3Com WX2200 3CRWX220095A Switch User Manual


 
282 CHAPTER 13: CONFIGURING USER ENCRYPTION
You can configure an SSID to support any combination of WPA, RSN, and
non-WPA clients. For example, a radio can simultaneously use Temporal
Key Integrity Protocol (TKIP) encryption for WPA clients and WEP
encryption for non-WPA clients.
The SSID type must be crypto (encrypted) for encryption to be used. If the
SSID type is clear, wireless traffic is not encrypted, regardless of the
encryption settings.
MSS does not encrypt traffic in the wired part of the network. MSS does
not encrypt wireless or wired traffic for users who associate with an
unencrypted (clear) SSID.
Table 23 lists the encryption types supported by MSS and their default
states.
Table 23 Wireless Encryption Defaults
Encryption Type Client Support Default State
Configuration Required
in MSS
RSN RSN clients
Non-RSN clients
Disabled Enable the RSN
information element (IE).
Specify the supported
cipher suites (CCMP,
TKIP, 40-bit WEP,
104-bit WEP). TKIP is
enabled by default when
the RSN IE is enabled.
WPA WPA clients
Non-WPA
clients
Disabled Enable the WPA
information element (IE).
Specify the supported
cipher suites (CCMP,
TKIP, 40-bit WEP,
104-bit WEP). TKIP is
enabled by default when
the WPA IE is enabled.
Dynamic WEP WEP clients
(WPA and RSN
not supported)
Enabled None
Static WEP WEP clients
(WPA and RSN
not supported)
Disabled Configure the static
key(s).
Assign keys to multicast
and unicast traffic.