Cisco AIR-LAP1252AG-A-K9 Software Configuration Guide - Page 132
Enabling Additional WEP Security Features, Enabling Message Integrity Check (MIC)
UPC - 882658140716
View all Cisco AIR-LAP1252AG-A-K9 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 132 highlights
Enabling Additional WEP Security Features Chapter 4 Security Setup Table 4-2 SNMP Variable Settings and Corresponding WEP Levels SNMP Variable dot11ExcludeUnencrypted.2 awcDot11AllowEncrypted.2 WEP Full true true WEP Off false false WEP Optional false true Note Access points do not use the SNMP variable dot11PrivacyInvoked, so it is always set to disabled. Enabling Additional WEP Security Features You can enable three advanced security features to protect against sophisticated attacks on your wireless network's WEP keys. This section describes how to set up and enable these features: • Enabling Message Integrity Check (MIC) • Enabling Temporal Key Integrity Protocol (TKIP) • Enabling Broadcast WEP Key Rotation Enabling Message Integrity Check (MIC) MIC prevents attacks on encrypted packets called bit-flip attacks. During a bit-flip attack, an intruder intercepts an encrypted message, alters it slightly, and retransmits it, and the receiver accepts the retransmitted message as legitimate. The MIC, implemented on both the access point and all associated client devices, adds a few bytes to each packet to make the packets tamper-proof. Note You must set up and enable WEP with full encryption before MIC takes effect. 4-14 Cisco Aironet 1200 Series Access Point Software Configuration Guide OL-2159-03