Express method – H3C Technologies H3C Intelligent Management Center User Manual

223

{

Hide SSID—Specify this option to hide the SSID in beacon frames sent by the fat AP. When

this parameter is selected, clients cannot obtain the SSID from the beacon frames and must
configure the SSID before accessing the wireless network. If this parameter is not selected,

clients can obtain the SSID from the beacon frames to access the wireless network.

{

Authentication Mode—Authentication mode of the service policy. Options are:

−

Open System—Allows all clients requesting for authentication to directly pass
authentication.

−

Shared Key—Requires clients to use the same shared key as that configured on the
device. Specify Shared Key only when you select WEP40 or WEP104 as the cipher suite.

−

All—Allows clients to use either the Open System mode or the Shared Key mode as
needed.

When the encryption mode is Clear, the authentication mode can only be Open System.
When the encryption mode is Crypto, the authentication mode options are Open System,
Shared Key, and All.

{

Max Clients—Enter the maximum number of clients that can use the service policy.

7.

If Crypto is selected as the Encryption Mode, set the following security parameters as needed:

−

Security IE—Specify the security IE used in the beacon frames and probe responses sent
by the fat AP. Options are None, RSN, WPA, and All. None indicates no security IE is

configured. All indicates that both RSN and WPA are configured.

−

RSN—A robust security network is a security network that only allows the creation of
robust security network associations to provide greater protection than WPA.

−

WPA—WPA operates in either WPA-PSK (or Personal) mode or WPA-802.1X (or
Enterprise) mode. In Personal mode, a preshared key or pass-phrase is used for

authentication. In Enterprise mode, 802.1X and RADIUS servers and the EAP are used for
authentication.

For more information about RSN and WPA, see the related device manual.

{

Cipher Suite—Specify the cipher suite used for data frame encryption and decryption.
Options are TKIP, CCMP, WEP40, and WEP104. You can set the key index and key only

when you select WEP40 or WEP104. You cannot select both WEP40 and WEP104.

−

WEP—Includes WEP40 and WEP104, and they both are static WEP encryption
mechanisms. A WEP40 key is 40 bits and a WEP104 key is 104 bits. WEP uses RC4

encryption and requires that all clients accessing the wireless network use the same key.

−

TKIP—Temporal key integrity Protocol uses the RC4 algorithm as WEP does, but provides
more secure protection for WLAN.

−

CCMP—Counter mode with CBC-MAC Protocol is a Counter-Mode/CBC-MAC
mechanism based on AES to provide high security.

{

Key Index—Enter the authentication key index for clients.

{

Key—Enter the authentication key for clients. For WEP40, the key is a string of 5
alphanumeric characters. For WEP104, the key is a string of 13 alphanumeric characters.

8.

Click OK.

Express method

To add a service policy by using the express method:

1.

Click the Service tab.

2.

From the navigation tree, select WLAN Manager > Resource Management > Fat APs.