Netgear WAX620 User Manual - Page 61
WPA2 Enterprise, Encryption, TKIP + AES, Dynamic VLAN, Enable, Disable, WPA3 Personal, Passphrase
View all Netgear WAX620 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 61 highlights
Insight Cloud Managed WiFi 6 AX3600 Access Point Model WAX620 • WPA2 Enterprise: This enterprise-level security uses RADIUS for centralized Authentication, Authorization, and Accounting (AAA) management. For WPA2 Enterprise security to function, you must set up RADIUS servers (see Set up RADIUS servers on page 129). From the Encryption menu, select the data encryption mode: - TKIP + AES. This type of data encryption enables WiFi devices that support either WPA or WPA2 to join the access point's WiFi network. This is the default mode. - AES. This type of data encryption provides a secure connection but some older WiFi devices do not detect WPA2 and support only WPA. Therefore, if your network includes such older devices, select TKIP + AES encryption. When you select WPA2 Enterprise authentication, the Dynamic VLAN radio buttons display: - Enable: The RADIUS server can assign a VLAN ID to clients. If the RADIUS server does not do so, the clients are automatically assigned the VLAN ID that you configured for the SSID. - Disable: The clients are assigned the VLAN ID that you configured for the SSID. This is the default setting. • WPA3 Personal: This option is the most secure personal authentication option. WPA3 uses SAE encryption and enables only WiFi devices that support WPA3 to join the VAP. If you select this option, 802.11w (PMF) is automatically set to mandatory (see Step 8). WPA3 provides a secure connection but some legacy WiFi devices do not detect WPA3 and support only WPA2. If your network also includes WPA2 devices, select WPA3/WPA2 Personal authentication. In the Passphrase field, enter a phrase of 8 to 63 characters. To join the VAP, a user must enter this passphrase. To view the passphrase in clear text, click the eye icon. • WPA3/WPA2 Personal: This option, which is the same as WPA3/WPA2-PSK, enables WiFi devices that support either WPA3 or WPA2 to join the VAP. This option uses SAE and AES encryption. WPA2-PSK (which uses AES) is less secure than WPA3 (which uses SAE). In the Passphrase field, enter a phrase of 8 to 63 characters. To join the VAP, a user must enter this passphrase. To view the passphrase in clear text, click the eye icon. • WPA3 Enterprise: This enterprise-level security uses RADIUS for centralized Authentication, Authorization, and Accounting (AAA) management. For WPA3 Enterprise security to function, you must set up RADIUS servers (see Set up RADIUS Manage the Basic WiFi Features 61 for a WiFi network User Manual