WPA2/802.1x

The WPA encrypts each frame transmitted from the radio using the key, which either PSK (Pre-Shared Key) entered manually in this field below or automatically negotiated via 802.1x authentication.

WPA Algorithms

Select TKIP, AES or TKIP/AES as the algorithm for WPA.

Key Renewal Interval

WPA uses shared key for authentication to the network.

 

However, normal network operations use a different

 

encryption key that is randomly generated. This randomly

 

generated key that is periodically replaced. Enter the renewal

 

security time (seconds) in the column. Smaller interval leads

 

to greater security but lower performance. Default is 3600

PMK Cache Period

seconds. Set 0 to disable re-key.

 

Set the expire time of WPA2 PMK (Pairwise master key)

 

cache. PMK Cache manages the list from the BSSIDs in the

Pre-Authentication

associated SSID with which it has pre-authenticated.

Enables a station to authenticate to multiple APs for roaming

 

securer and faster. With the pre-authentication procedure

 

defined in IEEE 802.11i specification, the

 

pre-four-way-handshake can reduce handoff delay

 

perceivable by a mobile node. It makes roaming faster and

 

more secure. (Only valid in WPA2)

 

Enable - Enable IEEE 802.1X Pre-Authentication.

IP Address

Disable - Disable IEEE 802.1X Pre-Authentication.

Enter the IP address of RADIUS server.

Port

The UDP port number that the RADIUS server is using. The

 

default value is 1812, based on RFC 2138.

Shared Secret

The RADIUS server and client share a secret that is used to

 

24

VigorFly 200 Series User’s Guide

Page 32
Image 32
Draytek 200 manual WPA2/802.1x, PMK Cache Period, Pre-Authentication