ZyXEL Communications Corporation WAC5302D-S Manuel D’Utilisation
Chapter 8 AP Profile
NWA / WAC Series User’s Guide
103
Key Length
Select the bit-length of the encryption key to be used in WEP connections.
If you select WEP-64:
• Enter 10 hexadecimal digits in the range of “A-F”, “a-f” and “0-9” (for example,
0x11AA22BB33) for each Key used.
or
• Enter 5 ASCII characters (case sensitive) ranging from “a-z”, “A-Z” and “0-9” (for
example, MyKey) for each Key used.
If you select WEP-128:
• Enter 26 hexadecimal digits in the range of “A-F”, “a-f” and “0-9” (for example,
0x00112233445566778899AABBCC) for each Key used.
or
• Enter 13 ASCII characters (case sensitive) ranging from “a-z”, “A-Z” and “0-9” (for
example, MyKey12345678) for each Key used.
Key 1~4
Based on your Key Length selection, enter the appropriate length hexadecimal or ASCII key.
WPA2/WPA2-Mix Authentication Settings
PSK
This field is available when you select the wpa2, or wpa2-mix security mode.
Select this option to use a Pre-Shared Key with WPA2 encryption.
Pre-Shared Key
Enter a pre-shared key of between 8 and 63 case-sensitive ASCII characters (including
spaces and symbols) or 64 hexadecimal characters.
spaces and symbols) or 64 hexadecimal characters.
Cipher Type
Select an encryption cipher type from the list.
• auto - This automatically chooses the best available cipher based on the cipher in use
by the wireless client that is attempting to make a connection.
• aes - This is the Advanced Encryption Standard encryption method. It is a more recent
development over TKIP and considerably more robust. Not all wireless clients may
support this.
Idle Timeout
Enter the interval (in seconds) that a client can be idle before authentication is
discontinued.
discontinued.
Group Key Update
Timer
Timer
Enter the interval (in seconds) at which the AP updates the group WPA2 encryption key.
Management
Frame Protection
Frame Protection
This field is available only when you select wpa2 in the Security Mode field and set Cipher
Type to aes.
Type to aes.
Data frames in 802.11 WLANs can be encrypted and authenticated with WEP, WPA or
WPA2. But 802.11 management frames, such as beacon/probe response, association
request, association response, de-authentication and disassociation are always
unauthenticated and unencrypted. IEEE 802.11w Protected Management Frames allows
APs to use the existing security mechanisms (encryption and authentication methods
defined in IEEE 802.11i WPA/WPA2) to protect management frames. This helps prevent
wireless DoS attacks.
WPA2. But 802.11 management frames, such as beacon/probe response, association
request, association response, de-authentication and disassociation are always
unauthenticated and unencrypted. IEEE 802.11w Protected Management Frames allows
APs to use the existing security mechanisms (encryption and authentication methods
defined in IEEE 802.11i WPA/WPA2) to protect management frames. This helps prevent
wireless DoS attacks.
Select the check box to enable management frame protection (MFP) to add security to
802.11 management frames.
802.11 management frames.
Select Optional if you do not require the wireless clients to support MFP. Management
frames will be encrypted if the clients support MFP.
frames will be encrypted if the clients support MFP.
Select Required and wireless clients must support MFP in order to join the NWA/WAC’s
wireless network.
wireless network.
OK
Click OK to
save your changes back to the NWA/WAC.
Cancel
Click Cancel to exit this screen without saving your changes.
Table 48 Configuration > Object > AP Profile > SSID > Security List > Add/Edit Security Profile (continued)
LABEL
DESCRIPTION