WPA pre-shared key only WPA over | SMC Networks SMC2555W-AG guide

Radio Interface

WPA Pre-Shared Key Type – If the WPA pre-shared-key mode is used, all wireless clients must be configured with the same key to communicate with the access point.

•Hexadecimal: Enter a key as a string of 64 hexadecimal numbers.

•Alphanumeric: Enter a key as an easy-to-remember form of letters and numbers. The string must be from 8 to 63 characters, which can include spaces.

The configuration settings for WPA are summarized below:

WPA pre-shared key only	WPA over 802.1x

Authentication Type: Open System	Authentication Type: Open System
WEP (encryption): Enable1	WEP (encryption): Enable1
WPA clients only: Enable	WPA clients only: Enable
WPA Mode: Pre-shared-key	WPA Mode: WPA over 802.1x
Multicast Cipher: WEP/TKIP/AES2	Multicast Cipher: WEP/TKIP/AES2
WPA PSK Type -	Shared Key: 64/128/152
Hex: 64 characters	802.1x = Required3
ASCII: 8-63 characters	MAC Authentication: Disabled/Local4
Shared Key: 64/128/152
802.1x = Disabled3
MAC Authentication: Disabled/Local4

1:Although WEP keys are not needed for WPA, you must enable WEP encryption through the web or CLI in order to enable all types of encryption in the access point. For example, use the CLI encryption command to set Encryption = 64, 128 or 152, thus enabling encryption (i.e., all types of encryption) in the access point.

2:Do not use WEP unless the access point must support both WPA and WEP clients.

3:See Authentication (page 5-14)

4:See Radius (page 5-10)

CLI Commands for WPA Pre-shared Key Security – From the 802.11a or 802.11g interface configuration mode, use the authentication command to set the access point to “Open System.” Use the WEP encryption command to enable all types of encryption. To enable WPA to be required for all clients, use the wpa-clientscommand. Use the wpa-modecommand to enable the Pre-shared Key mode. To enter a key value, use the wpa-psk-typecommand to specify a hexadecimal or alphanumeric key, and then use the wpa-preshared-keycommand to define the key. Then disable 802.1x and MAC

