Segmentación de mercado

To add a new security profile, click Add in the Wireless Security Configuration screen. The Wireless Security Add Row

screen appears.

Figure 5-16 Add Wireless Security Profile

Tabulated below are the ‘Wireless Security Profile’ parameters and the method to configure the configurable parameters:

Parameter Description

Profile Name Specifies the name of the Security Profile that is being created. To configure, enter the desired Profile Name.

Authentication Mode

Specifies the security mode for the wireless network. Select any of the following authentication modes for the wireless interface from the drop down menu:

a. None: If you select this Authentication Mode, then no security exists on the wireless network.

b. WEP (Wired Equivalent Privacy): Select WEP from the Authentication mode drop down menu and the configuration screen appears:

Figure 5-17 WEP Authentication Mode

Authentication Mode

: Enable only one security profile of WEP Authentication mode at once, when multiple VAPs are enabled.

c. PSK (Pre-Shared Key): Select PSK from the Authentication mode drop down menu and the configuration screen appears:

Figure 5-18 PSK Authentication Mode

Configure the following parameters in PSK Authentication Mode:

Parameter Description

Key This parameter allows you to configure the WEP key for

the wireless security. Enter a WEP Key in the Key box. – For 64-bit encryption, an encryption key is 10

hexadecimal characters (0-9 and A-F) or 5 ASCII characters. See ASCII Character Chart.

– For 128-bit encryption, an encryption key is 26 hexadecimal characters or 13 ASCII characters. – For 152-bit encryption, an encryption key is 32

hexadecimal characters or 16 ASCII characters.

: Special characters like - = \ " '? / space are not allowed while configuring the WEP key.

Authentication Mode

d. 802.1x: Select 802.1x (Dot1x) from the Authentication mode drop down menu and the configuration screen appears:

Figure 5-19 802.1x Authentication Mode

Configure the following parameters in 802.1x (Dot1x) Authentication Mode:

Parameter Description

Encryption Type Specifies the Encryption Type.

By default, it is taken as WPA-TKIP. To configure, select either WPA-TKIP, WPA2-AES or WPA-WPA2AES-TKIP from the drop down menu.

:When the Encryption Type is set to WPA-WPA2AES-TKIP, the device supports clients with the encryption type of either WPA-TKIP or WPA2-AES.

PSK Specifies the pass phrase that derives the PSK. To

configure, enter a security key ranging from 8 to 63 characters in the PSK box.

: Special characters like - = \ " '? / space are not allowed while configuring the pass phrase.

Rekeying Interval Specifies the interval at which the device will send group keys to all the associated clients.

By default the Rekeying Interval value is set to 43200. To configure, enter a value ranging from 900 to 65535 seconds.

Click Add, to save the new profile with configured parameters.

:

• You can add or edit a maximum of 16 security profiles.

• In case of a WDS link, supported security keys are:

– For WEP Encryption, key length should be (ASCII 5/13/16) (Hex 10/26/32)

– For AES or TKIP encryption, key length should be 16 ASCII characters or 32 Hex digits.

– For 11na/11ng modes, WEP/TKIP Encryption will work only in Legacy (11 a/b/g) data rates.

• If the PSK and WEP key passwords are not configured, then the AP device uses the following default passwords:

– WEP : 1234567890

– PSK: 1234679890123456

• Proxim does not recommend using WEP/TKIP in 11n operational mode. 5.5.1.2 Edit an Existing AP Security Profile

To edit an existing AP security profile, click the Edit icon against the AP security profile that you wish to edit, in the

Wireless Security Configuration screen. The Wireless Security Edit Row screen appears. Authentication

Mode

Entry Status Specifies the status for the security profile. By default, itis enabled. To configure, select the

Entry Status from the drop down menu.

Parameter Description

Encryption Type Specifies the Encryption Type. By default, it is taken as WEP. To configure, enter the Encryption Type as either WEP, WPA-TKIP, WPA2-AES or WPA-WPA2AES-TKIP from the drop down menu.

:When the Encryption Type is set to WPA-WPA2AES-TKIP, the device supports clients with the encryption type of either WPA-TKIP or WPA2-AES.

Rekeying Interval Specifies the interval at which the device will send group keys to all the associated clients.

By default, the Rekeying Interval value is set to 43200. To configure, enter a value ranging from 900 to 65535 seconds.

Configure the following parameters:

Click OK and COMMIT, to save the configured parameters.

5.5.2 RADIUS

Remote Authentication Dial In User Service (RADIUS) is a networking protocol that provides centralized Authentication, Authorization, and Accounting (AAA) management for nodes to connect and use a network service.

The AP device supports the following Authentication and Accounting mechanisms:

• MAC Access Control Via RADIUS Authentication: Allows only the MAC addresses that are registered on the RADIUS server to access the wireless network.

• 802.1x Authentication using RADIUS: Refer 802.1x Authentication

• RADIUS Accounting: By using an external RADIUS server, the AP device can track and record the length of client sessions by sending the RADIUS accounting messages per RFC2866. When a wireless client is successfully authenticated, RADIUS accounting is initiated by sending an “Accounting Start” request to the RADIUS server. When the wireless client session ends, an “Accounting Stop” request is sent to the RADIUS server.