Working With Dynamic PSKs
Dynamic PSKs (DPSKs) are unique per-shared keys assigned to a user or device to provide
secure wireless access, avoiding manual configuration and managing encryption keys.
DPSK is a form of PSK (static key) in a WPA2 WLAN and its purpose is to provide each Users
Device (UD) with a unique Dynamic PSK to associate to a WLAN without any modifications to
the WLAN configuration.e.g. a school administrator provides a time-limited DPSK for a students
UD so that the student can access the schools WLAN for the period their DPSK is valid. After
the validity period ends, the DPSK expires and the students UD can no longer access the schools
WLAN. Without the use of DPSKs the school administrator would have to change the default
static key to prevent the student from using the WLAN resources which would in turn impact all
other users of that WLAN.
Individual DPSK can be deleted in the event of a student leaving the school, or their device being
lost/stolen without impacting other users of the WLAN.
A “bound” DPSK is one which is assigned to the MAC address of a UD at the time of creation.
No other UD can utilise this DSPK.e.g. an administrator creates a DPSK entry “acegkmpr”
specifically for the UD MAC address 00:11:22:33:55:66.
An “unbound” DPSK is not assigned to a UD MAC during creation, but upon first use i.e. when
the UD is connected to the secure WLAN and the DPSK is entered as the WLAN security key.
Once a DPSK becomes assigned to a UD it becomes bound and no other UD can utilise it.e.g.
an administrator creates one unbound DPSK entry “zxvnbdfh”; the UD with a MAC address of
AA:BB:CC:DD:EE:FF uses this DPSK and it becomes bound to that UD.
The DPSK feature can be enabled on WPA2 Encrypted WLANs and the DPSK type (very secure
or keyboard-friendly), key length and validity period can then be specified. Once enabled on a
WLAN the administrator can auto-generate up to 100 unbound DPSK entries at a time through
the UI, or generate bound/unbound DPSK by importing a CSV file. To view the generated DPSK
for distribution the administrator must select the “Export CSV” UI option. The resultant CSV file
contains the generated DPSK and the respective UD MAC for bound DPSK. The administrator
then distributes the bound/unbound DPSK as required.
This section describes the following tasks:
Viewing Dynamic PSKs
Follow these steps to view the dynamic PSKs:
Click Configuration > Identity > Dynamic PSKConfiguration > AP Zone > AP Zone
List > {Zone Name} > Dynamic PSK.
The Dynamic PSK page appears listing the PSKs that were generated.
The following information about dynamic PSKs are available:
• User Name
• MAC Address
• WLAN (SSID)
• VLAN ID
• Created Date
SmartCell Gateway 200/Virtual SmartZone High-Scale for Release 3.4.1 Administrator Guide
97
Managing Ruckus Wireless AP Zones
Working With Dynamic PSKs
To Next Page
Loading...
Need help?
General