5-61

Image 119

SMC Networks SMC2555W-AG manual WPA pre-shared key only WPA over

Contents

SMC2555W-AG Page Revision Number R02, F3.0.02 Trademarks Copyright Limited Warranty Limited Warranty FCC Radiation Exposure Statement Wireless 2.4 Ghz and 5 GHz Band StatementsFederal Communication Commission Interference Statement Japan Vcci Class B Australia/New Zealand AS/NZS Industry Canada Class B EC Conformance Declaration Compliances Declaration of Conformity in Languages of the European Operation Using 5 GHz Channels in the European Community Community Viii Power Cord Safety Safety Compliance Cord set must be UL-approved and CSA certified France et Pérou uniquement Xii Xiii Xiv Table of Contents Xvi Command Line Interface Xvii Xviii Glossary Index Table of Contents Chapter Introduction Introduction Package Checklist Rear Panel Hardware DescriptionHardware Description Front Panel Antennas LED IndicatorsComponent Description Security Slot Ethernet Port Reset ButtonConsole Port Power Connector Features and BenefitsFeatures and Benefits Frequently changing environments Applications System Defaults System Defaults MAC System Defaults Iapp 802.11b/g Introduction Hardware Installation Attaching the Mounting Bracket Hardware Installation Hardware Installation Hardware Installation Network Configuration Network Topologies Network ConfigurationAd Hoc Wireless LAN no AP or Bridge Network Topologies Infrastructure Wireless LAN Infrastructure Wireless LAN for Roaming Wireless PCs Seamless Roaming Network Configuration Required Connections Initial Setup through the CLI Initial Configuration Initial Configuration Steps Initial Setup through the CLI Using the Web-based Management Setup Wizard Using the Web-based Management Setup Wizard Initial Configuration Using the Web-based Management Setup Wizard 802.11g Radio Channel Set the operating radio Using the Web-based Management Setup Wizard Initial Configuration System Configuration System Configuration Advanced Configuration Advanced Configuration System Identification Disabled TCP / IP Settings Advanced Configuration System Configuration SMC-APconfig#interface ethernet Radius Advanced Configuration Authentication fails. Range 1-30 Default SMC-APconfig#radius-server address Authentication Advanced Configuration System Configuration Advanced Configuration Local Allowed Secs Filter Control Number Radius Attribute Value Advanced Configuration Native Vlan AP Management Snmp Advanced Configuration SMC-APconfig#snmp-server host 10.1.19.23 alpha Changing the Password Administration SMC-APconfig#username bob SMC-APconfig#password smcadmin Upgrading Firmware System Configuration Advanced Configuration File Size Enabling System Logging System Log Error Level Description Configuring Sntp System Configuration TAIPEI, Beijing Show sntp command Radio Interface Radio Interface Radio Settings 802.11a Normal Mode Turbo Mode Radio Interface Enter Wireless configuration commands, one per line Enabled Radio Settings 802.11g Radio Interface SMC-APif-wireless g#select-antenna-mode right antenna Ssid Security WEP Wired Equivalent Privacy WEP Radio Interface WEP only WEP over Show interface wireless g command PRE Shared KEY Wi-Fi Protected Access WPA System Configuration Radio Interface System Configuration WPA pre-shared key only WPA over Command not shown in example Show interface wireless a or show interface wireless g Status Information Access Point StatusStatus Information System Configuration Days, 4 hours, 39 minutes Station Status True Event Logs 192.168.1.19 System Configuration Console Connection Using the Command Line InterfaceAccessing the CLI Telnet Connection Command Line Interface Keywords and Arguments Entering CommandsEntering Commands Minimum Abbreviation Command CompletionGetting Help on Commands Showing Commands Partial Keyword Lookup Understanding Command Modes Negating the Effect of CommandsUsing Command History Configuration Commands Exec Commands Keystroke Function Command Line Processing Entering Commands Command Description Group Command Groups Configure General CommandsGeneral Commands Exit End Syntax Command UsagePing Show history ResetSyntax Reset board configuration Show line Console port settings are fixed at the values shown below Command Function Mode System Management Commands System Clock System Management Commands Country countrycode Country SMC-AP#country ie Syntax System name name no system name PromptSystem name Syntax Prompt string no prompt Syntax Username name Username Syntax Ip http port port-numberno ip http port PasswordSyntax Password password no password Ip http port Ip http server Syntax Ip http server no ip http server Default Setting Logging host Syntax Logging on no logging on Default SettingLogging on Logging console Syntax Logging console no logging console Default Setting Level Argument Description Logging level Show logging Default Setting Command