Filter
Top Products
308 Configuring user encryption
NN47250-500 (320657-F Version 02.01)
To enable RSN in service profile wpa, type the following command:
WSS# set service-profile rsn rsn-ie enable
success: change accepted.
Specifying the RSN cipher suites
To use RSN, at least one cipher suite must be enabled. You can enable one or more of the following cipher
suites:
• CCMP
•TKIP
• 40-bit WEP
• 104-bit WEP
By default, TKIP is enabled and the other cipher suites are disabled.
To enable or disable cipher suites, use the following commands:
set service-profile name cipher-ccmp {enable | disable}
set service-profile name cipher-tkip {enable | disable}
set service-profile name cipher-wep104 {enable | disable}
set service-profile name cipher-wep40 {enable | disable}
To enable the CCMP cipher suite in service profile rsn, type the following command:
WSS# set service-profile rsn cipher-ccmp enable
success: change accepted.
After you type this command, the service profile supports both TKIP and CCMP.
Changing the TKIP countermeasures timer value
To change the TKIP countermeasures timer, see “Changing the TKIP countermeasures timer value”
(page 304). The procedure is the same for WPA and RSN.
Enabling PSK authentication
To enable PSK authentication, see “Enabling PSK authentication” (page 304). The procedure is the same for
WPA and RSN.
Note. Microsoft Windows XP does not support WEP with RSN. To configure a service
profile to provide WEP for XP clients, leave RSN disabled and see “Configuring WEP”
(page 309).