Chapter 8 Security Setup

Setting Up WEP

Note Use this page to configure the radio unless you have enabled VLANs. If VLANs are enabled, you must set the radio data encryption for each enabled VLAN through the VLAN Setup page.

Follow these steps to set up WEP keys and enable WEP:

Step 1 Follow the link path to the AP Radio Data Encryption page.

Step 2 Before you can enable WEP, you must enter a WEP key in at least one of the Encryption Key fields.

Note If you enable broadcast key rotation and EAP authentication to provide client devices with dynamic WEP keys, you can enable WEP without entering the keys.

For 40-bit encryption, enter 10 hexadecimal digits; for 128-bit encryption, enter 26 hexadecimal digits. Hexadecimal digits include the numbers 0 through 9 and the letters A through F. Your 40-bit WEP keys can contain any combination of 10 of these characters; your 128-bit WEP keys can contain any combination of 26 of these characters. The letters are not case-sensitive.

You can enter up to four WEP keys. The characters you type for a key’s contents appear only when you type them. After you click Apply or OK, you cannot view the key’s contents.

Note If you enable EAP authentication, you must select key 1 as the transmit key. The access point uses the WEP key you enter in key slot 1 to encrypt multicast data signals it sends to EAP-enabled client devices. If you enable broadcast key rotation, however, you can select key 1 or key 2 as the transmit key or you can enable WEP without entering any keys.

Step 3 Use the Key Size pull-down menu to select 40-bitor 128-bitencryption for each key. The not set option clears the key. You can disable WEP altogether by selecting not set for each key or by selecting No Encryption in Step 5.

Step 4 Select one of the keys as the transmit key. If you select Network-EAP as the authentication type, select key 1 as the transmit key.

Note Client devices that do not use EAP to authenticate to the access point must contain the access point’s transmit key in the same key slot in the client devices’ WEP key lists. However, the key does not have to be selected as the transmit key in the client devices’ WEP key lists.

Table 8-1shows an example WEP key setup that would work for the access point and an associated device:

Table 8-1 WEP Key Setup Example

Key

Access Point

Associated Device

 

 

 

 

Slot

Transmit?

Key Contents

Transmit?

Key Contents

 

 

 

 

 

1

x

12345678901234567890abcdef

12345678901234567890abcdef

 

 

 

 

 

 

 

2

09876543210987654321fedcba

x

09876543210987654321fedcba

 

 

 

 

 

 

 

Cisco Aironet 1200 Series Access Point Software Configuration Guide

8-8

OL-2159-05

 

 

Page 170
Image 170
Cisco Systems DL-2159-05 manual Key Access Point Associated Device, Transmit? Key Contents