Brocade Mobility Access Point System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

334

Brocade Mobility Access Point System Reference Guide

53-1003100-01

5

A profile can have its own firewall policy, wireless client role policy, WEP shared key authentication,
NAT policy and VPN policy applied. If an existing firewall, client role or NAT policy is unavailable
create the required security policy configuration. Once created, a configuration can have an
override applied as needed to meet the changing data protection requirements of a device’s
deployed environment. However, in doing so this device must now be managed separately from the
profile configuration shared by other identical models within the network.

For more information on applying an override to an existing device profile, refer to the following
sections:

•

Overriding General Security Settings

•

Overriding a Certificate Revocation List (CRL) Configuration

•

Overriding a Profile’s NAT Configuration

Overriding VPN Configuration using Wizards

Overriding a Security Configuration

VPN can be overridden by using either the inbuilt wizards or by manually configuring the required
parameters. This section describes how to use the inbuilt wizards to override the VPN parameters.
The user interface provides two (2) wizards that provide different levels of configuration. The
following screen displays:

FIGURE 177

Security Configuration Wizard screen

The following options are available: