Filter
Top Products
6-145
Using the Command Line Interface
• In a mixed-mode environment with clients using static and dynamic keys,
select transmit key index 2, 3, or 4. The access point uses transmit key
index 1 for the generation of dynamic keys.
Example
cipher-suite
This command defines the cipher algorithm used to encrypt the global key for
broadcast and multicast traffic when using Wi-Fi Protected Access (WPA) security.
Syntax
cipher-suite <aes-ccmp | tkip | wep>
• aes-ccmp - Use AES-CCMP encryption for the unicast and multicast
cipher.
• tkip - Use TKIP encryption for the multicast cipher. TKIP or AES-CCMP can
be used for the unicast cipher depending on the capability of the client.
• wep - Use WEP encryption for the multicast cipher. TKIP or AES-CCMP can
be used for the unicast cipher depending on the capability of the client.
Default Setting
wep
Command Mode
Interface Configuration (Wireless-VAP)
Command Usage
• WPA enables the access point to support different unicast encryption keys
for each client. However, the global encryption key for multicast and
broadcast traffic must be the same for all clients.
• If any clients supported by the access point are not WPA enabled, the
cipher-suite algorithm must be set to WEP.
• WEP is the first generation security protocol used to encrypt data crossing
the wireless medium using a fairly short key. Communicating devices must
use the same WEP key to encrypt and decrypt radio signals. WEP has many
security flaws, and is not recommended for transmitting highly sensitive
data.
• TKIP provides data encryption enhancements including per-packet key
hashing (i.e., changing the encryption key on each packet), a message
integrity check, an extended initialization vector with sequencing rules,
Outdoor 11a Building to Building (if-wireless g: VAP[0])#transmit-key 2
Outdoor 11a Building to Building (if-wireless g)#