Security profile for vap 1 configuration – Nitek MNG6448 User Manual

Page 18

Advertising
background image

18

Security Profile Name: Allows you to name to manage different VAP configurations.

Wireless Network Name (SSID): The SSID is a unique ID used by Mesh units, Access Points, and Stations to
identify a wireless LAN. Wireless clients associating to any Mesh unit must have the same SSID. The default ES-
SID is “Wireless”. The ESSID can up to 32 characters

Broadcast Wireless Network Name (SSID): By hiding the SSID, the device cannot be seen when a wireless cli-
ent scans for local wireless units. The trade-off for the extra security of “hiding” a device may be inconvenience for
some valid WLAN clients.

Authentication Type: Choose from the following types.
Open

System: Allow any wireless NIC or wireless bridge to connect.

Shared

Key: If Shared Key is selected, you need to enabled WEP and enter at least one shared key.


802.1x: IEEE 802.1x is a standard for network access control (port based), which was introduced especially for
distributing encryption keys in a wireless network. The Mesh unit supports 802.1x for keeping out unauthorized us-
ers and for verifying the credentials of users with RADIUS so that authorized users can access the network and
services. To use 802.1x, you will need at least one common Extensible Authentication Protocol (EAP) method on
your authentication server, Access Points (authenticator) and stations (supplicant). 802.1x is also used to perform
generation and distribution of encryption keys with enabling Data Encryption as WEP from the Access Point to the
station as part of or after the authentication process.

WPA with Radius, WPA2 with Radius, WPA & WPA2 with Radius: In cooperation with RADIUS, systems with
WPA-EAP will be used with a new encryption method called Temporal Key Integrity Protocol (TKIP) implementa-
tion with 802.1x dynamic key exchange.

WPA-PSK, WPA2-PSK, WPA-PSK & WPA2-PSK: Instead of using RADIUS for authentication, systems with WPA-
PSK will be configured with a secret password phrase. Enter your password phrase and press “Generate”. You can
now create a pre-shared key in the Access Point and copy the characters you input to the station's WPA-PSK en-
try. A shared secret is only secure as long as no third party knows about it.

You must configure RADIUS Server Settings with either Legacy 802.1x or WPA with RADIUS option.

Figure 14 Security profile

Security Profile for Vap 1 Configuration

Advertising
Popular Brands
Popular manuals