Default Open | Cisco Systems CB21AG specs

Chapter 5 Configuring the Client Adapter

Setting Advanced Parameters

Table 5-3	Profile Management Advanced Parameters (continued)

Parameter		Description

802.11 Authentication Mode		Specifies how your client adapter attempts to authenticate to an access
		point. Open and shared authentication do not rely on a RADIUS server
		on your network.
		Options: Auto, Open, or Shared
		Default: Open

		802.11 Authentication Mode	Description

		Auto	Causes the client adapter to attempt to
			authenticate using shared authentication.
			If it fails, the client adapter then attempts
			to authenticate using open authentication.

		Open	Enables your client adapter, regardless of
			its WEP settings, to authenticate and
			attempt to communicate with an access
			point. However, communication can occur
			only if the adapter’s WEP key matches that
			of the access point.

		Shared	Enables your client adapter to authenticate
			and communicate only with access points
			that have the same WEP key.
			During shared key authentication, the
			access point sends an unencrypted
			challenge packet to the client adapter,
			which encrypts the packet and sends it
			back to the access point. The access point
			attempts to decrypt the encrypted packet
			and sends an authentication response
			packet indicating the success or failure of
			the decryption back to the client adapter. If
			the packet is successfully encrypted/
			decrypted, the user is considered to be
			authenticated.

		Note Cisco recommends that Auto and Shared not be used because
		they present a security risk.
		Note Your client adapter’s 802.11 authentication mode setting must
		match that of the access points with which it is to communicate.
		Otherwise, your client adapter may not be able to authenticate
		to them.
		Note If this profile is configured for use in an ad hoc network or is
		not configured to use static WEP, this parameter is unavailable,
		and Open authentication is used.

Cisco Aironet 802.11a/b/g Wireless LAN Client Adapters (CB21AG and PI21AG) Installation and Configuration Guide

