Cisco AIR-AP521G-A-K9 Configuration Guide - Page 51

Add VLAN, Web Authentication, No Security, WPA-PSK, shared key, ASCII - private server

Get Cisco AIR-AP521G-A-K9 - 521 Wireless Express Access Point PDF manuals and user guides
UPC - 882658161988
View all Cisco AIR-AP521G-A-K9 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 51 highlights

Chapter 4 Creating and Modifying WLANs and VLANs Creating a New WLAN Step 14 Step 15 Step 16 Step 17 Step 18 Accept the VLAN or click the drop-down arrow to choose another configured VLAN. To add a VLAN, click Add VLAN (for instructions on adding a VLAN refer to the "Adding a VLAN" section on page 4-10). Check Web Authentication if you want to create a guest or employee user. This option is enabled by default for Guest WLANs. Click the Security Type drop-down arrow and choose one of these security options: • No Security-This is the least secure option. Select it only for an SSID that is used in a public place (guest SSID), and associate it with a VLAN that restricts access to your network. There is no encryption, and the authentication type is open authentication. • WEP-This security setting requires that the access point and the client device (a device that connects to the wireless device such as a laptop or a PC) share the same WEP key to keep the communication private. • EAP-This security setting enables IEEE 802.1X authentication and requires you to select the IP address of a RADIUS server. The encryption type is WEP, and the authentication type is IEEE 802.1x. • WPA-This security setting is more secure than the EAP setting. It enables WPA authentication and requires you to select the IP address of a RADIUS server. Client devices that associate with the access point by using this SSID must be WPA-capable. • WPA-PSK-Select this security setting when you want to use the WPA encryption and you do not have access to a RADIUS server. It requires that the access point and the client device share the same WPA-PSK. The key can be from 8 to 63 characters long. • WPA2-This security setting is more secure than the WPA setting. It enables WPA2 authentication and requires you to select the IP address of a RADIUS server. Client devices that associate with the access point by using this SSID must be WPA2-capable. • WPA2-PSK-Select this security setting when you want to use WPA2 encryption and you do not have access to a RADIUS server. It requires that the access point and the client device share the same WPA2-PSK. The key can be from 8 to 63 characters long. The authentication type is WPA2-PSK. • MAC-Select this security setting when you want to authenticate client devices by using MAC address-based authentication. There is no encryption, and the authentication type is IEEE 802.1x. If you choose WEP security, perform these steps: a. In the Authentication field, click the drop-down arrow and choose Open or shared key. b. In the Key Format field, click the drop-down arrow and choose Hex or ASCII. c. Click the Hex Key field drop-down arrow and choose 1, 2, 3, 4. d. Click the key size drop-down arrow and choose one of these options: - 104 bits-Requires 13 ASCII characters or 26 Hex digits. - 40 bits-Requires 5 ASCII characters or 20 Hex digits. e. If you selected a hex key format, choose one of these options: - Enter the encryption key (see key size above). - Enter a passphrase (8 to 63 characters) and click Generate for the encryption key to be automatically created (see Figure 4-7). OL-15283-01 Cisco 500 Series Wireless Express Mobility Controller Configuration Guide 4-5

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
4-5
Cisco 500 Series Wireless Express Mobility Controller Configuration Guide
OL-15283-01
Chapter 4
Creating and Modifying WLANs and VLANs
Creating a New WLAN
Step 14
Accept the VLAN or click the drop-down arrow to choose another configured VLAN.
Step 15
To add a VLAN, click
Add VLAN
(for instructions on adding a VLAN refer to the
“Adding a VLAN”
section on page 4-10
).
Step 16
Check
Web Authentication
if you want to create a guest or employee user. This option is enabled by
default for Guest WLANs.
Step 17
Click the Security Type drop-down arrow and choose one of these security options:
No Security
—This is the least secure option. Select it only for an SSID that is used in a public place
(guest SSID), and associate it with a VLAN that restricts access to your network. There is no
encryption, and the authentication type is open authentication.
WEP
—This security setting requires that the access point and the client device (a device that
connects to the wireless device such as a laptop or a PC) share the same WEP key to keep the
communication private.
EAP
—This security setting enables IEEE 802.1X authentication and requires you to select the IP
address of a RADIUS server. The encryption type is WEP, and the authentication type is IEEE
802.1x.
WPA
—This security setting is more secure than the EAP setting. It enables WPA authentication and
requires you to select the IP address of a RADIUS server. Client devices that associate with the
access point by using this SSID must be WPA-capable.
WPA-PSK
—Select this security setting when you want to use the WPA encryption and you do not
have access to a RADIUS server. It requires that the access point and the client device share the same
WPA-PSK. The key can be from 8 to 63 characters long.
WPA2
—This security setting is more secure than the WPA setting. It enables WPA2 authentication
and requires you to select the IP address of a RADIUS server. Client devices that associate with the
access point by using this SSID must be WPA2-capable.
WPA2-PSK
—Select this security setting when you want to use WPA2 encryption and you do not
have access to a RADIUS server. It requires that the access point and the client device share the same
WPA2-PSK. The key can be from 8 to 63 characters long. The authentication type is WPA2-PSK.
MAC
—Select this security setting when you want to authenticate client devices by using MAC
address-based authentication. There is no encryption, and the authentication type is IEEE 802.1x.
Step 18
If you choose WEP security, perform these steps:
a.
In the Authentication field, click the drop-down arrow and choose
Open
or
shared key
.
b.
In the Key Format field, click the drop-down arrow and choose
Hex
or
ASCII
.
c.
Click the Hex Key field drop-down arrow and choose
1
,
2
,
3
,
4
.
d.
Click the key size drop-down arrow and choose one of these options:
104 bits
—Requires 13 ASCII characters or 26 Hex digits.
40 bits
—Requires 5 ASCII characters or 20 Hex digits.
e.
If you selected a hex key format, choose one of these options:
Enter the encryption key (see key size above).
Enter a passphrase (8 to 63 characters) and click
Generate for the encryption key to be
automatically created
(see
Figure 4-7
).