WS 2000 Use Cases 9-53
Leo also selects Allow WPA-TKIP clients in the section labelled WPA-CCMP Mixed Mode. WPA-TKIP is an earlier version
of the WPA encryption method. WPA2 is more secure, but not all wireless clients in Leo’s office are WPA2-capable. Selecting
this option allows the older clients to use WPA-TKIP when they are not WPA2-CCMP-capable.
Leo also selects Pre-Authentication and Opportunistic Key Caching in the Fast Roaming section. These are options
that are designed to make it easier for 802.1x wireless clients to roam within a WLAN. Under Pre-Authentication, a
wireless client connected to one Access Port can communicate with other Access Ports and begin the authentication
procedure before beginning to actual use that Access Port for network traffic. Under Opportunistic Key Caching, a
wireless client which has agreed upon a given Pairwise Master Key (PMK) with one Access Port on a given WS 2000 is
allowed to use that same PMK with other Access Ports connected to the same WS 2000. Both options increase the speed
of roaming under 802.1x security and Leo enables both of them.
Leo clicks the Ok button to save his WPA2-CCMP settings, then the Apply button to confirm the WLAN configuration.
This completes configuration of the engineering WLAN. The sales and marketing WLAN and the administration WLAN are
configured exactly the same way, with the sole exception that they take different names and ESSIDs.
After these WLANs are configured, the next step is to configure the Access Ports.
WLAN WS 2000 Name ESSID
Sales and Marketing MrkWLAN Marketing
Administration AdmWLAN Administration