Manuals / Brands / Computer Equipment / Network Router / SMC Networks / Computer Equipment / Network Router

SMC Networks SMC2552W-G2, SMC2552W-G2-17 7-66, 802.1x broadcast-key-refresh-rate

1 296

Download 296 pages, 2.78 Mb

Command Line Interface

7-66

7

Command Mode

Global Configuration

Command Usage

• When 802.1X is disabled, the access point does not support 802.1X

authentication for any station. After successful 802.11 association, each

client is allowed to access the network.

• When 802.1X is supported, the access point supports 802.1X

authentication only for clients initiating the 802.1X authentication process

(i.e., the access point does NOT initiate 802.1X authentication). For stations

initiating 802.1X, only those stations successfully authenticated are allowed

to access the network. For those stations not initiating 802.1X, access to

the network is allowed after successful 802.11 association.

• When 802.1X is required, the access point enforces 802. 1X authentication

for all 802.11 associated stations. If 802.1X authentication is not initiated by

the station, the access point will initiate authentication. Only those stati ons

successfully authenticated with 802.1X are allowed to access the network.

• 802.1X does not apply to the 10/100Base-TX port.

Example

802.1x broadcast-key-refresh-rate

This command sets the interval at which the broadcast ke ys are refreshed for

stations using 802.1X dynamic keying.

Syntax

802.1x broadcast-key-refresh-rate <rate>

rate - The interval at which the access point rotates broadcast keys.

(Range: 0 - 1440 minutes)

Default Setting

0 (Disabled)

