LANCOM Reference Manual LCOS 3.50 Chapter 11: Wireless LAN – WLAN
240
Wireless LAN – WLAN
Key 1/passphrase In line with the encryption method activated, you can enter a special WEP key
for the respective logical WLAN interface or a passphrase when using WPA-
PSK:
The passphrase, or the 'password' for the WPA-PSK method, is entered as
a string of at least 8 and up to 63 ASCII characters.
Please be aware that the security of this encryption method depends
on the confidential treatment of this passphrase. Passphrases should
not be made public to larger circles of users.
The WEP key 1, that applies only to its respective logical WLAN interface,
can be entered in different ways depending on the key length. Rules of the
entry of the keys can be found in the description of the WEP group key
’Rules for entering WEP keys’ page243.
WPA session key
type
If '802.11i (WPA)-PSK' has been entered as the encryption method, the
procedure for generating a session or group key can be selected here:
AES – the AES method will be used.
TKIP – the TKIP method will be used.
AES/TKIP – the AES method will be used. If the client hardware does not
support the AES method, TKIP will be used.
Authentication If the encryption method was set as WEP encryption, two different methods
for the authentication of the WLAN client are available:
The 'Open system' method does not use any authentication. The data
packets must be properly encrypted from the start to be accepted by the
access point.
With the 'Shared key' method, the first data packet is transmitted
unencrypted and must be sent back by the client correctly encrypted. This
method presents potential attackers with at least one data packet that is
unencrypted.
Default key If WEP encryption is selected, the access point can select from four different
WEP keys for each logical WLAN interface:
Three WEP keys for the physical interface
An additional WEP key particular to each logical WLAN interface
The private WEP settings are used to set the additional key for each logical
WLAN interface (see 'Key 1/passphrase'). You should also select which of the
four keys is currently to be used for the encryption of the data (default key).
This setting can be used to change the key frequently, so increasing security.