Cisco Systems WAP561AK9 System Security

Cisco Small Business WAP551 and WAP561 Wireless-N Access Point 105

System Security

This chapter describes how to configure security settings on the WAP device

device.

It contains these topics:

•RADIUS Server

•802.1X Supplicant

•Password Complexity

•WPA-PSK Complexity

Several features require communication with a RADIUS authentication server. For

example, when you configure Virtual Access Points (VAPs) on the WAP device, you

can configure security methods that control wireless client access (see the Radio

page). The Dynamic WEP and WPA Enterprise security methods use an external

RADIUS server to authenticate clients. The MAC address filtering feature, where

client access is restricted to a list, may also be configured to use a RADIUS server

to control access. The Captive Portal feature also uses RADIUS to authenticate

clients.

You can use the Radius Server page to configure the RADIUS servers that are

used by these features. You can configure up to four globally available IPv4 or IPv6

RADIUS servers; however, you must select whether the RADIUS client operates in

IPv4 or IPv6 mode with respect to the global servers. One of the servers always

acts as a primary while the others act as backup servers.

NOTE In addition to using the global RADIUS servers, you can also configure each VAP to

use a specific set of RADIUS servers. See the Networks page.

To configure global RADIUS servers: