Setting Up Your WLAN Test Environment

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

Keep your initial WLAN test deployment simple so that you can focus on successfully installing and configuring the essential components. To simplify your initial test:

• Test a basic, single-tier PKI.

  When you deploy your enterprise WLAN, it is recommended that you provide the extra security of a three-tiered certificate infrastructure in which the root CA is offline. For guidelines for designing a certificate infrastructure, see "Designing a Public Key Infrastructure" in Designing and Deploying Directory and Security Services.

• Omit using Group Policy in your initial test.

  In your production deployment, you will want to use Group Policy to preconfigure and control the following Wireless Network (IEEE 802.11) Policies settings for Windows XP (SP1 and later) and Windows Server 2003 wireless clients:

  • Types of networks that users can access

    For example, you might restrict users’ access to an AP (infrastructure) network only, or to a computer-to-computer (ad hoc) network only.

  • Network name (SSID)

  • Wireless network key (WEP) settings

  • Enabling of network access control using IEEE 802.1X

  • Authentication methods and settings

In your initial test deployment, install and configure the following components and services:

• Wireless APs

• Active Directory

• DNS and DHCP

• A single-tier PKI

• At least one RADIUS server (IAS)

• Wireless clients

After successfully deploying your initial WLAN test environment, add the use of Group Policy and deploy a WLAN with a three-tier PKI in your lab, and confirm that your WLAN still functions properly, to prepare for a successful production deployment.