Vlans and security profiles, Configuring security profiles – Proxim AP-4000 User Manual
Page 119
Advanced Configuration
AP-4000 Series User Guide
SSID/VLAN/Security
119
VLANs and Security Profiles
The AP-4000/4000M/4900M allows you to segment wireless networks into multiple sub-networks based on Network
Name (SSID) and VLAN membership. A Network Name (SSID) identifies a wireless network. Clients associate with
Access Points that share an SSID. During installation, the Setup Wizard prompts you to configure a Primary Network
Name for each wireless interface.
After initial setup and once VLAN is enabled, the AP can be configured to support up to 16 SSIDs per wireless interface
to segment wireless networks based on VLAN membership.
Each VLAN can associated to a Security Profile and RADIUS Server Profiles. A Security Profile defines the allowed
wireless clients, and authentication and encryption types. See the following sections for configuration details.
Configuring Security Profiles
Security policies can be configured and applied on the AP as a whole, or on a per VLAN basis. When VLAN is disabled
on the AP, the user can configure a security profile for each interface of the AP. When VLANs are enabled and Security
per SSID is enabled, the user can configure a security profile for each VLAN.
The user defines a security policy by specifying one or more values for the following parameters:
• Wireless STA types (WPA station, 802.11i (WPA2) station, 802.1x station, WEP station, WPA-PSK, and 802.11i-PSK)
that can associate to the AP.
• Authentication mechanisms (802.1x, RADIUS MAC authentication) that are used to authenticate clients for each type
of station.
• Cipher Suites (CCMP, TKIP, WEP, None) used for encapsulating the wireless data for each type of station.
Up to 16 security profiles can be configured per wireless interface.
NOTE: Mesh security is configured on the
tab.
1. Click Configure > SSID/VLAN/Security > Security Profile.
Figure 4-41 Security Profile Configuration