HP Cloud Network Manager Software Configuring security settings for a Wlan Ssid profile, Key

Page 27

Configuring security settings for a WLAN SSID profile

This section describes the procedure for configuring security settings for employee and voice network only. For information on guest network configuration, see Captive portal for guest access on page 56 .

If you are creating a new SSID profile, configure the WLAN and VLAN settings before defining security settings. For more information, see Configuring WLAN settings on page 23 and Configuring VLAN settings for a WLAN SSID profile on page 26.

Configuring security settings for an employee or voice network

To configure security settings for an employee or voice network:

1.In Security, specify any of the following for SECURITY LEVEL:

Enterprise —On selecting enterprise security level, the authentication options applicable to the enterprise network is displayed.

Personal — On selecting personal security level, the authentication options applicable to the personalized network is displayed.

Open — On selecting Open security level, the authentication options applicable to an open network is displayed:

The default security setting for a network profile is Personal.

2. Based on the security level specified, specify the following parameters:

Table 10: Configuration parameters for WLAN security settings

Data pane item

Description

KEY

For Enterprise security level, select any of the following options from

MANAGEMENT

KEY MANAGEMENT:

 

WPA-2 Enterprise

 

Both (WPA-2 & WPA)

 

WPA Enterprise

 

Dynamic WEP with 802.1X — If you do not want to use a session key from the

 

 

RADIUS Server to derive pairwise unicast keys, set SESSION KEY FOR

 

 

LEAP to Enabled. This is required for old printers that use dynamic WEP

 

 

through Lightweight Extensible Authentication Protocol (LEAP)

 

 

authentication. The SESSION KEY FOR LEAP feature is Disabled by default.

 

NOTE: When WPA-2 Enterprise and Both (WPA2-WPA) encryption types are

 

selected and if 802.1x authentication method is configured, the

 

OPPURTUNISTIC KEY CACHING (OKC) is enabled by default. If OKC is

 

enabled, a cached Pairwise Master Key (PMK) is used when the client roams to

 

a new AP. This allows faster roaming of clients without the need for a complete

 

802.1x authentication. OKC roaming can be configured only for the Enterprise

 

security level.

 

 

 

For Personal security level, select an encryption key from KEY MANAGEMENT.

For WPA-2 Personal, WPA Personal, and Both (WPA-2&WPA) keys, specify the following parameters:

PASSPHRASE FORMAT: Select a passphrase.format. The options are available are 8-63 alphanumeric characters and 64 hexadecimal characters.

Enter a passphrase in PASSPHRASE and reconfirm.

For STATIC WEP, specify the following parameters:

Select an appropriate value for WEP KEY SIZE from the WEP key size. You can specify 64-bit or 128-bit .

