Table of Contents
Advertisement
Wireless Security Configuration
Wireless Security Overview
Encryption Methods and
Process
WPA-802.1X
1. Enable WPA Security.
2. Enable WPA and/or WPA2.
3. Enable Pre-authentication.
4. Set the Authentication
Server and Protocols—TKIP,
AES, or both.
5. Set the Radius Key.
6. Allow Non-WPA stations.
The AP 530 supports the following Extensible Authentication Protocol (EAP) methods: TLS, TTLS, MD5, and PEAP (MS-CHAP v2) when
configured to use an external RADIUS server for authentication. The AP 530 supports only PEAP (MS-CHAP v2) when configured to use the
built-in (local) RADIUS server.
To start, the access point is in the default configuration.
Conventions used:
Vertical bars separate alternative, mutually exclusive elements ( | ).
Braces enclose required elements ( < > ).
Italics indicate variables for which the user must supply a value when executing the command.
7-14
Configuring Encryption in the ProCurve Wireless Access Point 530
WLAN Interface Level Commands
security <wpa-802.1X>
wpa-allowed
[no] wpa2-allowed
[no] rsn-preauthentication
[no] wpa-cipher-tkip
[no] wpa-cipher-aes
radius-accounting <primary | secondary>
<ip <ip> | port <port> | key <key>>
radius<primary | secondary>
Additional
Notes
Requirements
WPA supported
• When both TKIP and
station required.
CCMP authentication
methods are set, both
TKIP and AES stations
If there is a mix of
can associate with the
stations, some
access point. WPA
supporting WPA2
stations must have either
and others
a valid TKIP or an AES
supporting the
key to communicate.
original WPA,
• For WPA2 wireless
configure for both
stations to send pre-
(set both wpa/wpa2
authentication packets,
allowed).
enable Pre-
authentication.
- Quick Links:
- Getting Started
- Ip Addressing
Hide quick links:
Advertisement
Chapters
Table of Contents
