The following items are available for VAP security:
◆
Association Mode — Defines the mode with which the VAP will associate with
clients.
Open System: The VAP is configured by default as an "open system, " which
■
broadcasts a beacon signal including the configured SSID. Wireless clients
with an SSID setting of "any" can read the SSID from the beacon and
automatically set their SSID to allow immediate connection.
WPA: WPA employs a combination of several technologies to provide an
■
enhanced security solution for 802.11 wireless networks.
WPA-PSK: For enterprise deployment, WPA requires a RADIUS
■
authentication server to be configured on the wired network. However, for
small office networks that may not have the resources to configure and
maintain a RADIUS server, WPA provides a simple operating mode that uses
just a pre-shared password for network access. The Pre-Shared Key mode
uses a common password for user authentication that is manually entered
on the access point and all wireless clients. The PSK mode uses the same
TKIP packet encryption and key management as WPA in the enterprise,
providing a robust and manageable alternative for small networks.
WPA2: WPA was introduced as an interim solution for the vulnerability of
■
WEP pending the ratification of the IEEE 802.11i wireless security standard.
In effect, the WPA security features are a subset of the 802.11i standard.
WPA2 includes the now ratified 802.11i standard, but also offers backward
compatibility with WPA. Therefore, WPA2 includes the same 802.1X and PSK
modes of operation and support for TKIP encryption.
■
WPA2-PSK: Clients using WPA2 with a Pre-shared Key are accepted for
authentication.
WPA-WPA2 Mixed: Clients using WPA or WPA2 are accepted for
■
authentication.
WPA-WPA2-PSK-mixed: Clients using WPA or WPA2 with a Pre-shared Key
■
are accepted for authentication.
◆
Encryption Method — Selects an encryption method for the global key used
for multicast and broadcast traffic, which is supported by all wireless clients.
WEP: WEP is used as the multicast encryption cipher. You should select
■
WEP only when both WPA and WEP clients are supported.
TKIP: TKIP is used as the multicast encryption cipher.
■
■
AES-CCMP: AES-CCMP is used as the multicast encryption cipher. AES-
CCMP is the standard encryption cipher required for WPA2.
– 79 –
Chapter 6
| Wireless Settings
Virtual Access Points (VAPs)