After a security profile is configured, its default settings are:
l Open system authentication and empty key if WEP is used
l 802.1x+PEAP authentication and TKIP encryption if WPA1 is used
l 802.1x+PEAP authentication and CCMP encryption if WPA2 is used
l WAI authentication and WPI encryption if WAPI is used
Step 4 Configure security policies.
l WEP open system authentication
1. Run:
security-policy wep
The WEP security policy is configured.
2. Run:
wep authentication-method open-system [ data-encrypt ]
WEP open system authentication is configured.
l WEP shared key authentication
1. Run:
security-profile wep
The WEP security policy is configured.
2. Run:
wep authentication-method share-key
WEP shared key authentication is configured.
3. Run:
wep key { wep-40 | wep-104 } { pass-phrase | hex } key-id key-value
The WEP shared key is configured.
If WEP-40 is used, the WEP shared key is 10 hexadecimal characters or 5 ASCII
characters. If WEP-104 is used, the WEP shared key is 26 hexadecimal characters or
13 ASCII characters.
4. Run:
wep default-key key-id
The WEP key ID is set.
A maximum of four WEP keys can be configured, but only one WEP key is used in
authentication or encryption. This command specifies which key to use.
l WPA/WPA2 authentication
1. Run:
security-policy wpa
The WPA security policy is configured.
2. Run:
{ wpa | wpa2 } authentication-method dot1x { peap | tls } encryption-
method { tkip | ccmp }
The dot1x authentication and corresponding encryption mode are configured for the
WPA/WPA2 policy.
NOTE
If WPA/WPA2 dot1x authentication is configured, run the dot1x-authentication enable
command on a WLAN-BSS interface.
3. Run:
{ wpa | wpa2 } authentication-method psk { pass-phrase | hex } key
encryption-method { tkip | ccmp }
Huawei AR1200 Series Enterprise Routers
Configuration Guide - WLAN 1 WLAN Configuration
Issue 03 (2012-01-06) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
14
To Next Page
Loading...
