beautypg.com

Motorola AP-51XX User Manual

Page 241

background image

Configuring Access Point Security

6-23

6.

Configure the

Key Settings

area as needed to set an ASCII Passphrase and key values.

Default (hexadecimal) 256-bit keys for WPA/TKIP include:

1011121314151617

18191A1B1C1D1E1F

2021222324252627

28292A2B2C2D2E2F

7.

Enable

WPA2-TKIP Support

as needed to allow WPA2 and TKIP client interoperation.

8.

Configure the

Fast Roaming (802.1x only)

field as required to enable additional access

point roaming and key caching options. This feature is applicable only when using 802.1x
EAP authentication with WPA2-TKIP.

ASCII Passphrase

To use an ASCII passphrase (and not a hexadecimal value), select
the checkbox and enter an alphanumeric string of 8 to 63
characters. The alphanumeric string allows character spaces. The
access point converts the string to a numeric value. This
passphrase saves the administrator from entering the 256-bit key
each time keys are generated.

256-bit Key

To use a hexadecimal value (and not an ASCII passphrase), select
the checkbox and enter 16 hexadecimal characters into each of the
four fields displayed.

Allow WPA2-TKIP
clients

WPA2-TKIP support enables WPA2 and TKIP clients to operate
together on the network.

Pre-Authentication

Selecting this option enables an associated MU to carry out an
802.1x authentication with another access point before it roams to
it. The access point caches the keying information of the client until
it roams to the other access point. This enables the roaming client
to start sending and receiving data sooner by not having to do
802.1x authentication after it roams. This feature is only supported
when 802.1x EAP authentication and WPA2-TKIP is enabled.

NOTE

PMK key caching is enabled internally by default for WPA2-TKIP when
802.1x EAP authentication is enabled.