27 Wireless configuration

HP Cloud Network Manager User Guide

Page 26 Page 28
Image 27
Page 26 Page 28
Contents HP Cloud Network Manager User Guide Acknowledgments Document 5998-5742, edition 1 JulyContents Wireless configuration Advanced configuration tasks Captive portal for guest access Reports Maintenance Conventions About this guideIntended audience Related documentsAbout Cloud Network Manager Cloud Network Manager overviewSupported APs Cloud Network Manager UI Activating your Cloud Network Manager subscriptions Cloud Network Manager user interfaceActivating your HP Cloud Network Manager account Search Tabs Notifications Help Data pane User interfaceTabs SearchNotifications HelpData pane Feedback SupportMonitoring OverviewData pane item Description AP details Access pointsData pane item ClientsRemote Console System pane Section DescriptionEvent log Setting notification alerts Importing existing configuration from AP Wireless configurationInitial AP configuration Wireless network profilesUnderstanding wireless network profiles Configuring Wlan settingsNetwork types Voice Guest Utilization Content FilteDisable Ssid DMO ChannelLocal Probe Configuring Vlan settings for a Wlan Ssid profileCan be Used Without Uplink MAX ClientsConfiguring security settings for a Wlan Ssid profile KEYManagement KEY Management Server AuthenticatioRoaming TerminationConfiguring access rules for a Wlan Ssid profile General configuration tasks Editing a Wlan Ssid profileDeleting a Wlan Ssid profile Modifying the AP name Basic configuration tasksConfiguring an NTP server Configuring VC IP addressConfiguring time zone Configuring a preferred bandConfiguring LED display Additional configuration tasksConfiguring VC Vlan Configuring auto join modeEnabling dynamic CPU management Advanced configuration tasksDisabling inter-user bridging Preventing local routing between clientsCustomizing AP parameters Configuring radio profiles for an APConfiguring Arrm assigned radio profiles for an AP Configuring radio profiles manually for APObtaining IP address Configuring uplink Vlan for an APSelect Administrator assigned in 2.4 GHz and 5 GHz Band Mode DescriptionArrm overview Advanced radio resource managementAirtime fairness mode HP MotionAwareAP control Configuring Arrm on an AP Monitoring the network with ArrmArrm metrics MA Neighbor SLB ModeMotion Aware CalculatingChannels PowerCustomize ValidIntrusion detection system Configuring radio settings for an APOS fingerprinting Detecting and classifying rogue APsDetection level Detection policy Off Low Medium HighSettings field Off Low HighProtection level Protection policy Authentication Understanding authentication methodsContainment methods Wireless configuration Internal Radius server Supported authentication serversRadius server authentication with VSA External Radius serverConfiguring authentication servers Authentication termination on APConfiguring an external server for authentication Retry Count Shared KEY TimeoutShared KEY RetypeClick Save Server Configuring dynamic Radius proxy parametersEnabling dynamic Radius proxy Configuring 802.1X authentication for a network profileConfiguring MAC authentication with 802.1X authentication Configuring MAC authentication for a network profileConfiguring WISPr authentication Blacklisting clients Blacklisting clients manuallyBlacklisting users dynamically Session firewall based blacklisting Captive portal for guest accessConfiguring blacklist duration Understanding captive portalSelect the Primary Usage as Guest Configuring a Wlan Ssid for guest accessTypes of captive portal Walled gardenDynamic Multicast Content FilteringInactivity Timeout Multicast TransmissionCan be Used Without Uplink MAX Clients ThresholdLocal Probe Request Configuring internal captive portal for guest network Creating a captive portal profile Configuring external captive portal for a guest networkSelect any one of the following types of authentication External captive portal profilesFailure URLUSE Https Captive PortalType Configuring captive portal roles for an SsidRule Type SplashConfiguring walled garden access InternalExternal Configuring local and local, L3 Dhcp scopes Dhcp configurationDisabling captive portal authentication Configuring Dhcp scopesExcluded Address VlanNetwork NET MaskSelect Wireless Configuration Services Rtls ServicesConfiguring an AP for Rtls support Configuring Dhcp server for client IP assignmentConfiguring OpenDNS credentials Bonjour support configurationBonjour support overview Bonjour support with Cloud Network Manager Bonjour support solutionBonjour support features Bonjour support servicesSelect Wireless Configuration Services Bonjour Support Configuring an AP for PAN integration Integrating an AP with Palo Alto Networks firewallIntegration with Cloud Network Manager Uplink interfaces Uplink configurationWi-Fi uplink Configuring a Wi-Fi uplink profileEthernet uplink Configuring PPPoE uplink profileUplink preferences and switching Setting an uplink priorityEnforcing uplinks Layer-3 mobility overview Switching uplinks based on internet availabilityFrom PRE-EMPTION, select Enabled Mobility and client managementConfiguring L3-mobility Snmp and logging Configuring L3 mobility domainConfiguring enterprise domains Enterprise domainCreating community strings for SNMPv1 and SNMPv2 Configuring SnmpConfiguring community string for Snmp Snmp parameters for APConfiguring a syslog server Configuring Snmp trapsCreating community strings for SNMPv3 Configuring Tftp dump server Select Wireless Configuration System LoggingLogging level Description Creating a report ReportsDeleting a report Maintenance FirmwareSubscription keys User management Device managementTerminology Acronyms and abbreviationsAbbreviation Expansion Glossary TermDefinition Term Definition DSTEAP POE Through a wireless connection

Cloud Network Manager Software specifications

HP Cloud Network Manager is a robust software solution designed to simplify and enhance the management of network infrastructure in cloud environments. As organizations increasingly shift toward cloud computing, they require comprehensive tools to oversee complex network deployments. HP Cloud Network Manager rises to this challenge, offering a powerful suite of features aimed at optimizing performance, automating tasks, and ensuring reliable connectivity.

One of the main features of HP Cloud Network Manager is its intuitive dashboard, which provides users with real-time insights into network operations. This centralized interface allows administrators to monitor the status of various components, identify potential issues, and respond swiftly to anomalies. With advanced analytics capabilities, the software empowers users to make data-driven decisions that enhance network efficiency.

Another critical feature of this software is its automation capabilities. HP Cloud Network Manager simplifies routine network management tasks, such as configuration, provisioning, and software updates, allowing IT teams to focus on strategic initiatives rather than mundane maintenance. Automation reduces the risk of human error and accelerates deployment times, significantly increasing operational agility.

The software also supports multi-cloud environments, enabling organizations to manage their network resources across different cloud platforms seamlessly. This flexibility is essential for businesses that utilize various cloud providers and wish to maintain a unified network strategy. Coupled with its compatibility with open standards, HP Cloud Network Manager facilitates integration with existing IT ecosystems, ensuring a smooth transition to advanced cloud solutions.

Security is a top priority in today's digital landscape, and HP Cloud Network Manager includes integrated security features to protect network assets. It provides visibility into traffic patterns, helping to detect and mitigate potential threats before they become significant issues. Enhanced security protocols ensure that sensitive data remains protected during transit and at rest, aligning with compliance requirements.

Finally, HP Cloud Network Manager is built on cutting-edge technologies, including artificial intelligence and machine learning, which enable proactive network management. These technologies predict network behavior, assisting administrators in optimizing resources and anticipating potential challenges. As a result, organizations can achieve enhanced reliability and performance from their network infrastructure.

In summary, HP Cloud Network Manager is an essential tool for businesses looking to improve their cloud network management capabilities. With its powerful features, supportive technologies, and commitment to security, it stands out as a reliable solution for navigating the complexities of modern network environments.
Top Page Image Contents