Security

 

 

 

 

Client Security

Configuration Summarya

MAC

RADIUS

Combination

 

Authenticationb

Server

802.1x WPA-WPA2

Authentication: WPA-WPA2-mixed

Local or Disabled

Yes

Mixed Mode

Encryption: Enable

 

 

 

WPA Configuration: Required

 

 

 

Cipher Suite: TKIP

 

 

 

802.1x: Required

 

 

 

Set 802.1x key refresh and re authentication rates

 

 

WPA-WPA2 Mixed

Authentication: WPA-WPA2-PSK-mixed

Local or Disabled

No

Mode Pre-Shared Key

Encryption: Enable

 

 

 

WPA Configuration: Required

 

 

 

Cipher Suite: TKIP

 

 

 

802.1x: Disable

 

 

 

WPA Pre-shared Key Type: Hexadecimal or

 

 

 

Alphanumeric

 

 

 

Enter a WPA Pre-shared key

 

 

 

 

 

 

aThe configuration summary does not include the set up for MAC authentication (see page 5-10) or RADIUS server (see page 5-8).

bThe configuration of RADIUS MAC authentication together with 802.1x WPA or WPA Pre-shared Key is not supported.

cRADIUS server required only when RADIUS MAC authentication is configured.

NOTE: If you choose to configure RADIUS MAC authentication together with 802.1X, the RADIUS MAC address authentication occurs prior to 802.1X authentication. Only when RADIUS MAC authentication succeeds is 802.1X authentication performed. When RADIUS MAC authentication fails, 802.1X authentication is not performed.

WIRED EQUIVALENT PRIVACY (WEP)

WEP provides a basic level of security, preventing unauthorized access to the network, and encrypting data transmitted between wireless clients and the access point. WEP uses static shared keys (fixed-length hexadecimal or alphanumeric strings) that are manually distributed to all clients that want to use the network.

WEP is the security protocol initially specified in the IEEE 802.11 standard for wireless communications. Unfortunately, WEP has been found to be seriously flawed and cannot be recommended for a high level of network security. For more robust wireless security, the access point provides Wi-Fi Protected Access (WPA) for improved data encryption and user authentication.

Setting up shared keys enables the basic IEEE 802.11 Wired Equivalent Privacy (WEP) on the access point to prevent unauthorized access to the network.

If you choose to use WEP shared keys instead of an open system, be sure to define at least one static WEP key for user authentication and data encryption. Also, be sure that the WEP shared keys are the same for each client in the wireless network.

5-53

Page 101
Image 101
3Com WL-575, 3CRWEASYA73 manual Wired Equivalent Privacy WEP, Radius