Advanced Configuration

AP-4000 Series User Guide

SSID/VLAN/Security

 

 

 

2.Click Add in the Security Profile Table to create a new entry. To modify an existing profile, select the profile and click Edit. To delete an existing profile, select the profile and click Delete. You cannot delete a Security Profile used in an SSID. Also, the first Security Profile cannot be deleted.

3.Configure one or more types of wireless stations (security modes) that are allowed access to the AP under the security profile. The WEP/PSK parameters are separately configurable for each security mode. To enable a security mode in the profile (Non Secure Station, WEP Station, 802.1x Station, WPA Station, WPA-PSK Station, 802.11i (WPA2) Station, 802.11i-PSK Station), check the box next to the mode. See Figure 4-42 on page 122.

If the security mode selected in a profile is WEP, WPA-PSK, or 802.11i-PSK, then you must configure the WEP or Pre-Shared Keys.

NOTE: If an 802.1x client that has already been authenticated attempts to switch to WEP, or if a WEP client that has already been connected attempts to switch to 802.1x, the AP will not allow the client to switch immediately. If this happens, either reboot the AP or disable the client/roam to a new AP for five minutes, and then attempt to reconnect to the AP. If the client is still unable to connect after waiting five minutes, reboot the AP.

4.Configure the parameters as follows for each enabled security mode. See Figure 4-42 on page 122.

Non Secure Station:

Authentication Mode: None. The AP allows access to Stations without authentication.

Non secure station should be used only with WEP or 802.1x security mode.

Cipher: None

WEP Station:

Authentication Mode: None

Cipher: WEP

Encryption Key 0, Encryption Key 1, Encryption Key 2, Encryption Key 3

Encryption Key Length: 64, 128, or 152 Bits.

For 64-bit encryption, an encryption key is 10 hexadecimal characters (0-9 and A-F) or 5 ASCII characters (see ASCII Character Chart).

For 128-bit encryption, an encryption key is 26 hexadecimal characters or 13 ASCII characters.

For 152-bit encryption, an encryption key is 32 hexadecimal characters or 16 ASCII characters.

Encryption Transmit Key: select Key 0, Key 1, Key 2, or Key 3

802.1x Station:

Authentication Mode: 802.1x

Cipher: WEP

Encryption Key Length: 64 or 128 Bits.

If 802.1x is enabled simultaneously with WEP, the 802.1x Station’s encryption key length is determined by the WEP encryption key.

WPA Station:

Authentication Mode: 802.1x

Cipher: TKIP

WPA-PSK Station:

Authentication Mode: PSK

Cipher: TKIP

PSK Passphrase: an 8-63 character user-defined phrase. It is recommended a passphrase of at least 13 characters, including both letters and numbers, and upper and lower case characters, be used to ensure that the generated key cannot be easily deciphered by network infiltrators.

802.11i Station:

Authentication Mode: 802.1x

120

Page 120
Image 120
Proxim AP-4000 manual Non Secure Station, WEP Station, 802.1x Station, WPA Station, WPA-PSK Station, 802.11i Station, 120