beautypg.com

Proxim AP-4000 User Manual

Page 120

background image

Advanced Configuration

AP-4000 Series User Guide

SSID/VLAN/Security

120

2. Click Add in the Security Profile Table to create a new entry. To modify an existing profile, select the profile and click

Edit. To delete an existing profile, select the profile and click Delete. You cannot delete a Security Profile used in an
SSID. Also, the first Security Profile cannot be deleted.

3. Configure one or more types of wireless stations (security modes) that are allowed access to the AP under the

security profile. The WEP/PSK parameters are separately configurable for each security mode. To enable a security
mode in the profile (Non Secure Station, WEP Station, 802.1x Station, WPA Station, WPA-PSK Station, 802.11i
(WPA2) Station, 802.11i-PSK Station), check the box next to the mode. See

Figure 4-42 on page 122

.

If the security mode selected in a profile is WEP, WPA-PSK, or 802.11i-PSK, then you must configure the WEP or
Pre-Shared Keys.

NOTE: If an 802.1x client that has already been authenticated attempts to switch to WEP, or if a WEP client that has

already been connected attempts to switch to 802.1x, the AP will not allow the client to switch immediately. If
this happens, either reboot the AP or disable the client/roam to a new AP for five minutes, and then attempt to
reconnect to the AP. If the client is still unable to connect after waiting five minutes, reboot the AP.

4. Configure the parameters as follows for each enabled security mode. See

Figure 4-42 on page 122

.

Non Secure Station:

Authentication Mode: None. The AP allows access to Stations without authentication.
— Non secure station should be used only with WEP or 802.1x security mode.

Cipher: None

WEP Station:

Authentication Mode: None

Cipher: WEP

Encryption Key 0, Encryption Key 1, Encryption Key 2, Encryption Key 3

Encryption Key Length: 64, 128, or 152 Bits.
— For 64-bit encryption, an encryption key is 10 hexadecimal characters (0-9 and A-F) or 5 ASCII characters

(see

ASCII Character Chart

).

— For 128-bit encryption, an encryption key is 26 hexadecimal characters or 13 ASCII characters.
— For 152-bit encryption, an encryption key is 32 hexadecimal characters or 16 ASCII characters.

Encryption Transmit Key: select Key 0, Key 1, Key 2, or Key 3

802.1x Station:

Authentication Mode: 802.1x

Cipher: WEP

Encryption Key Length: 64 or 128 Bits.
— If 802.1x is enabled simultaneously with WEP, the 802.1x Station’s encryption key length is determined by

the WEP encryption key.

WPA Station:

Authentication Mode: 802.1x

Cipher: TKIP

WPA-PSK Station:

Authentication Mode: PSK

Cipher: TKIP

PSK Passphrase: an 8-63 character user-defined phrase. It is recommended a passphrase of at least 13
characters, including both letters and numbers, and upper and lower case characters, be used to ensure that
the generated key cannot be easily deciphered by network infiltrators.

802.11i Station:

Authentication Mode: 802.1x