Resetting the access point password, Enabling authentication and encryption schemes – Brocade Mobility 7131 Access Point Product Reference Guide (Supporting software release 4.4.0.0 and later) User Manual

192

Brocade Mobility 7131 Access Point Product Reference Guide

53-1002517-01

6

Resetting the Access Point Password

The access point has a means of restoring its password to its default value. Doing so also reverts
the access point’s security, radio and power management configuration to their default settings.
Only an installation professional should reset the access point’s password and promptly define a
new restrictive password.

CAUTION

Only a qualified installation professional should set or restore the access point’s radio and power
management configuration in the event of a password reset.

Enabling Authentication and Encryption Schemes

To complement the built-in firewall filters on the WAN side of the Mobility 7131 Access Point, the
WLAN side of the Mobility 7131 Access Point supports authentication and encryption schemes.
Authentication is a challenge-response procedure for validating user credentials such as
username, password, and sometimes secret-key information. The Mobility 7131 Access Point
provides two schemes for authenticating users: 802.1x EAP and Kerberos.

Encryption applies a specific algorithm to alter its appearance and prevent unauthorized reading.
Decryption applies the algorithm in reverse to restore the data to its original form. Sender and
receiver must employ the same encryption/decryption method to interoperate.

Wired Equivalent Privacy (WEP) is available in two encryption modes: 40 bit (also called WEP 64)
and 104 bit (also called WEP 128). The 104-bit encryption mode provides a longer algorithm
(better security) that takes longer to decode (hack) than the 40-bit encryption mode.

Each WLAN (16 WLANs available in total to an Mobility 7131 Access Point regardless of the model)
can have a separate security policy. However, more than one WLAN can use the same security
policy. Therefore, to avoid confusion, do not name security policies the same name as WLANs.
Once security policies have been created, they are selectable within the Security field of each
WLAN screen. If the existing default security policy does not satisfy the data protection
requirements of a specific WLAN, a new security policy (using the authentication and encryption
schemes discussed above) can be created.

CAUTION

Mesh configurations do not support mismatched security policies when operating using a mixed
mode scheme. Ensure the encryptions and authentication schemes used by APs in a mesh
network are complimentary with one another.

To enable an existing WLAN security policy or create a new policy:

1. Select Network Configuration -> Wireless -> Security from the Mobility 7131 Access Point menu

tree.

The Security Configuration screen displays.

2. If a new security policy is required, click the Create button.