ModeSyntax Show logging Command Mode Logging facility-type Syntax Sntp-server ip 1 2 ip Sntp-server ip Sntp-server enable This example sets the system clock to 1737 June 19 Sntp-server date-time Sntp-server daylight-saving Syntax Sntp-server timezone hours Sntp-server timezoneShow sntp Show system Show version Snmp-server community Snmp CommandsSnmp Commands Syntax Snmp-server contact string no snmp-server contact Snmp-server contact Snmp-server enable server No snmp-server host Snmp-server host Syntax Snmp-server location text no snmp-server location Snmp-server location Show snmp Flash/File Commands Syntax Bootfile filename Flash/File CommandsBootfile Copy Syntax Copy ftp tftp file copy config ftp tftp Delete File information is shown below Dir Radius Client Radius Client Syntax Radius-server secondary port portnumber Radius-server addressRadius-server port Syntax Radius-server secondary retransmit numberofretries Radius-server keyRadius-server retransmit Syntax Radius-server secondary key keystring Syntax Radius-server secondary timeout numberofseconds Radius-server timeout Show radius 802.1x Port Authentication Syntax 802.1x supported required no 802.1x Port Authentication802.1x Syntax 802.1x broadcast-key-refresh-rate rate 802.1x broadcast-key-refresh-rate Syntax 802.1x session-key-refresh-rate rate 802.1x session-key-refresh-rate Syntax Address filter default allowed denied 802.1x session-timeoutAddress filter default Default Syntax Address filter entry mac-addressallowed denied Address filter entry Syntax Address filter delete mac-address Address filter delete Syntax Mac-authentication server local remote Mac-authentication server Syntax Mac-authentication session-timeout seconds Mac-authentication session-timeout Show authentication Filter local-bridge Filtering CommandsSyntax Filter local-bridge no filter local-bridge Default Filter ap-manage Filtering CommandsSyntax Filter ap-manage no filter ap-manage Default Filter ethernet-type enable Filter ethernet-type protocol Show filters Interface Commands Interface Commands IC-W Transmit-power Dns server Syntax Interface ethernet wireless a gInterface This example specifies two domain-name servers Ip address IP address Netmask Ip dhcp Syntax Ip dhcp no ip dhcp Default Setting Syntax Show interface ethernet Syntax Shutdown no shutdown Default SettingShutdown Show interface ethernet Syntax Radio-mode b g b+g Radio-mode Syntax Select-antenna-mode diversity right antenna Select-antenna-mode Syntax Description string no description Syntax Ssid-broadcast no ssid-broadcast Default SettingDescription Ssid-broadcast Syntax Speed speed Speed Syntax Channel channel auto Channel Turbo Syntax Beacon-interval interval SsidBeacon-interval Syntax Dtim-period interval Dtim-period Syntax Fragmentation-length length Default Setting 2346 Command ModeFragmentation-length Syntax Rts-threshold threshold Rts-threshold Syntax Authentication open shared Encryption Key index size type value no key index Key Syntax Transmit-key index Transmit-key Transmit-powersignal-strength Transmit-power Syntax Max-association count Max-association Syntax Multicast-cipher AES Tkip WEP Multicast-cipher Syntax Wpa-clients required supported Wpa-clients Enhanced Data Encryption through Tkip Syntax Wpa-mode dynamic pre-shared-key Wpa-mode Syntax Wpa-preshared-key type value Wpa-preshared-key Syntax Wpa-psk-type type Wpa-psk-type Syntax Show interface wireless a g Show interface wireless Ssid SMC Show station Iapp Iapp CommandsSyntax Iapp no iapp Default Vlan Commands Vlan Commands Vlan Syntax Vlan enable no vlan DefaultCommand Description Syntax Native-vlanid vlan-id Native-vlanid 102 Appendix a Troubleshooting Troubleshooting Troubleshooting Important Notice Maximum Distance Table Twisted-Pair Cable Assignments Appendix B Cables and Pinouts 10/100BASE-TX Pin Assignments Cables and Pinouts Twisted-Pair Cable Assignments Straight-Through WiringCrossover Wiring Console Port Pin Assignments Wiring Map for Serial Cable Console Port Pin Assignments Serial Cable Signal Directions for DB-9 PortsSerial Cable Signal Directions for DB-25 Ports Cables and Pinouts General Specifications Specifications General Specifications Ieee 802.11a Sensitivity GHz dBm Modulation/Rates Sensitivity Transmit Power Specifications Advanced Encryption Standard AES Access PointAuthentication Ad Hoc Glossary File Transfer Protocol FTP Extended Service Set ESSExtensible Authentication Protocol EAP Ethernet Ieee Inter Access Point Protocol IappIeee 802.11b Ieee 802.11g Orthogonal Frequency Division Multiplexing Odfm Power over Ethernet PoENetwork Time Protocol NTP Open System Simple Network Management Protocol Snmp Service Set Identifier SsidSession Key Shared Key WPA Pre-shared Key PSK Wi-Fi Protected AccessTrivial File Transfer Protocol Tftp Virtual LAN Vlan Glossary-8 Index Index Index-3 Index-4 Page For Technical SUPPORT, Call