300CHAPTER 9: MANAGED ACCESS POINT COMMANDS

set service-profileDisables or reenables 802.1X authentication of Wi-Fi Protected Access

auth-dot1x(WPA) clients by MAP radios, when the WPA information element (IE) is enabled in the service profile that is mapped to the radio profile that the radios are using.

Syntax set service-profile

name auth-dot1x {enable disable}

„name — Service profile name.

„enable — Enables 802.1X authentication of WPA clients.

„disable — Disables 802.1X authentication of WPA clients.

Defaults — When the WPA IE is enabled, 802.1X authentication of WPA clients is enabled by default. If the WPA IE is disabled, the auth-dot1xsetting has no effect.

Access — Enabled.

History —Introduced in MSS Version 3.0.

Usage — This command does not disable dynamic WEP for non-WPA clients. To disable dynamic WEP for non-WPA clients, enable the WPA IE (if not already enabled) and disable the 40-bit WEP and 104-bit WEP cipher suites in the WPA IE, if they are not already disabled.

To use 802.1X authentication for WPA clients, you also must enable the

WPA IE.

If you disable 802.1X authentication of WPA clients, the only method available for authenticating the clients is preshared key (PSK) authentication. To use this, you must enable PSK support and configure a passphrase or key.

Examples — The following command disables 802.1X authentication for

WPA clients that use service profile wpa_clients:

WX4400# set service-profile wpa_clients auth-dot1x disable success: change accepted.

See Also

„display service-profileon page 261

„set service-profileauth-pskon page 302

Page 300
Image 300
3Com 3CRWX440095A, 3CRWX120695A manual Wpa Ie, Syntax set service-profile Name auth-dot1x enable disable