Command Mode

Global Configuration

Command Usage

• The access point uses Enterprise APOL (Extensible Authentication

Protocol Over LANs) packets to pass dynamic unicast session and

broadcast keys to wireless clients. The 802.1x

broadcast-key-refresh-rate command specifies the interval after which

the broadcast keys are changed. The 802.1x session-key-refresh-rate

Enterprise AP(config)#802.1x supported

Enterprise AP(config)#

Contents

Main Page Copyright i C Federal Communication Commission Interference Statement IMPORTANT NOTE: FCC Radiation Exposure Statement Industry Canada - Class B Page iii iv Declaration of Conformity in Languages of the European Community v Safety Compliance Power Cord Safety vi vii Veuillez lire fond l'information de la scurit suivante avant d'installer le access point: viii ix Page Table of Contents Page Page Page Page Page Page Page 1-1 Chapter 1: Introduction 1-2 Package Checklist Hardware Description Hardware Description 1-3 Component Description Antennas LED Indicators 1-4 Security Slot Console Port Ethernet Port Features and Benefits Features and Benefits 1-6 System Defaults System Defaults 1-7 1-8 System Defaults 1-9 Page 2-1 Chapter 2: Hardware Installation Hardware Installation 2-2 3-1 Chapter 3: External Antennas Installation Procedures External Antennas 3-2 Installation Procedures 3-3 Page 4-1 Chapter 4: Network Configuration 4-2 Network Topologies Ad Hoc Wireless LAN (no Access Point) Network Topologies 4-3 Infrastructure Wireless LAN 4-4 Infrastructure Wireless LAN for Roaming Wireless PCs Network Topologies 4-5 Infrastructure Wireless Bridge 4-6 Infrastructure Wireless Repeater 5-1 Chapter 5: Initial Configuration Initial Setup through the CLI Required Connections Initial Configuration 5-2 Initial Configuration Steps Logging In 5-3 Logging In Page 6-1 Chapter 6: System Configuration 6-2 Advanced Configuration The Advanced Configuration pages include the following options. Table6-2. Menu System Identification 6-4 6-5 TCP / IP Settings 6-6 6-7 RADIUS Page 6-9 6-10 6-11 SSH Settings SSH Settings 6-12 Authentication 6-13 6-14 6-15 6-16 6-17 Filter Control 6-18 6-19 VLAN 6-20 6-21 WDS Settings 6-22 Page 6-24 6-25 6-26 6-27 AP Management 6-28 Administration Changing the Password Page 6-30 6-31 6-32 System Log Enabling System Logging 6-33 6-34 Configuring SNTP 6-35 6-36 SNMP 6-37 Configuring SNMP and Trap Message Parameters 6-38 6-39 6-40 6-41 To view the current SNMP settings, use the show snmp command. 6-42 Configuring SNMPv3 Users 6-43 6-44 Configuring SNMPv3 Trap Filters 6-45 6-46 Configuring SNMPv3 Targets 6-47 6-48 Radio Interface 6-49 6-50 6-51 6-52 6-53 Page 6-55 Configuring Rogue AP Detection 6-56 6-57 Configuring Wi-Fi Multimedia 6-58 6-59 6-60 6-61 6-62 Security 6-63 6-64 Table6-2. Wireless Security Co nsiderations 6-65 6-66 Enabling the VAPs Page 6-68 Wired Equivalent Privacy (WEP) 6-69 6-70 6-71 6-72 6-73 Wi-Fi Protected Access (WPA) 6-74 6-75 6-76 6-77 6-78 6-79 Configuring 802.1X 6-80 6-81 Status Information Access Point Status 6-83 6-84 Station Status 6-86 6-87 6-88 Event Logs 6-89 Page Chapter 7: 7-1 Command Line Interface Using the Command Line Interface Accessing the CLI Entering Commands Keywords and Arguments Minimum Abbreviation Entering Commands 7-3 Command Completion Getting Help on Commands Showing Commands 7-4 Partial Keyword Lookup Negating the Effect of Commands Using Command History Understanding Command Modes Entering Commands 7-5 Exec Commands Configuration Commands 7-6 Command Groups General Commands General Commands 7-7 Table7-3. General Commands Table7-2. Command Grou ps 7-8 configure end exit General Commands 7-9 ping 7-10 reset show history 7-11 show line System Management Commands 7-12 country 7-13 7-14 prompt system name 7-15 username password 7-16 ip ssh-server enable ip ssh-server port 7-17 ip telnet-server enable ip http port 7-18 ip http server ip https port 7-19 ip https server 7-20 web-redirect 7-21 APmgmtIP 7-22 APmgmtUI show apmagement 7-23 show system This command displays basic system configuration settings. Default Setting None Command Mode 7-24 show version Example This command displays the software version for the system. Command Mode Example 7-25 7-26 7-27 7-28 show hardware These commands are used to configure system logging on the access point. This command displays the hardware version of the system. Command Mode System Logging Commands Table7-6. System Logging C ommands System Logging Commands 7-29 logging on logging host 7-30 logging console logging level System Logging Commands 7-31 logging facility-type 7-32 logging clear show logging 7-33 show event-log System Clock Commands 7-34 sntp-server ip sntp-server enable 7-35 sntp-server date-time 7-36 