3Com WX4400 3CRWX440095A User Manual

282

C

HAPTER

13: C

ONFIGURING

U

SER

E

NCRYPTION

You can configure an SSID to support any combination of WPA, RSN, and
non-WPA clients. For example, a radio can simultaneously use Temporal
Key Integrity Protocol (TKIP) encryption for WPA clients and WEP
encryption for non-WPA clients.

The SSID type must be crypto (encrypted) for encryption to be used. If the
SSID type is clear, wireless traffic is not encrypted, regardless of the
encryption settings.

MSS does not encrypt traffic in the wired part of the network. MSS does
not encrypt wireless or wired traffic for users who associate with an
unencrypted (clear) SSID.

Table 23 lists the encryption types supported by MSS and their default
states.

Table 23 Wireless Encryption Defaults

Encryption Type

Client Support Default State

Configuration Required
in MSS

RSN

RSN clients

Non-RSN clients

Disabled

„

Enable the RSN
information element (IE).

„

Specify the supported
cipher suites (CCMP,
TKIP, 40-bit WEP,
104-bit WEP). TKIP is
enabled by default when
the RSN IE is enabled.

WPA

WPA clients

Non-WPA
clients

Disabled

„

Enable the WPA
information element (IE).

„

Specify the supported
cipher suites (CCMP,
TKIP, 40-bit WEP,
104-bit WEP). TKIP is
enabled by default when
the WPA IE is enabled.

Dynamic WEP

WEP clients

(WPA and RSN
not supported)

Enabled

None

Static WEP

WEP clients

(WPA and RSN
not supported)

Disabled

„

Configure the static
key(s).

„

Assign keys to multicast
and unicast traffic.