Wireless (for ISA550W and ISA570W only)
Configuring SSID Profiles
Cisco ISA500 Series Integrated Security Appliances Administration Guide 213
5
STEP 4 If you choose Op en as the security mode, no other options are configurable. This
mode means that any data transferred to and from the SSID is not encrypted. This
security mode can be useful during initial network configuration or for problem
solving, but it is not recommended for regular use on the internal network because
it is not secure.
WPA2 WPA2 provides the best security for wireless
transmissions. This method implements the security
standards specified in the final version of 802.11i. The
security appliance supports the following WPA2
security modes:
•WPA2-Personal: Always uses AES encryption
mechanism for data encryption.
•WPA2-Enterprise: Uses WPA2 with RADIUS
authentication. This mode always uses AES
encryption mechanism for data encryption and
requires the use of a RADIUS server to
authenticate users.
WPA + WPA2 Allows both WPA and WPA2 clients to connect
simultaneously. The SSID automatically chooses the
encryption algorithm used by each client device.
This se curity mode is a good ch oice to e nable a h igher
level of security while allowing access by devices that
might not support WPA2. The security appliance
supports the following WPA+WPA2 security modes:
•WPA/WPA2-Personal mixed: Supports the
transition from WPA-Personal to
WPA2-Personal. You can have client devices
that use either WPA-Personal or
WPA2-Personal.
•WPA/WPA2-Enterprise mixed: Supports the
transition from WPA-Enterprise to
WPA2-Enterprise. You can have client devices
that use either WPA-Enterprise or
WPA2-Enterprise.
RADIUS Uses RADIUS servers for client authentication and
dynamic WEP key generation for data encryption.
Security Mode D escription