Static Wep Keys; Dynamic 802.1X Keys And Authorization - Cisco 2100 Series Configuration Manual
Wireless lan controller
Hide thumbs
Also See for 2100 Series:
- Configuration manual (50 pages) ,
- Quick start manual (12 pages) ,
- Configuration manual (406 pages)
Table of Contents
Advertisement
Chapter 6
Configuring WLANsWireless Device Access
Static WEP Keys
Controllers can control static WEP keys across access points. Use these commands to configure static
WEP for WLANs:
•
•
Dynamic 802.1X Keys and Authorization
Controllers can control 802.1X dynamic WEP keys using Extensible Authentication Protocol (EAP)
across access points and support 802.1X dynamic key settings for WLANs.
To use LEAP with lightweight access points and wireless clients, make sure to choose Cisco-Aironet as
Note
the RADIUS server type when configuring the CiscoSecure Access Control Server (ACS).
•
•
•
OL-17037-01
Enter this command to disable 802.1X encryption:
config wlan security 802.1X disable wlan_id
Enter this command to configure 40/64, 104/128, or 128/152-bit WEP keys:
config wlan security static-wep-key encryption wlan_id {40 | 104 | 128} {hex | ascii} key
key_index
Use the 40, 104, or 128 options to specify 40/64-bit, 104/128-bit, or 128/152-bit encryption.
–
The default setting is 104/128.
Use the hex or ascii option to specify the character format for the WEP key.
–
Enter 10 hexadecimal digits (any combination of 0-9, a-f, or A-F) or five printable ASCII
–
characters for 40-bit/64-bit WEP keys; enter 26 hexadecimal or 13 ASCII characters for
104-bit/128-bit keys; enter 32 hexadecimal or 16 ASCII characters for 128-bit/152-bit keys.
Enter a key index (sometimes called a key slot) of 1 through 4.
–
Enter show wlan wlan_id to check the security settings of each WLAN. The default security setting
for new WLANs is 802.1X with dynamic keys enabled. To maintain robust Layer 2 security, leave
802.1X configured on your WLANs.
To disable or enable the 802.1X authentication, use this command:
config wlan security 802.1X {enable | disable} wlan_id
After you enable 802.1X authentication, the controller sends EAP authentication packets between
the wireless client and the authentication server. This command allows all EAP-type packets to be
sent to and from the controller.
If you want to change the 802.1X encryption level for a WLAN, use this command:
config wlan security 802.1X encryption wlan_id [40 | 104 | 128]
Use the 40 option to specify 40/64-bit encryption.
–
–
Use the 104 option to specify 104/128-bit encryption. (This is the default encryption setting.)
–
Use the 128 option to specify 128/152-bit encryption.
Cisco Wireless LAN Controller Configuration Guide
Configuring WLANs
6-21
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
