Manuals / Cisco Systems / Computer Equipment / Network Router

Cisco Systems DL-2159-05 manual Setting Up Open or Shared Key Authentication

Models: DL-2159-05

1 332
Download 332 pages 33.19 Kb
Page 176
Image 176

Chapter 8 Security Setup

Setting Up Open or Shared Key Authentication

Follow these steps to enable broadcast key rotation:

Step 1 Follow the steps in the “Setting Up WEP” section on page 8-7to set up and enable WEP.

Step 2 Follow this link path to browse to the AP Radio Advanced page:

a.On the Summary Status page, click Setup.

b.On the Setup page, click Advanced in the AP Radio row under Network Ports for the internal radio or the radio module.

Step 3 On the AP Radio Advanced page, enter the rotation interval in seconds in the Broadcast WEP Key rotation interval entry field. If you enter 900, for example, the access point sends a new broadcast WEP key to all associated client devices every 15 minutes. To disable broadcast WEP key rotation, enter 0.

Note You must set the rotation interval on every access point using broadcast key rotation. You cannot enter the rotation interval on your RADIUS server.

Tip Use a short rotation interval if the traffic on your wireless network contains numerous broadcast or multicast packets.

Step 4 Click OK. Broadcast key rotation is enabled.

Setting Up Open or Shared Key Authentication

Cisco recommends Open authentication as preferable to Shared Key authentication. The challenge queries and responses used in Shared Key leave the access point particularly vulnerable to intruders.

Use the AP Radio Data Encryption page to select Open or Shared Key authentication. The internal radio and the radio module both have an AP Radio Data Encryption page. Both pages contain the same settings. Figure 8-6shows the AP Radio Data Encryption page for the internal radio.

Follow these steps to select Open or Shared Key authentication:

Step 1 Follow the instructions in the “Setting Up WEP” section on page 8-7to set up and enable WEP.

You must enable WEP to use shared key authentication, but you do not have to enable WEP to use open authentication. However, Cisco strongly recommends that you enable WEP on all wireless networks.

Step 2 Select Open (default) or Shared Key to set the authentications the access point recognizes. You can select all three authentication types.

Step 3 If you want to force all client devices to perform EAP authentication before joining the network, select the Require EAP check box under Open or Shared. Selecting the Require EAP check box also allows client devices using various types of EAP authentication, including EAP-TLS and EAP-MD5, to authenticate through the access point. To allow LEAP-enabled client devices to authenticate through the access point, you should also select Network-EAP. See the “Setting Up EAP Authentication” section on page 8-15for details on the Require EAP and Network-EAP settings.

Step 4 Click OK. You return automatically to the Security Setup page.

Cisco Aironet 1200 Series Access Point Software Configuration Guide

8-14

OL-2159-05

 

 

Page 175 Page 177
Page 176
Image 176
Cisco Systems DL-2159-05 manual Setting Up Open or Shared Key Authentication
Page 175 Page 177