Synchronizing Security Features - Cisco Aironet Installation And Configuration Manual

Wireless lan client adapters for windows

Hide thumbs Also See for Aironet:

Installation and configuration manual (92 pages)

Quick start manual (12 pages)

Getting started manual (38 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

271

272

273

274

275

276

277

278

279

280

281

282

283

284

285

286

287

288

289

290

Table of Contents

Setting Network Security Parameters

Note

If you enable MIC on the access point, your client adapter's driver must support these features;

otherwise, the client cannot associate.

Temporal Key Integrity Protocol (TKIP)

This feature, also referred to as WEP key hashing, defends against an attack on WEP in which the

intruder uses the initialization vector (IV) in encrypted packets to calculate the WEP key. TKIP removes

the predictability that an intruder relies on to determine the WEP key by exploiting IVs. It protects both

unicast and broadcast WEP keys.

Note

If you enable TKIP on the access point, your client adapter's firmware must support these features;

otherwise, the client cannot associate.

Broadcast Key Rotation

EAP authentication provides dynamic unicast WEP keys for client devices but uses static broadcast, or

multicast, keys. When you enable broadcast WEP key rotation, the access point provides a dynamic

broadcast WEP key and changes it at the interval you select. When you enable this feature, only wireless

client devices using LEAP, EAP-TLS, PEAP, or EAP-SIM authentication can associate to the access

point. Client devices using static WEP (with open, shared key, or EAP-MD5 authentication) cannot

associate.

Synchronizing Security Features

In order to use any of the security features discussed in this section, both your client adapter and the

access point to which it will associate must be set appropriately.

point settings required for each security feature. This chapter provides specific instructions for enabling

the security features on your client adapter. Refer to the Software Configuration Guide for your access

point for instructions on enabling any of these features.

Table 5-6

Security Feature

Static WEP with open

authentication

Static WEP with shared key

authentication

LEAP authentication

Cisco Aironet Wireless LAN Client Adapters Installation and Configuration Guide for Windows

5-26

Client and Access Point Security Settings

Client Setting

Create a WEP key and enable Use

Static WEP Keys and Open

Authentication

Create a WEP key and enable Use

Static WEP Keys and Shared Key

Authentication

Enable LEAP

Chapter 5

Configuring the Client Adapter

Table 5-6

indicates the client and access

Access Point Setting

Set up and enable WEP and enable

Open Authentication

Set up and enable WEP and enable

Shared Key Authentication

Set up and enable WEP and enable

Network-EAP

OL-1394-04

Table of Contents

Synchronizing Security Features - Cisco Aironet Installation And Configuration Manual

Synchronizing Security Features

Troubleshooting

Related Manuals for Cisco Aironet

Related Content for Cisco Aironet

Table of Contents