open office environments
  • Per-radio external diversity antenna support:  enables external antenna configurations to extend wireless coverage or wireless bridging between access points

• Wireless Distribution System (WDS):
  • Wireless bridging:  Because it expands network connectivity to remote access points located beyond a network's wired infrastructure, wireless bridging is ideal for increasing wireless coverage to adjacent buildings, across large lecture halls, or to outdoor campus environments. Each ProCurve Access Point 530 can support up to six wireless links to remote access points. WPA-PSK encryption secures data on each wireless link. Wireless distribution is supported on 802.11a, b, and g radio modes of operation.
  • Single-radio operation:  A wireless link is provided to each remote ProCurve Access Point 530; it also services local wireless clients.
  • Dual-radio operation:  One radio provides a wireless link to each remote ProCurve Access Point 530. The second radio provides network connectivity to local wireless clients.

• IEEE 802.11h International Telecommunication Union (ITU) compliant: employs Dynamic Frequency Selection (DFS) and Transmit Power Control (TCP) to automatically select another channel and adjust transmit power to minimize interference with systems such as radar, if detected on that same channel

• International country configuration: select the appropriate country, and the access point will automatically configure operation to match regulatory requirements

• Auto Channel Select (ACS): helps minimize radio co-channel interference by automatically selecting an unoccupied radio channel

• Adjustable output power: controls cell size for high-density access point deployments

• IEEE 802.3af Power over Ethernet support: simplifies deployment and dramatically reduces installation costs by helping to eliminate the time and cost involved in supplying local power at each access point location

• Link Layer Discovery Protocol (LLDP): enables real-time mapping of nodes to switch ports; LLDP (IEEE 802.1AB) industry-standard discovery protocol automatically populates both the LLDP and proprietary discovery MIBs for net management systems dependent on these MIBs

• Wi-Fi WMM support: provides QoS functionality in wireless networks by prioritizing wireless traffic from different applications

• SpectraLink voice priority (SVP) support: prioritizes SpectraLink voice IP packets sent from a SpectraLink NetLink SVP server to SpectraLink wireless voice handsets to help ensure excellent voice quality

• Remote configuration and management: through secure Web browser or command-line interface (CLI)

• RADIUS accounting support: separate RADIUS accounting server support per BSSID provides detailed session, usage, and billing information for each client activity

• Multiple configuration files: multiple config files can be stored to flash image

• SCP (Secure Copy Protocol): allows secure file transfer to/from the access point; protects against unwanted file downloads or unauthorized copying of switch configuration file

• Network management:
  • ProCurve Identity Driven Manager (IDM):  This software extends the functionality of ProCurve Manager Plus to include authorization control features for the ProCurve Access Point 530 and ProCurve switches using RADIUS servers and MAC authentication or 802.1X security protocols. Using IDM, you can create and assign access rights, quality of service, and VLAN enrollment that is dynamically associated with a user and applied at the point of entry or "edge" of the network.
  • ProCurve Mobility Manager 1.0:  This software provides a simple yet powerful management tool to centrally configure, update, monitor, and troubleshoot ProCurve APs, such as the ProCurve Access Point 530. It expands the capabilities of ProCurve Manager Plus to address mobility-specific device management. Advanced capabilities include rogue device detection, group-based configuration and firmware updates, monitoring wireless client association activity, and e-mail/pager alerts.

• Visit www.procurve.com for an up-to-date list of industry certifications.

» Return to top