WS 2000 Wireless Switch System Reference Guide5-6
2. Check the Answer Broadcast ESS checkbox to enable adopted Access Ports to transmit the WLAN’s Extended Service
Set Identification (ESSID). The purpose of allowing WLANs to answer the broadcast ESS is to identify Access Ports that
are associated with the WLAN. This might be appropriate, for example, in a customer environment, such as a “hot spot.”
Disable this option if broadcasting the WLAN’s ESSID poses a security risk, such as with a private, corporate network.
The default setting is unchecked.
3. Click the Apply button to save changes.
For more advanced WLAN settings see Quality of Service Configuration or Configuring Wireless LAN Security later in this
chapter.
Configuring Wireless LAN Security
The WS 2000 Wireless Switch allows the administrator to set the type and level of security for each WLAN. These security
measures do not control communications from the WAN; instead, they control communication from the clients within the
WLAN.
In the Network Configuration --> Wireless --> <WLAN name> --> <WLAN Name> Security screen, the administrator
can set the user authentication method and the encryption method, as well as define a set of rules that control which MUs
can communicate through the WLAN.
Selecting the Authentication Method
The authentication method sets a challenge-response procedure for validating user credentials such as username,
password, and sometimes secret-key information. The WS 2000 Wireless Switch provides two methods for authenticating
users: 802.1x EAP and Kerberos. The administrator can select between these two methods. If WLAN security is not an
issue, an administrator can decide not to enable authentication (No Authentication), because authentication protocols
create overhead for the switch’s processor.