5-12	OL-4211-03

Image 78

Cisco Systems CB21AG manual Default Open

Contents

Corporate Headquarters Customer Order Number Text Part Number OL-4211-03 Copyright 2005 Cisco Systems, Inc All rights reserved N T E N T S Iii Assembling the Antenna Overview Pop-Up Menu Help Exit Select Profile Vii Antenna Installation Warning B-3 Viii WPA OL-4211-03 Preface Following topics are covered in this section Organization AudiencePurpose Xii Conventions Xiii Xiv Cisco.com Related PublicationsObtaining Documentation Documentation DVD Documentation Feedback Cisco Product Security OverviewOrdering Documentation Xvi Cisco Technical Support Website Reporting Security Problems in Cisco ProductsObtaining Technical Assistance An emergency, you can also reach Psirt by telephone 877 408 Submitting a Service Request Definitions of Service Request SeverityXviii Obtaining Additional Publications and Information Xix OL-4211-03 Product Overview Client Adapter Model Number Description Introduction to the Client AdaptersTerminology AIR-CB21AG Radio Antenna Hardware ComponentsRadio LEDs Software Components DriverClient Utilities Network Configurations Using Client Adapters Ad Hoc Wireless LAN Access Point Root Unit Wired LAN Preparing for Installation Safety information FCC Safety Compliance StatementSafety Guidelines Package Contents Unpacking the Client Adapter System Requirements Site Requirements For Infrastructure DevicesFor Client Devices OL-4211-03 Installing the Client Adapter Inserting a Client Adapter Inserting a PC-Cardbus Card Inserting a PCI Card Changing the BracketBracket screws Inserting the Card Assembling the Antenna Inserting a PCI Card into a PC Mounting the Antenna Inserting the Antenna into Its Base Bottom of Antenna Base Mounting the Antenna Installing the Client Adapter Software Preparing Setup Window Click Next. The Setup Type window appears see Figure Cisco Aironet Installation Program Window 10 Setup Type Window 11 Install Cisco Aironet Site Survey Utility Window 12 Choose Destination Location Window 13 Select Program Folder Window 14 Important Please Read! Window Feature 15 Choose Configuration Tool Window Security Static WEP Yes Leap or EAP-FAST authenticationWith dynamic WEP EAP-TLS or Peap authentication Yes Receive Click Properties Installing a Microsoft Hot Fix for Group Policy Delay Page OL-4211-03 Using the Profile Manager Overview of Profile Manager Opening Profile Manager SSID2 Field DescriptionSSID1 SSID3 Creating a New Profile Available Infrastructure and Ad Hoc Networks Window SNR Profile Management General Window Including a Profile in Auto Profile Selection Auto Profile Selection Management Window OL-4211-03 Selecting the Active Profile Editing a Profile Modifying a ProfileImporting and Exporting Profiles Deleting a Profile Importing a Profile Exporting a Profile Export Profile Window Configuring the Client Adapter Overview Parameter Category Number Setting General Parameters Parameter Description Client adapter to roam to that network without having to be ReconfiguredAuto profile selection or configured for use in an ad hoc Auto profile selection Setting Advanced Parameters Profile Management Advanced Window Radio Band Transmit Power Level Profile Management Advanced Parameters Network Type Description Parameter Description Parameter Description Default Open Setting Security Parameters Preferred Access Points Window Overview of Security Features Profile Management Security Window Static WEP Keys EAP with Dynamic WEP Keys Configuring the Client Adapter Setting Security Parameters LEAP, EAP-FAST, EAP-TLS, Peap EAP-GTC, or Peap EAP-MSCHAP V2, WPA and WPA2 Cckm Fast Secure Roaming Reporting Access Points that Fail Leap Authentication Security Feature Client Setting Access Point Setting Synchronizing Security FeaturesAdditional WEP Key Security Features Ssid WPA Security Feature Client Setting Access Point Setting WPA/WPA2/CCKM LEAP, EAP-FAST, EAP-TLSOr later, choose a cipher suite that is MIC Peap EAP-MSCHAP Enabling Static WEPTkip Interval to any value other than Configuring the Client Adapter Setting Security Parameters Enabling WPA/WPA2 Passphrase Define WPA/WPA2 Pre-Shared Key Window Enabling Leap Leap Settings Window Configuring the Client Adapter Setting Security Parameters Configuring the Client Adapter Setting Security Parameters Enabling EAP-FAST EAP-FAST Settings Window Configuring the Client Adapter Setting Security Parameters Click Select More Select EAP-FAST PAC Window 10 Import EAP-FAST PAC File Window Configuring the Client Adapter Setting Security Parameters Deleting a Manually Provisioned PAC File Enabling EAP-TLS or Peap Enabling EAP-TLS 12 Define Certificate Window Configuring the Client Adapter Setting Security Parameters Enabling Peap EAP-GTC 13 Define Peap EAP-GTC Configuration Window 14 Configuration Settings Window Configuring the Client Adapter Setting Security Parameters 15 Define Peap EAP-MSCHAP V2 Configuration Window Enabling Peap EAP-MSCHAP 16 Configuration Settings Window Configuring the Client Adapter Setting Security Parameters Configuring the Client Adapter Setting Security Parameters Configuring the Client Adapter Setting Security Parameters Enabling Wi-Fi Multimedia Disabling Static WEP, WPA/WPA2 Passphrase, or EAPEnabling the QoS Packet Scheduler on Windows 17 Wireless Cisco Connection Properties Window 18 Select Network Component Type Window Enabling the QoS Packet Scheduler on Windows XP Click Control Panel Double-clickNetwork Connections Setting Roaming Parameters in the Windows Control Panel Follow these steps to access the roaming parameters Wireless Mode Using EAP Authentication Using Leap or EAP-FAST Leap or EAP-FAST Authentication Status Window After Profile Activation or Card Insertion Stage Explanation After a Reboot or Logon After Your EAP-FAST Password Expires Using Leap or EAP-FAST with an Automatically Prompted Login Enter Wireless Network Password Window After Your EAP-FAST Password Expires Using Leap or EAP-FAST with a Manually Prompted Login After Profile Activation After a Reboot, Logon, or Card Insertion Action Drop-Down Menu After Your EAP-FAST Password Expires Using Leap or EAP-FAST with a Saved Username and Password Using EAP-TLS 10 Please Change Password Window Using Peap EAP-GTC Windows NT or 2000 Domain Databases or Ldap Databases OnlyOTP Databases Only Using Peap EAP-MSCHAP Restarting the Authentication Process OL-4211-03 Viewing Status and Statistics