Table of Contents
Advertisement
Encryption Methods and
Process
No Security
Static WEP Keys:
1. Enable WEP Security.
2. Set the Key Index, Length,
and Type.
3. Configure the Keys.
4. Set the Authentication.
Dynamic WEP:
1. Enable Dynamic WEP
Security.
2. Set the Authentication
Server and Protocol.
3. Set RADIUS Key.
WPA-PSK
1. Enable WPA Security.
2. Enable WPA and/or WPA2.
3. Set Authentication
Protocols—TKIP, AES, or
both.
4. Set the key.
When you have decided which security mechanisms to implement in your
network, refer to Table 7-2 and Table 7-3 for a summary of the access point
configuration procedures.
For more details on security configurations that are possible using the CLI,
"CLI: Configuring Security Settings" on page 7-24
see
Table 7-2.
Summary of Wireless Security Configuration
Configuring Encryption in the ProCurve Wireless Access Point 530
WLAN Interface Level Commands
security <no security>
security <static-wep>
wep-default-key <1| 2| 3| 4>
[no] wep-key ascii
wep-key-length <64|128>
wep-key <1| 2| 3| 4> <string>
[no] open-system-authentication
[no] shared-key authentication
security <dynamic-wep>
radius-accounting <primary | secondary>
<ip <ip> | port <port> | key <key>>
radius <primary | secondary>
*The radius-key value is used with an external RADIUS
server only and is ignored for the internal radius server.
It should be set to the shared secret key that is
configured on the external RADIUS server.
security <wpa-psk>
wpa-allowed
[no]wpa2-allowed
[no] wpa-cipher-tkip
[no] wpa-cipher-aes
wpa-pre-shared-key <key>
Wireless Security Configuration
Wireless Security Overview
.
Additional
Notes
Requirements
WEP supported
Requires manual key
station required.
management.
Encryption index, length, and
type configured in the access
point must match those
configured in the stations.
RADIUS server
The built-in authentication
required.
server can be used on the
access point or on an
802.1X supplicant
external RADIUS server.
required.
To use the built-in
WEP supported
authentication server, set the
station required.
RADIUS IP address to that
used by the built-in server,
and turn RADIUS accounting
off (because it is not
supported by the built-in
server).
WPA supported
When both TKIP and CCMP
station required.
authentication methods are
set, both TKIP and AES
If there is a mix of
stations can associate with
stations, some
the access point. WPA
supporting WPA2
stations must have either a
and others
valid TKIP or an AES key to
supporting the
communicate.
original WPA,
configure for both
(set both wpa/wpa2
allowed).
7-13
- Quick Links:
- Getting Started
- Ip Addressing
Hide quick links:
Advertisement
Chapters
Table of Contents
