Prestige 660H/HW Series User’s Guide
307 Chapter 33 System Security
Table 103 Menu 23.4 System Security : IEEE802.1x
FIELD DESCRIPTION
Wireless Port
Control
Press [SPACE BAR] and select a security mode for the wireless LAN access.
Select No Authentication Required to allow any wireless stations access to your
wired network without entering usernames and passwords. This is the default
setting.
Selecting Authentication Required means wireless stations have to enter
usernames and passwords before access to the wired network is allowed.
Select No Access Allowed to block all wireless stations access to the wired
network.
The following fields are not available when you select No Authentication Required
or No Access Allowed.
ReAuthentica-
tion Timer
(in second)
Specify how often a client has to re-enter username and password to stay
connected to the wired network.
This field is activated only when you select Authentication Required in the
Wireless Port Control field. Enter a time interval between 10 and 9999 (in
seconds). The default time interval is 1800 seconds (or 30 minutes).
Idle Timeout (in
second)
The Prestige automatically disconnects a client from the wired network after a
period of inactivity. The client needs to enter the username and password again
before access to the wired network is allowed.
This field is activated only when you select Authentication Required in the
Wireless Port Control field. The default time interval is 3600 seconds (or 1 hour).
Key Management
Protocol
Press [SPACE BAR] to select 802.1x, WPA or WPA-PSK and press [ENTER].
Dynamic WEP
Key Exchange
This field is activated only when you select Authentication Required in the
Wireless Port Control field. Also set the Authentication Databases field to
RADIUS Only. Local user database may not be used.
Select Disable to allow wireless stations to communicate with the access points
without using Dynamic WEP Key Exchange.
Select 64-bit WEP or 128-bit WEP to enable data encryption.
Up to 32 stations can access the Prestige when you configure Dynamic WEP Key
Exchange. This field is not available when you set Key Management Protocol to
WPA or WPA-PSK.
PSK Type a pre-shared key from 8 to 63 case-sensitive ASCII characters (including
spaces and symbols) when you select WPA-PSK in the Key Management
Protocol field.
WPA Mixed
Mode
Select Enable to activate WPA mixed mode. Otherwise, select Disable and
configure Group Data Privacy field.
Data Privacy for
Broadcast/
Multicast packets
This field allows you to choose TKIP (recommended) or WEP for broadcast and
multicast (“group”) traffic if the Key Management Protocol is WPA and WPA
Mixed Mode is disabled. WEP is used automatically if you have enabled WPA
Mixed Mode.
All unicast traffic is automatically encrypted by TKIP when WPA or WPA-PSK Key
Management Protocol is selected.
WPA Broadcast/
Multicast Key
Update Timer
The WPA Broadcast/Multicast Key Update Timer is the rate at which the AP (if
using WPA-PSK key management) or RADIUS server (if using WPA key
management) sends a new group key out to all clients. The re-keying process is the
WPA equivalent of automatically changing the WEP key for an AP and all stations in
a WLAN on a periodic basis. Setting of the WPA Broadcast/Multicast Key Update
Timer is also supported in WPA-PSK mode. The Prestige default is 1800 seconds
(30 minutes).