Table of Contents
Advertisement
Chapter 5
Configuring Encryption Types
Table 5-1
Security Configuration
Cipher suite with TKIP and 40-bit WEP or
128-bit WEP
Broadcast key rotation
Example WEP Key Setup
Table 5-2
device:
Table 5-2
Key
Slot
1
2
3
4
Because the access point's WEP key 1 is selected as the transmit key, WEP key 1 on the other device
must have the same contents. WEP key 4 on the other device is set, but because it is not selected as the
transmit key, WEP key 4 on the access point does not need to be set at all.
Creating Cipher Suites
Beginning in privileged EXEC mode, follow these steps to create a cipher suite:
Command
Step 1
configure terminal
Step 2
interface dot11radio { 0 | 1 }
OL-6415-04
WEP Key Restrictions (continued)
shows an example WEP key setup that would work for the access point and an associated
WEP Key Setup Example
Access Point
Transmit?
Key Contents
x
12345678901234567890abcdef
–
09876543210987654321fedcba
–
not set
–
not set
WEP Key Restriction
Cannot configure a WEP key in key slot 1 and 4
Keys in slots 2 and 3 are overwritten by rotating
broadcast keys
Client devices using static WEP cannot use the
Note
access point when you enable broadcast key
rotation. When you enable broadcast key
rotation, only wireless client devices using
802.1x authentication (such as LEAP, EAP-TLS,
or PEAP) can use the access point.
Associated Device
Transmit? Key Contents
–
x
–
–
Purpose
Enter global configuration mode.
Enter interface configuration mode for the radio interface. The
2.4-GHz radio is radio 0, and the 5-GHz radio is radio 1.
Cisco Wireless ISR and HWIC Access Point Configuration Guide
Configure Encryption Types
12345678901234567890abcdef
09876543210987654321fedcba
not set
FEDCBA09876543211234567890
5-5
Advertisement
Table of Contents
