Cisco Cisco WAP131 Wireless-N Dual Radio Access Point with PoE Manuel De Maintenance
Wireless
Networks
Cisco WAP131 and WAP351 Administration Guide
95
5
These parameters configure WPA Enterprise:
•
WPA Versions—Choose the types of client stations to be supported. The
options are:
options are:
-
WPA-TKIP—The network has some client stations that only support
original WPA and TKIP security protocol. Note that selecting only WPA-
TKIP for the access point is not allowed as per the latest WiFi Alliance
requirement.
original WPA and TKIP security protocol. Note that selecting only WPA-
TKIP for the access point is not allowed as per the latest WiFi Alliance
requirement.
-
WPA2-AES—All client stations on the network support WPA2 version
and AES-CCMP cipher/ security protocol. This WPA version provides
the best security per the IEEE 802.11i standard. As per the latest WiFi
Alliance requirement, the AP has to support this mode all the time.
and AES-CCMP cipher/ security protocol. This WPA version provides
the best security per the IEEE 802.11i standard. As per the latest WiFi
Alliance requirement, the AP has to support this mode all the time.
•
Enable pre-authentication—If you choose only WPA2 or both WPA and
WPA2 as the WPA version, you can enable pre-authentication for the WPA2
clients.
WPA2 as the WPA version, you can enable pre-authentication for the WPA2
clients.
Check this option if you want the WPA2 wireless clients to send the pre-
authentication packets. The pre-authentication information is relayed from
the WAP device that the client is currently using to the target WAP device.
Enabling this feature can help speed up the authentication for roaming
clients who connect to multiple APs.
authentication packets. The pre-authentication information is relayed from
the WAP device that the client is currently using to the target WAP device.
Enabling this feature can help speed up the authentication for roaming
clients who connect to multiple APs.
This option does not apply if you selected WPA for WPA versions because
the original WPA does not support this feature.
the original WPA does not support this feature.
Client stations configured to use WPA with RADIUS must have one of these
addresses and keys:
addresses and keys:
-
A valid TKIP RADIUS IP address and RADIUS Key
-
A valid CCMP (AES) IP address and RADIUS Key
•
Use Global RADIUS Server Settings—By default, each VAP uses the
global RADIUS settings that you define for the WAP device (see
global RADIUS settings that you define for the WAP device (see
). However, you can configure each VAP to use a different set of
RADIUS servers.
Check this option to use the global RADIUS server settings, or uncheck this
option to use a separate RADIUS server for the VAP and enter the RADIUS
server IP address and key in the appropriate fields.
option to use a separate RADIUS server for the VAP and enter the RADIUS
server IP address and key in the appropriate fields.
•
Server IP Address Type—The IP version that the RADIUS server uses. You
can toggle between the address types to configure the IPv4 and IPv6
global RADIUS address settings, but the WAP device contacts only the
RADIUS server or servers for the address type that you select in this field.
can toggle between the address types to configure the IPv4 and IPv6
global RADIUS address settings, but the WAP device contacts only the
RADIUS server or servers for the address type that you select in this field.