Home » ZyXEL Manuals » Bridges & Routers » ZyXEL MWR102 » Manual Viewer

ZyXEL MWR102 User Guide - Page 138

WPA2-PSK Application Example, User Authentication

Add to My Manuals
Save this manual to your list of manuals

Page 138 highlights

password-guessing attacks but it's still an improvement over WEP as it employs an easier-to-use, consistent, single, alphanumeric password. User Authentication WPA or WPA2 applies IEEE 802.1x and Extensible Authentication Protocol (EAP) to authenticate wireless clients using an external RADIUS database. If both an AP and the wireless clients support WPA2 and you have an external RADIUS server, use WPA2 for stronger data encryption. If you don't have an external RADIUS server, you should use WPA2 -PSK (WPA2 -Pre-Shared Key) that only requires a single (identical) password entered into each access point, wireless gateway and wireless client. As long as the passwords match, a wireless client will be granted access to a WLAN. If the AP or the wireless clients do not support WPA2, just use WPA or WPA-PSK depending on whether you have an external RADIUS server or not. Select WEP only when the AP and/or wireless clients do not support WPA or WPA2. WEP is less secure than WPA or WPA2. WPA(2)-PSK Application Example A WPA(2)-PSK application looks as follows. 1 First enter identical passwords into the AP and all wireless clients. The Pre-Shared Key (PSK) must consist of between 8 and 63 ASCII characters (including spaces and symbols). 2 The AP checks each wireless client's password and (only) allows it to join the network if the password matches. 3 The AP derives and distributes keys to the wireless clients. 4 The AP and wireless clients use the TKIP or AES encryption process to encrypt data exchanged between them. 138

Section	Page
1.4 The Front Panel	15
1.5 The Rear Panel	16
2 Web-Based Management	17
2.1 Overview	17
2.2 Accessing the Web-Based Management Interface	17
2.2.1 Login Screen	17
The Web-Based Management Interface initially displays the following login screen.	17
Article I. End-User License Agreement for “MWR102”	150
Article IV. NOTE: Some components of this product incorporate free software programs covered under the open source code licenses which allows you to freely copy, modify and redistribute the software. For at least three (3) years from the date of distribution of the applicable product or software, we will give to anyone who contacts us at the ZyXEL Technical Support ([email protected]), for a charge of no more than our cost of physically performing source code distribution, a complete machine-readable copy of the complete corresponding source code for the version of the Programs that we distributed to you if we are in possession of such.	154
Article V. Notice	154
Article VI. Information herein is subject to change without notice. Companies, names, and data used in examples herein are fictitious unless otherwise noted. No part may be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, except the express written permission of ZyXEL Communications Corporation.	154
Notice	156
GNU GENERAL PUBLIC LICENSE	161
Preamble	161
TERMS AND CONDITIONS	162
0. Definitions.	162
1. Source Code.	163
2. Basic Permissions.	164
3. Protecting Users' Legal Rights From Anti-Circumvention Law.	164
4. Conveying Verbatim Copies.	165
5. Conveying Modified Source Versions.	165
6. Conveying Non-Source Forms.	166
7. Additional Terms.	167
8. Termination.	168
9. Acceptance Not Required for Having Copies.	169
10. Automatic Licensing of Downstream Recipients.	169
11. Patents.	170
12. No Surrender of Others' Freedom.	171
13. Use with the GNU Affero General Public License.	171
14. Revised Versions of this License.	171
15. Disclaimer of Warranty.	172
16. Limitation of Liability.	172
17. Interpretation of Sections 15 and 16.	172
How to Apply These Terms to Your New Programs	173

Match case Limit results 1 per page

138

password-guessing attacks but it's still an improvement over WEP as it employs an easier-to-use,

consistent, single, alphanumeric password.

User Authentication

WPA or WPA2 applies IEEE 802.1x and Extensible Authentication Protocol (EAP) to authenticate

wireless clients using an external RADIUS database.

If both an AP and the wireless clients support WPA2 and you have an external RADIUS server,

use WPA2 for stronger data encryption. If you don't have an external RADIUS server, you should

use WPA2 -PSK (WPA2 -Pre-Shared Key) that only requires a single (identical) password

entered into each access point, wireless gateway and wireless client. As long as the passwords

match, a wireless client will be granted access to a WLAN.

If the AP or the wireless clients do not support WPA2, just use WPA or WPA-PSK depending on

whether you have an external RADIUS server or not.

Select WEP only when the AP and/or wireless clients do not support WPA or WPA2. WEP is less

secure than WPA or WPA2.

WPA(2)-PSK Application Example

A WPA(2)-PSK application looks as follows.

First enter identical passwords into the AP and all wireless clients. The Pre-Shared

Key (PSK) must consist of between 8 and 63 ASCII characters (including spaces and

symbols).

The AP checks each wireless client's password and (only) allows it to join the

network if the password matches.

The AP derives and distributes keys to the wireless clients.

The AP and wireless clients use the TKIP or AES encryption process to encrypt data

exchanged between them.