Chapter 4
| Wireless Settings
Radio Settings
– 70 –
small office networks that may not have the resources to configure and
maintain a RADIUS server, WPA provides a simple operating mode that
uses just a pre-shared password for network access. The Pre-Shared Key
mode uses a common password for user authentication that is manually
entered on the access point and all wireless clients. The PSK mode uses the
same TKIP packet encryption and key management as WPA in the
enterprise, providing a robust and manageable alternative for small
networks.
Encryption — Data encryption uses one of the following methods:
CCMP (AES) — AES-CCMP is used as the multicast encryption
cipher. AES-CCMP is the standard encryption cipher required for
WPA2. (This is the default setting.)
Auto: TKIP + CCMP (AES) — The encryption method used by the
client is discovered by the access point.
Key Method — Uses one of the following PSK methods:
Single PSK — Enables the entry of a single PSK key.
Key — WPA is used to encrypt data transmitted between
wireless clients and the VAP. WPA uses static shared keys (fixed-
length hexadecimal or alphanumeric strings) that are manually
distributed to all clients that want to use the network.
String length must be 8 to 63 ASCII characters (letters and
numbers). No special characters are allowed.
Multiple PSK —Enables the entry of multiple PSK keys. Up to 128
keys can be configured.
Multiple Keys — Enter multiple keys, one per line. Entering a
key with a specific MAC address limits the key for use by a
single client. Entering a key without a MAC address enables the
key to be used by all clients.
Multiple keys are supported for WPA-PSK, WPA2-PSK, and
WPA3 Personal Transition security.
Dynamic PSK — Enables the use of dynamic PSK keys that are
periodically generated and updated by a RADIUS authentication
server. The RADIUS server IP address, UDP port, and secret text
string must be specified. (See “RADIUS Settings” below for details.)
Dynamic keys are supported only for WPA2-PSK security.
To Next Page
Loading...
