Manuals / 3Com / Computer Equipment / Network Router

3Com WL-575, 3CRWEASYA73 manual MAC Radius

Models: WL-575 3CRWEASYA73

1 293
Download 293 pages 26.87 Kb
Page 99
Image 99

 

 

Security

 

 

 

Security

Client Support

Implementation Considerations

Mechanism

 

 

 

 

 

WPA over 802.1X

Requires WPA-enabled system

• Provides robust security in WPA-only mode

Mode

and network card driver

(i.e., WPA clients only)

 

(native support provided in

• Offers support for legacy WEP clients, but with

 

Windows XP)

increased security risk (i.e., WEP authentication

 

 

keys disabled)

 

 

• Requires configured RADIUS server

 

 

• 802.1X EAP type may require management of

 

 

digital certificates for clients and server

WPA PSK Mode

Requires WPA-enabled system

• Provides good security in small networks

 

and network card driver

• Requires manual management of pre-shared key

 

(native support provided in

 

 

Windows XP)

 

WPA2 with

Requires WPA-enabled system

802.1X

and network card driver (native

 

support provided in Windows

 

XP)

WPA2 PSK Mode Requires WPA-enabled system and network card driver (native support provided in Windows XP)

Provides the strongest security in WPA2-only mode

Provides robust security in mixed mode for WPA and WPA2 clients

Offers fast roaming for time-sensitive client applications

Requires configured RADIUS server

802.1X EAP type may require management of digital certificates for clients and server

Clients may require hardware upgrade to be WPA2 compliant

Provides robust security in small networks

Requires manual management of pre-shared key

Clients may require hardware upgrade to be WPA2 compliant

NOTE: You must enable data encryption through the web in order to enable all types of encryption (WEP, TKIP, or AES) in the access point.

The access point can simultaneously support clients using various different security mechanisms. The configuration for these security combinations are outlined in the following table. Note that MAC address authentication can be configured independently to work with all security mechanisms and is indicated separately in the table. Required RADIUS server support is also listed.

Table 5 Security Considerations

Client Security

Configuration Summarya

MAC

RADIUS

Combination

 

Authenticationb

Server

No encryption and no

Authentication: Open System

Local, RADIUS, or

Yes3

authentication

Encryption: Disable

Disabled

 

 

802.1x: Disable

 

 

Static WEP only (with

Enter 1 to 4 WEP keys

Local, RADIUS, or

Yesc

or without shared

Select a WEP transmit key for the interface

Disabled

 

key authentication)

Authentication: Shared Key or Open System

 

 

 

Encryption: Enable

 

 

 

802.1x: Disable

 

 

5-51

Page 98 Page 100
Page 99
Image 99
3Com WL-575, 3CRWEASYA73 manual MAC Radius
Page 98 Page 100