40
Step Command Remarks
countermeasures are taken.
Configuring AES-CCMP cipher suite
Step Command Remarks
1. Enter system view.
system-view
N/A
2. Enter WLAN service
template view.
wlan service-template
service-template-number
crypto
N/A
3. Enable the AES-CCMP
cipher suite.
cipher-suite ccmp
By default, no cipher suite is
selected.
Configuring port security
The authentication type configuration includes the following options:
• PSK
• 802.1X
• MAC
• PSK and MAC
This document describes only common port security modes. For more information about other port
security modes, see Security Configuration Guide.
Before configuring port security, create the wireless port and enable port security.
Configuring PSK authentication
Step Command Remarks
1. Enter system view.
system-view
N/A
2. Enter WLAN-BSS interface
view.
interface wlan-bss
interface-number
N/A
3. Enable 802.11 key
negotiation.
port-security tx-key-type 11key
By default, 802.11 key negotiation
is not enabled.
4. Configure the pre-shared
key.
port-security preshared-key
{
pass-phrase
|
raw-key
}
[
cipher
|
simple
] key
By default, no pre-shared key is
configured.
5. Enable the PSK port security
mode.
port-security port-mode psk
N/A
Configuring 802.1X authentication
Step Command Remarks
1. Enter system view.
system-view
N/A
2. Enter WLAN-BSS interface
view.
interface wlan-bss
interface-number
N/A
3. Enable 802.11 key
negotiation.
port-security tx-key-type 11key
By default, 802.11 key negotiation
is not enabled.
4. Enable the 802.1X port
security mode.
port-security port-mode
userlogin-secure-ext
N/A
To Next Page
Loading...
Need help?
General
