EasyManua.ls Logo

Huawei AR1200 Series - Page 22

Huawei AR1200 Series
58 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
The shared key authentication and corresponding encryption mode are configured for
the WPA/WPA2 policy.
l WAPI authentication
1. Run:
security-policy wapi
The WAPI security policy is configured.
2. Run:
wapi authentication-method { certificate | psk { pass-phrase | hex } key }
The authentication mode is set for the WAPI security policy.
WAPI supports two authentication modes: certificate authentication and pre-shared
key authentication. When pre-shared key authentication is used, the shared key must
be configured.
3. Run:
wapi import certificate { ap | asu | issuer } file-name file_name
The AP certificate file, certificate of the AP certificate issuer, and ASU certificate file
are imported.
4. Run:
wapi import private-key file-name file_name
The AP private key file is imported.
5. Run:
wapi asu ip ip-address
The ASU server's IP address is configured.
6. (Optional) Run the following commands to modify WAPI parameters:
– Run:
wapi { bk-threshold bk-threshold | bk-update-interval bk-interval }
The interval for updating a base key (BK) and the BK lifetime percentage are set.
By default, the interval for updating a BK is 43200s, and the BK lifetime percentage
is 70%.
– Run:
wapi { msk-update-interval msk-interval | msk-update-packet msk-packet
| msk-retrans-count msk-count }
The interval for updating an MBMS service key (MSK), the number of packets
that will trigger MSK update, and the number of retransmissions of MSK
negotiation packets are set.
By default, the interval for updating an MSK is 86400s; the number of packets that
will trigger MSK update is 10000; the number of retransmissions of MSK
negotiation packets is 3.
– Run:
wapi cert-retrans-count cert-count
The number of retransmissions of certificate authentication packets is set.
By default, the number of retransmissions is 3.
– Run:
wapi { usk | msk } key-update { disable | time-based | packet-based |
timepacket-based }
The unicast session key (USK) or MSK update mode is set.
By default, USKs and MSKs are updated on the basis of time.
----End
Huawei AR1200 Series Enterprise Routers
Configuration Guide - WLAN 1 WLAN Configuration
Issue 03 (2012-01-06) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
15

Table of Contents

Other manuals for Huawei AR1200 Series

Preview: User Configuration Guide
User Configuration Guide232 pages
Preview: Configuration Guide
Configuration Guide392 pages
Preview: Hardware Description
Hardware Description218 pages
Preview: Usage Guide
Usage Guide69 pages
Preview: Configuration Guide - Voice
Configuration Guide - Voice65 pages
Preview: Compliance And Safety Manual
Compliance And Safety Manual31 pages
Preview: Configuration Guide - Mpls
Configuration Guide - Mpls132 pages
Preview: Brochure
Brochure12 pages

Related product manuals