11-10
Cisco IOS Software Configuration Guide for Cisco Aironet Access Points
OL-30644-01
Chapter11 Configuring Authentication Types
Configuring Authentication Types
Step3 authentication open
[mac-address list-name [alternate]]
[[optional] eap list-name]
(Optional) Set the authentication type to open for this SSID.
Open authentication allows any device to authenticate and then
attempt to communicate with the access point.
(Optional) Set the SSID’s authentication type to open with
MAC address authentication. The access point forces all
client devices to perform MAC-address authentication
before they are allowed to join the network. For list-name,
specify the authentication method list.
Use the alternate keyword to allow client devices to join
the network using either MAC or EAP authentication;
clients that successfully complete either authentication are
allowed to join the network.
(Optional) Set the SSID’s authentication type to open with
EAP authentication. The access point forces all client
devices to perform EAP authentication before they are
allowed to join the network. For list-name, specify the
authentication method list.
Use the optional keyword to allow client devices using
either open or EAP authentication to associate and become
authenticated. This setting is used mainly by service
providers that require special client accessibility.
Note An access point configured for EAP authentication
forces all client devices that associate to perform EAP
authentication. Client devices that do not use EAP
cannot use the access point.
Step4 authentication shared
[mac-address list-name]
[eap list-name]
(Optional) Set the authentication type for the SSID to shared
key.
Note Because of WEP shared key's security flaws, We
recommend that you avoid using it.
(Optional) Set the SSID’s authentication type to shared key
with MAC address authentication. For list-name, specify
the authentication method list.
(Optional) Set the SSID’s authentication type to shared key
with EAP authentication. For list-name, specify the
authentication method list. This mode is designed for
networks with phased migration to EAP. Clients
supporting EAP will use individual client authentication
and individual client key management, while clients
supporting only static WEP will be allowed to associate
using static WEP.
Command Purpose