ZyXEL NWA50AX User Guide - Page 114
Show Advanced Settings, LABEL, DESCRIPTION, enhanced-open, wpa2-mix, Security Mode
![]() |
View all ZyXEL NWA50AX manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 114 highlights
Chapter 12 AP Profile Table 47 Configuration > Object > AP Profile > SSID > Security List > AAdd/Edit Security Profile> Security Mode: wpa3 (continued) LABEL DESCRIPTION Security Mode Select a security mode from the list: none, enhanced-open, wep, wpa2, wpa2-mix or wpa3. Authentication Settings Personal enhanced-open uses Opportunistic Wireless Encryption (OWE) which encrypts the wireless connection when possible. This field is available when you select the wpa2, wpa2-mix or wpa3 security mode. Pre-Shared Key Transition Mode Select this option to use a Pre-Shared Key (PSK) with WPA2 encryption or Simultaneous Authentication of Equals (SAE) with WPA3 encryption. Enter a pre-shared key of between 8 and 63 case-sensitive ASCII characters (including spaces and symbols) or 64 hexadecimal characters. Enable this for backwards compatibility. This option is only available if the Security Mode is wpa3 or enhanced-open. This creates two virtual APs (VAPs) with a primary (wpa3 or enhanced-open) and fallback (wpa2 or none) security method. Advance If the Security Mode is wpa3, enabling this will force Management Frame Protection to be set to Optional. If this is disabled or if the Security Mode is enhanced-open, Management Frame Protection will be set to Required. Note: Click on the Show Advanced Settings button to show the fields describe below. Idle Timeout Group Key Update Timer Pre-Authentication Management Frame Protection Enter the idle interval (in seconds) that a client can be idle before authentication is discontinued. Enter the interval (in seconds) at which the AP updates the group WPA2 encryption key. Select Enable to allow pre-authentication. Otherwise, select Disable. This field is available only when you select wpa2 in the Security Mode field and set Cipher Type to aes. Data frames in 802.11 WLANs can be encrypted and authenticated with WEP, WPA or WPA2. But 802.11 management frames, such as beacon/probe response, association request, association response, de-authentication and disassociation are always unauthenticated and unencrypted. IEEE 802.11w Protected Management Frames allows APs to use the existing security mechanisms (encryption and authentication methods defined in IEEE 802.11i WPA/WPA2) to protect management frames. This helps prevent wireless DoS attacks. Select the check box to enable management frame protection (MFP) to add security to 802.11 management frames. Select Optional if you do not require the wireless clients to support MFP. Management frames will be encrypted if the clients support MFP. OK Cancel Select Required and wireless clients must support MFP in order to join the Zyxel Device's wireless network. Click OK to save your changes back to the Zyxel Device. Click Cancel to exit this screen without saving your changes. NWA50AX User's Guide 114
![](/manual_guide/products/zyxel-nwa50ax-user-guide-8c475c9/114.png)