will accept first proposed method that will be on the list
• eap-tls - Use TLS certificates for authentication
• passthrough - relay the authentication process to the RADIUS server (not used by the stations)
group-ciphers ( multiple choice: tkip | aes-ccm ) - a set of ciphers used to encrypt frames sent to all
wireless station (broadcast transfers) in the order of preference
• tkip - Temporal Key Integrity Protocol - encryption protocol, compatible with lagacy WEP
equipment, but enhanced to correct some of WEP flaws
• aes-ccm - more secure WPA encryption protocol, based on the reliable AES (Advanced
Encryption Standard). Networks free of WEP legacy should use only this
group-key-update ( time ; default: 5m ) - how often to update group key. This parameter is used
only if the wireless card is configured as an Access Point
mode ( none | static-keys-optional | static-keys-required | dynamic-keys ; default: none ) - security
mode:
• none - do not encrypt packets and do not accept encrypted packets
• static-keys-optional - if there is a static-sta-private-key set, use it. Otherwise, if the interface is
set in an AP mode, do not use encryption, if the the interface is in station mode, use encryption
if the static-transmit-key is set
• static-keys-required - encrypt all packets and accept only encrypted packets
• dynamic-keys - generate encryptioon keys dynamically
name ( name ) - descriptive name for the security profile
radius-mac-authentication ( no | yes ; default: no ) - whether to use Radius server for MAC
authentication
static-algo-0 ( none | 40bit-wep | 104bit-wep | aes-ccm | tkip ; default: none ) - which encryption
algorithm to use:
• none - do not use encryption and do not accept encrypted packets
• 40bit-wep - use the 40bit encryption (also known as 64bit-wep) and accept only these packets
• 104bit-wep - use the 104bit encryption (also known as 128bit-wep) and accept only these
packets
• aes-ccm - use the AES-CCM (Advanced Encryption Standard in Counter with CBC-MAC)
encryption algorithm and accept only these packets
• tkip - use the TKIP (Temporal Key Integrity Protocol) and accept only these packets
static-algo-1 ( none | 40bit-wep | 104bit-wep | aes-ccm | tkip ; default: none ) - which encryption
algorithm to use:
• none - do not use encryption and do not accept encrypted packets
• 40bit-wep - use the 40bit encryption (also known as 64bit-wep) and accept only these packets
• 104bit-wep - use the 104bit encryption (also known as 128bit-wep) and accept only these
packets
• aes-ccm - use the AES-CCM (Advanced Encryption Standard in Counter with CBC-MAC)
encryption algorithm and accept only these packets
• tkip - use the TKIP (Temporal Key Integrity Protocol) and accept only these packets
static-algo-2 ( none | 40bit-wep | 104bit-wep | aes-ccm | tkip ; default: none ) - which encryption
algorithm to use:
Page 272 of 695
Copyright 1999-2007, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
To Next Page
Loading...