wpa2-psk - Clients using WPA2 with a Pre-shared Key are accepted for
authentication.
wpa-wpa2-mixed - Clients using WPA or WPA2 are accepted for
authentication.
wpa-wpa2-psk-mixed - Clients using WPA or WPA2 with a Pre-shared Key
are accepted for authentication
Default Setting
open-system
Command Mode
Interface Configuration (Wireless-VAP)
Command Usage
◆
The auth command automatically configures settings for each authentication
type, including encryption, 802.1X, and cipher suite. The command auth open-
system disables encryption and 802.1X.
◆
To use WEP shared-key authentication, set the authentication type to "shared-
key" and define at least one static WEP key with the key command. Encryption
is automatically enabled by the command.
◆
To use WEP encryption only (no authentication), set the authentication type to
"open-system. " Then enable WEP with the encryption command, and define at
least one static WEP key with the key command.
◆
When any WPA or WPA2 option is selected, clients are authenticated using
802.1X via a RADIUS server. Each client must be WPA-enabled or support
802.1X client software. The 802.1X settings (see
Commands" on page
Commands" on page
server must also be configured and be available in the wired network.
◆
If a WPA/WPA2 mode that operates over 802.1X is selected (WPA, WPA2, WPA-
WPA2-mixed, or WPA-WPA2-PSK-mixed), the 802.1X settings (see
Authentication Commands" on page
"RADIUS Client Commands" on page
have also configured a RADIUS server on the network before enabling
authentication. Also, note that each client has to be WPA-enabled or support
802.1X client software. A RADIUS server must also be configured and be
available in the wired network.
◆
If a WPA/WPA2 Pre-shared Key mode is selected (WPA-PSK, WPA2-PSK or WPA-
WPA2-PSK-mixed), the key must first be generated and distributed to all
wireless clients before they can successfully associate with the access point.
Use the wpa-preshared-key command to configure the key (see
page 235
and
"transmit-key" on page
Chapter 25
173) and RADIUS server details (see
167) must be configured on the access point. A RADIUS
173) and RADIUS server details (see
167) must be configured. Be sure you
236).
– 233 –
| Wireless Security Commands
"802.1X Authentication
"RADIUS Client
"802.1X
"key" on