Method for controlling access point in wireless local area network, and communication system
First Claim
1. A method for controlling an access point (AP) in a wireless local area network (WLAN), comprising:
- when an AP accesses the WLAN, authenticating the AP by an authentication server being an Authentication Authorization Accounting (AAA) server or a Dynamic Host Configuration Protocol (DHCP) server, wherein the AAA server and the DCHP server are both devices;
after the authentication succeeds, delivering an access controller (AC) list by the authentication server or a broadband network gateway (BNG) to the AP;
if the authentication fails, not delivering the AC list, so as to deliver the AC list to the AP only in a case that the AP is successfully authenticated, avoiding information leakage caused by delivering the AC list to an illegitimately-set AP device;
the AP selecting one AC from the AC list according to a preset rule and communicating with the selected AC.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for controlling an access point in a wireless local area network (WLAN) and a communication system, the method includes: authenticating an access point; after the authentication succeeds, delivering an access controller list to the access point; the access point selecting an access controller from the access controller list according to a preset rule, and communicating with the selected access controller. Only in the case that the access point is successfully authenticated is the access controller list sent to the successfully-authenticated access point, thus solving the problem that the information of the access controller is leaked out because of delivering the access controller list to an illegitimately-set access point, and ensuring the security of network device information.
5 Citations
13 Claims
-
1. A method for controlling an access point (AP) in a wireless local area network (WLAN), comprising:
-
when an AP accesses the WLAN, authenticating the AP by an authentication server being an Authentication Authorization Accounting (AAA) server or a Dynamic Host Configuration Protocol (DHCP) server, wherein the AAA server and the DCHP server are both devices; after the authentication succeeds, delivering an access controller (AC) list by the authentication server or a broadband network gateway (BNG) to the AP;
if the authentication fails, not delivering the AC list, so as to deliver the AC list to the AP only in a case that the AP is successfully authenticated, avoiding information leakage caused by delivering the AC list to an illegitimately-set AP device;the AP selecting one AC from the AC list according to a preset rule and communicating with the selected AC. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A communication system, comprising at least one AP, at least one AC, a BNG and an authentication server;
- wherein the AP connects with the AC and the authentication server via the BNG;
wherein, the authentication server is an Authentication Authorization Accounting (AAA) server or a Dynamic Host Configuration Protocol (DHCP) server, and the AAA server and the DCHP server are both devices;the authentication server is configured to;
when the AP accesses a WLAN, authenticate the AP, deliver an AC list to the AP after the authentication succeeds, or deliver the AC list to the AP by a broadband network gateway (BNG), and not to deliver the AC list if the authentication fails, so as to deliver the AC list to the AP only in a case that the AP is successfully authenticated, avoiding information leakage caused by delivering the AC list to an illegitimately-set AP device;the AP is configured to;
select one AC from the AC list according to a preset rule and communicate with the selected AC. - View Dependent Claims (12, 13)
- wherein the AP connects with the AC and the authentication server via the BNG;
Specification