Status Statistics Overview of ADU Status and Statistics ToolsTool Number Displays the signal strength Signal-to-noise ratio as a percentage Viewing the Current Status of Your Client Adapter 3interprets each element of the Current Status window Status Description Status Description Details on these server-based authentication types 4interprets each element of the Advanced Status window Michael MIC is enabled and is being used with WPA and Tkip None MIC is disabledMIC is enabled and is being used with MMH WMM Status Description Status Description Cisco Aironet Desktop Utility Diagnostics Window Viewing Statistics for Your Client Adapter Statistic Description Advanced Statistics Window 6interprets each element of the Advanced Statistics window Integrity check MIC value when Ckip was being used Ckip MIC OKPoint OL-4211-03 Using the Aironet System Tray Utility Astu Astu Icon Infrastructure mode or another client in ad hoc modeOverview of Astu Icon Description Tool Tip Window Status Element Description Connection Status Description Help This option enables you to access the online helpPop-Up Menu Following sections describe each Astu pop-up menu option Open Aironet Desktop Utility TroubleshootingExit Preferences Enable/Disable Radio Manual Login ReauthenticateSelect Profile Show Connection Status Connection Status Window Connection Status Window Elements Ssid OL-4211-03 Routine Procedures Removing a Client Adapter Removing a PC-Cardbus CardRemoving a PCI Card Client Adapter Software Procedures Upgrading the Client Adapter Software Previous Installation Detected Window Choose Update the previous installation and click Next Uninstalling the Client Adapter Software Choose Uninstall the previous installation and click Next ADU Procedures Opening ADUExiting ADU Finding the Version of ADU Viewing Client Adapter Information Refer to for instructions on using Astu Astu ProceduresAccessing Online Help Enabling or Disabling Your Client Adapter’s Radio OL-4211-03 Troubleshooting 10-1 Status LED green Activity LED amber Condition Accessing the Latest Troubleshooting InformationInterpreting the Indicator LEDs 10-2 Troubleshooting Information Number Troubleshooting the Client AdapterUsing the Troubleshooting Utility Diagnosing Your Client Adapter’s Operation Troubleshooting Utility Window 10-4 Troubleshooting Utility Window with Test Results 10-5 Troubleshooting Utility Window Detailed Report 10-6 Saving the Detailed Report to a Text File 10-7 Client Adapter Recognition Problems Disabling the Microsoft 802.1X Supplicant Windows 2000 Only10-8 Resolving Resource Conflicts in Windows Reboot your computerResolving Resource Conflicts 10-9 Problems Associating to an Access Point Resolving Resource Conflicts in Windows XP10-10 Parameters Missing from Profile Management Windows Problems Connecting to the NetworkPrioritizing Network Connections 10-11 Error Messages 10-12 10-13 10-14 10-15 10-16 10-17 10-18 10-19 10-20 10-21 10-22 10-23 10-24 Technical Specifications ESD Physical SpecificationsRadio Specifications KV human body model Appendix a Technical Specifications DBm @ 24 Mbps Receiver sensitivity 802.11aDBm @ 6, 9, 12, and 18 Mbps DBm @ 36 Mbps Indoor typical Outdoor typical Power Specifications Safety and Regulatory Compliance Specifications Translated Safety Warnings Explosive Device Proximity Warning Antenna Installation Warning Appendix B Translated Safety Warnings Appendix B Translated Safety Warnings Appendix B Translated Safety Warnings Declarations of Conformity and Regulatory Information Models AIR-CB21AG-A-K9, AIR-PI21AG-A-K9 USA Department of Communications Canada Canadian Compliance Statement OL-4211-03 Cisco Aironet CB21AG Wireless LAN Client Adapter Declaration of Conformity Statement Cisco Aironet PI21AG Wireless LAN Client Adapter Declaration of Conformity for RF Exposure Japanese TranslationEnglish Translation English Translation 5-GHz Client AdaptersChinese Translation Communication ACT GHz Client Adapters This equipment is limited for indoor use OL-4211-03 Channels, Power Levels, and Antenna Gains Channels Ieee 802.11aRegulatory Domains Ieee 802.11b/g Data Rate Maximum Power Levels and Antenna GainsIeee 802.11b With 1-dBi Antenna Gain Ieee 802.11g Mbps 31.6 OL-4211-03 P E N D I X E Overview EAP with Dynamic WEP Keys WPA Configuring the Client Adapter Configuring the Client Adapter Page Configuring the Client Adapter Page Enabling EAP-TLS Authentication For EAP type, choose Smart Card or other Certificate Configuring the Client Adapter Enabling Peap Authentication Figure E-6 Protected EAP Properties Window Figure E-7 EAP MSCHAPv2 Properties Window Figure E-8 Peap Properties Window Figure E-9 Generic Token Card Properties Window Associating to an Access Point Using Windows XP Figure E-10 Wireless Network Connection Status Window Performing a Site Survey Guidelines Additional Information Opening the Site Survey Utility Selecting the Client Adapter Using the Associated AP Status Tab Specifying Display Units Viewing the Access Point’s Status Table F-1 Site Survey Utility Associated AP Status Description Using the AP Scan List Tab Viewing the AP Scan List Figure F-5 Site Survey Utility AP Scan List Rssi Pausing the AP Scan List CCXValue 1, 2, 3, or Access point’s wireless network Viewing AP DetailsDetailed Information Parameter Description Rssi Generating an AP Scan Log File Figure F-7 Site Survey Utility Log File Finding the Version of the Site Survey Utility Accessing Online HelpUninstalling the Site Survey Utility Exiting the Site Survey UtilityPage Standard Wireless network composed of stations without access pointsStations Set of characters that contains both letters and numbers GL-2 Setting must be within the range of 64 to 2312 bytes GL-3 Ethernet 802.3 and wireless LAN 802.11 specifications GL-4 GL-5 GL-6 802.1X for authenticated key management Computing device with an installed client adapterProtection and 802.1X for authenticated key management GL-7 GL-8 Authentication Mode parameter Selecting in ADUIN-1 Selecting the active profile Pausing ViewingADU IN-2 Astu CAMIN-3 FCC C-2 ADU Windows XPData encryption ADU Site survey utility IN-4 IN-5 ACK CTS CRCFCC RTS IN-7 Status With Leap Modify button Disabling EnablingMMH MIC IN-8 IN-9 IN-10 IN-11 IN-12 Regulatory compliance Safety Spread spectrum Setting Viewing ADUIN-13 With test results Third-party tool, enabling in Install WizardInitial window IN-14 Security features IN-15 IN-16