310 Configuring user encryption
NN47250-500 (320657-F Version 02.01)
Static WEP encryption is disabled by default. To enable static WEP encryption, configure the static WEP keys
and assign them to unicast and multicast traffic. Make sure you configure the same static keys on the clients.
To support dynamic WEP in a WPA environment, enable WPA and enable the WEP-40 or WEP-104 cipher
suite. (See “Configuring WPA” (page 303).)
This section describes how to configure and assign static WEP keys. (To change other key-related settings, see
“Managing 802.1X encryption keys” (page 575).)
Figure 4 shows an example of a radio configured to provide static and dynamic WEP encryption for non-WPA
clients. The radio uses dynamically generated keys to encrypt traffic for dynamic WEP clients. The radio also
encrypts traffic for static WEP clients whose keys match the keys configured on the radio.
Figure 4. Encryption for dynamic and static WEP
User D
TKIP
WPA
User C
Static WEP
-Unicast key = a1b1c1d1e1
-Multicast key = a2b2c2d2e2
Non-WPA
User B
Dynamic 40-bit WEP
WPA
User A
Dynamic WEP
Non-WPA
840-9502-0029
WPA disabled
Dynamic WEP enabled
Static WEP enabled
-Unicast key = a1b1c1d1e1
-Multicast key = a2b2c2d2e2
WLAN Security Switch