Name: Cisco 4400 Series
Brand: Cisco
Rating: 5 (1 reviews)

To Next Page

To Previous Page

6-24

Cisco Wireless LAN Controller Configuration Guide

OL-17037-01

Chapter 6 Configuring WLANsWireless Device Access

Configuring WLANs

Step 8 If you chose PSK in Step 7, choose ASCII or HEX from the PSK Format drop-down box and then enter

a pre-shared key in the blank field. WPA pre-shared keys must contain 8 to 63 ASCII text characters or

64 hexadecimal characters.

Step 9 Click Apply to commit your changes.

Step 10 Click Save Configuration to save your changes.

Using the CLI to Configure WPA1+WPA2

Follow these steps to configure a WLAN for WPA1+WPA2 using the controller CLI.

Step 1 Enter this command to disable the WLAN:

config wlan disable wlan_id

Step 2 Enter this command to enable or disable WPA for the WLAN:

config wlan security wpa {enable | disable} wlan_id

Step 3 Enter this command to enable or disable WPA1 for the WLAN:

config wlan security wpa wpa1 {enable | disable} wlan_id

Step 4 Enter this command to enable or disable WPA2 for the WLAN:

config wlan security wpa wpa2 {enable | disable} wlan_id

Step 5 Enter these commands to enable or disable AES or TKIP data encryption for WPA1 or WPA2:

• config wlan security wpa wpa1 ciphers {aes | tkip} {enable | disable} wlan_id

• config wlan security wpa wpa2 ciphers {aes | tkip} {enable | disable} wlan_id

The default values are TKIP for WPA1 and AES for WPA2.

Step 6 Enter this command to enable or disable 802.1X, PSK, or CCKM authenticated key management:

config wlan security wpa akm {802.1X | psk | cckm} {enable | disable} wlan_id

The default value is 802.1X.

Step 7 If you enabled PSK in Step 6, enter this command to specify a pre-shared key:

config wlan security wpa akm psk set-key {ascii | hex} psk-key wlan_id

WPA pre-shared keys must contain 8 to 63 ASCII text characters or 64 hexadecimal characters.

Step 8 If you enabled WPA2 with 802.1X authenticated key management or WPA1 or WPA2 with CCKM

authenticated key management, the PMK cache lifetime timer is used to trigger reauthentication with the

client when necessary. The timer is based on the timeout value received from the AAA server or the

WLAN session timeout setting. To see the amount of time remaining before the timer expires, enter this

command:

show pmk-cache all

Information similar to the following appears:

PMK-CCKM Cache

Entry

Type Station Lifetime VLAN Override IP Override

------ ------------------- -------- ------------------ ---------------

CCKM 00:07:0e:b9:3a:1b 150 0.0.0.0

Questions and Answers:

Need help?

Do you have a question about the Cisco 4400 Series and is the answer not in the manual?

Cisco 4400 Series Specifications

General

Product Type	Wireless LAN Controller
Manageable	Yes
Management Port	Yes
Power over Ethernet (PoE)	No
Operating Temperature	32 to 104°F (0 to 40°C)
Security	WPA, WPA2, 802.1X, AES, TKIP
Power Supply	AC Power Supply
Wireless LAN Standard	IEEE 802.11a/b/g/n
Form Factor	Rack-mountable
Redundancy	Yes
Operating Humidity	10% to 90% non-condensing