User Authentication
WPA or WPA2 applies IEEE 802.1x and Extensible Authentication Protocol (EAP) to authenticate wireless clients using an external RADIUS database.
If both an AP and the wireless clients support WPA2 and you have an external RADIUS server, use WPA2 for stronger data encryption. If you don't have an external RADIUS server, you should use WPA2
If the AP or the wireless clients do not support WPA2, just use WPA or
Select WEP only when the AP and/or wireless clients do not support WPA or WPA2. WEP is less secure than WPA or WPA2.
WPA(2)-PSK Application Example
A
1First enter identical passwords into the AP and all wireless clients. The
2The AP checks each wireless client's password and (only) allows it to join the network if the password matches.
3The AP derives and distributes keys to the wireless clients.
4The AP and wireless clients use the TKIP or AES encryption process to encrypt data exchanged between them.