Filter
Top Products
280 Configuring APs
NN47250-500 (Version 03.01)
Service profiles
A service profile controls advertisement and encryption for an SSID. You can specify the following:
• Whether SSIDs that use the service profile are beaconed
• Whether the SSIDs are encrypted or clear (unencrypted)
• For encrypted SSIDs, the encryption settings to use
• The fallthru authentication type for users that are not authenticated with 802.1X or MAC authentication
Table 6 lists the parameters controlled by a service profile and their default values.
Table 6: Defaults for service profile parameters
Parameter Default Value
Radio Behavior When Parameter Set
To Default Value
attr No attributes
configured
Does not assign the SSID’s authorization
attribute values to SSID users, even if
attributes are not otherwise assigned.
auth-dot1x enable When the Wi-Fi Protected Access (WPA)
information element (IE) is enabled, uses
802.1X to authenticate WPA clients.
auth-fallthru none Denies access to users who do not match
an 802.1X or MAC authentication rule for
the SSID requested by the user.
auth-psk disable Does not support using a preshared key
(PSK) to authenticate WPA clients.
beacon enable Sends beacons to advertise the SSID
managed by the service profile.
cac-mode none Does not limit the number of active user
sessions based on Call Admission Control
(CAC).
cac-session 14 If session-based CAC is enabled
(cac-mode is set to session), limits the
number of active user sessions on a radio
to 14.
cipher-ccmp disable Does not use Counter with Cipher Block
Chaining Message Authentication Code
Protocol (CCMP) to encrypt traffic sent to
WPA clients.
cipher-tkip enable When the WPA IE is enabled, uses
Temporal Key Integrity Protocol (TKIP) to
encrypt traffic sent to WPA clients.
cipher-wep104 disable Does not use Wired Equivalent Privacy
(WEP) with 104-bit keys to encrypt traffic
sent to WPA clients.
cipher-wep40 disable Does not use WEP with 40-bit keys to
encrypt traffic sent to WPA clients.