Filter
Top Products
304 CHAPTER 13: CONFIGURING USER ENCRYPTION
force-image download: YES
Radio 1: type: 802.11g, mode: enabled, channel: 6
tx pwr: 1, profile: rp1
auto-tune max-power: default
Radio 2: type: 802.11a, mode: enabled, channel: 36
tx pwr: 1, profile: rp1
auto-tune max-power: default
8 Save the configuration. Type the following command:
WX1200# save config
success: configuration saved.
Enabling Dynamic
WEP in a WPA
Network
The following example shows how to configure MSS to provide
authentication and encryption for 801.X dynamic WEP clients, and for
801.X WPA clients using TKIP. This example assumes that pass-through
authentication is used for all users. The commands are the same as those
in “Enabling WPA with TKIP” on page 302, with the addition of a
command to enable a WEP cipher suite. The WEP cipher suite allows
authentication and encryption for both WPA and non-WPA clients that
want to authenticate using dynamic WEP.
1 Create an authentication rule that sends all 802.1X users of SSID mycorp
in the EXAMPLE domain to the server group shorebirds for
authentication. Type the following command:
WX1200# set authentication dot1x ssid thiscorp EXAMPLE\*
pass-through shorebirds
2 Create a service profile named wpa-wep for the SSID. Type the following
command:
WX1200# set service-profile wpa-wep
success: change accepted.
3 Set the SSID in the service profile to thiscorp. Type the following
command:
WX1200# set service-profile wpa-wep ssid-name thiscorp
success: change accepted.
4 Enable WPA in service profile wpa-wep. Type the following command:
WX1200# set service-profile wpa-wep wpa-ie enable
success: change accepted.
5 Enable the WEP40 cipher suite in service profile wpa-wep. Type the
following command:
WX1200# set service-profile wpa-wep cipher-wep40 enable
success: change accepted.