Prestige 2602HW Series User’s Guide

Table 118 Menu 23.4 System Security: IEEE802.1x

FIELD

DESCRIPTION

 

 

Wireless Port

Press [SPACE BAR] and select a security mode for the wireless LAN access.

Control

Select No Authentication Required to allow any wireless stations access to your

 

wired network without entering usernames and passwords. This is the default

 

setting.

 

Selecting Authentication Required means wireless stations have to enter

 

usernames and passwords before access to the wired network is allowed.

 

Select No Access Allowed to block all wireless stations access to the wired

 

network.

 

The following fields are not available when you select No Authentication Required

 

or No Access Allowed.

ReAuthentica-

Specify how often a client has to re-enter username and password to stay

tion Timer

connected to the wired network.

(in second)

This field is activated only when you select Authentication Required in the

 

Wireless Port Control field. Enter a time interval between 10 and 9999 (in

 

seconds). The default time interval is 1800 seconds (or 30 minutes).

Idle Timeout (in

The Prestige automatically disconnects a client from the wired network after a

second)

period of inactivity. The client needs to enter the username and password again

 

before access to the wired network is allowed.

 

This field is activated only when you select Authentication Required in the

 

Wireless Port Control field. The default time interval is 3600 seconds (or 1 hour).

Key Management

Press [SPACE BAR] to select 802.1x, WPA or WPA-PSKand press [ENTER].

Protocol

 

Dynamic WEP

This field is activated only when you select Authentication Required in the

Key Exchange

Wireless Port Control field. Also set the Authentication Databases field to

 

RADIUS Only. Local user database may not be used.

 

Select Disable to allow wireless stations to communicate with the access points

 

without using Dynamic WEP Key Exchange.

 

Select 64-bit WEP or 128-bit WEP to enable data encryption.

 

Up to 32 stations can access the Prestige when you configure Dynamic WEP Key

 

Exchange. This field is not available when you set Key Management Protocol to

 

WPA or WPA-PSK.

PSK

Type a pre-shared key from 8 to 63 case-sensitive ASCII characters (including

 

spaces and symbols) when you select WPA-PSKin the Key Management

 

Protocol field.

WPA Mixed

Select Enable to activate WPA mixed mode. Otherwise, select Disable and

Mode

configure Group Data Privacy field.

Data Privacy for

This field allows you to choose TKIP (recommended) or WEP for broadcast and

Broadcast/

multicast (“group”) traffic if the Key Management Protocol is WPA and WPA

Multicast packets

Mixed Mode is disabled. WEP is used automatically if you have enabled WPA

 

Mixed Mode.

 

All unicast traffic is automatically encrypted by TKIP when WPA or WPA-PSK Key

 

Management Protocol is selected.

WPA Broadcast/

The WPA Broadcast/Multicast Key Update Timer is the rate at which the AP (if

Multicast Key

using WPA-PSKkey management) or RADIUS server (if using WPA key

Update Timer

management) sends a new group key out to all clients. The re-keying process is the

 

WPA equivalent of automatically changing the WEP key for an AP and all stations in

 

a WLAN on a periodic basis. Setting of the WPA Broadcast/Multicast Key Update

 

Timer is also supported in WPA-PSK mode. The Prestige default is 1800 seconds

 

(30 minutes).

352

Chapter 35 System Security