sntp-server daylight-saving sntp-server timezone 7-37 show sntp 7-38 DHCP Relay Commands dhcp-relay enable DHCP Relay Commands 7-39 dhcp-relay show dhcp-relay 7-40 SNMP Commands 7-41 snmp-server community snmp-server contact 7-42 snmp-server location snmp-server enable server 7-43 snmp-server host 7-44 snmp-server trap 7-45 7-46 snmp-server engine-id snmp-server user 7-47 7-48 snmp-server targets 7-49 snmp-server filter 7-50 snmp-server filter-assignments show snmp groups 7-51 show snmp users show snmp group-assignments 7-52 show snmp target show snmp filter Page 7-54 show snmp This command displays the SNMP configuration settings. Command Mode Flash/File Commands 7-55 Flash/File Commands bootfile 7-56 copy Flash/File Commands 7-57 delete 7-58 dir show bootfile 7-59 RADIUS Client radius-server address 7-60 radius-server port radius-server key 7-61 radius-server retransmit radius-server timeout 7-62 radius-server port-accounting radius-server timeout-interim 7-63 radius-server radius-mac-format radius-server vlan-format 7-64 show radius This command displays the current settings for the RADIUS server. Default Setting None Command Mode Example 7-65 802.1X Authentication 802.1x 7-66 802.1x broadcast-key-refresh-rate 7-67 802.1x session-key-refresh-rate 802.1x session-timeout 7-68 802.1x-supplicant enable 802.1x-supplicant user 7-69 show authentication 7-70 MAC Address Authentication address filter default MAC Address Authentication 7-71 address filter entry address filter delete 7-72 mac-authentication server mac-authentication session-timeout Filtering Commands 7-73 Filtering Commands filter local-bridge 7-74 filter ap-manage filter uplink enable Filtering Commands 7-75 filter uplink filter ethernet-type enable 7-76 filter ethernet-type protocol 7-77 show filters WDS Bridge Commands 7-78 bridge role (WDS) bridge-link parent 7-79 bridge-link child 7-80 bridge dynamic-entry age-time show bridge aging-time 7-81 show bridge filter-entry show bridge link 7-82 7-83 Spanning Tree Commands bridge stp enable 7-84 bridge stp forwarding-delay bridge stp hello-time 7-85 bridge stp max-age bridge stp priority 7-86 bridge-link path-cost bridge-link port-priority 7-87 show bridge stp 7-88 Ethernet Interface Commands interface ethernet Ethernet Interface Commands 7-89 dns server ip address 7-90 ip dhcp Ethernet Interface Commands 7-91 speed-duplex 7-92 shutdown show interface ethernet 7-93 Example Wireless Interface Commands The commands described in this section configure connection parameters for the wireless interfaces. Table7-17. Wireless Interface Co mmands 7-94 Table7-17. Wireless Interface Co mmands 7-95 interface wireless vap 7-96 speed multicast-data-rate 7-97 channel transmit-power 7-98 radio-mode 7-99 preamble antenna control 7-100 antenna id 7-101 antenna location beacon-interval 7-102 dtim-period fragmentation-length 7-103 rts-threshold 7-104 super-g description 7-105 ssid closed-system 7-106 max-association assoc-timeout-interval 7-107 auth-timeout-value shutdown 7-108 Example show interface wireless 7-109 show station Rogue AP Detection Commands 7-110 rogue-ap enable 7-111 rogue-ap authenticate rogue-ap duration 7-112 rogue-ap interval 7-113 rogue-ap scan show rogue-ap 7-114 Wireless Security Commands auth 7-115 7-116 encryption 7-117 key 7-118 transmit-key 7-119 cipher-suite 7-120 mic_mode 7-121 wpa-pre-shared-key pmksa-lifetime 7-122 pre-authentication Link Integrity Commands 7-123 Link Integrity Commands 7-124 link-integrity ping-detect link-integrity ping-host Link Integrity Commands 7-125 link-integrity ping-interval link-integrity ping-fail-retry link-integrity ethernet-detect 7-126 show link-integrity IAPP Commands 7-127 IAPP Commands iapp 7-128 VLAN Commands vlan VLAN Commands 7-129 management-vlanid vlan-id 7-130 WMM Commands WMM Commands 7-131 wmm wmm-acknowledge-policy 7-132 wmmparam WMM Commands 7-133 Page A-1 Appendix A: Troubleshooting Troubleshooting A-2 A B-1 Appendix B: Cables and Pinouts Twisted-Pair Cable Assignments 10/100BASE-TX Pin Assignments Cables and Pinouts B-2 Straight-Through Wiring TableB-1. 10/100BASE-TX MD I Port Pinouts Console Port Pin Assignments B-3 Crossover Wiring Console Port Pin Assignments Cables and Pinouts B-4 Wiring Map for Serial Cable TableB-2. Wiring Ma p for Serial Cable C-1 Appendix C: Specifications General Specifications C-2 Page C-4 Sensitivity Transmit Power Page C-6 Operating Range composition and construction and local environmental interference that may impact your actual distances and cause you to experience distance thresholds far lower than those posted below. Glossary Page Page Page Page Page Index Numerics A B D G H I L M R S T U V W Page Page 38 Tesla Irvine,CA 92618 Phone:(949) 679-8000