User Guide

System Configuration

6-78

CLI Commands for WPA Using Pre-shared Key Security – Be sure to first disable

802.1X port authentication using the 802.1X command from the configuration mode.

Then, from the 802.11g interface configuration mode, use the vap command to

access each VAP interface to configure other security settings.

From the VAP interface configuration mode, use the authentication command to

set the access point to “Open System.” Use the encryption command to enable

data encryption. To enable WPA to be required for all clients, use the wpa-clients

command. Set the broadcast and multicast key encryption using the

multicast-cipher command. Use the wpa-mode command to enable the

Pre-shared Key mode. To enter a key value, use the wpa-psk-type command to

specify a hexadecimal or alphanumeric key, and then use the wpa-pre-shared-key

command to define the key. To view the current security settings, use the show

interface wireless g 0 command (not shown in example).

Enterprise AP(config)#interface wireless g 7-88

Enter Wireless configuration commands, one per line.

Enterprise AP(if-wireless g)#vap 0

Enterprise AP(if-wireless g: VAP[0])#no 802.1X 7-65

Enterprise AP(if-wireless g: VAP[0])#wpa-pre-shared-key

passphrase-key agoodsecret 7-121

Enterprise AP(if-wireless g: VAP[0])#auth wpa-psk required

Data Encryption is set to Enabled.

WPA2 Clients Mode is set to Disabled.

WPA Clients Mode is set to Required.

WPA Multicast Cipher is set to TKIP.

WPA Unicast Cipher can accept TKIP only.

WPA Authentication is set to Pre-Shared Key.

Enterprise AP(if-wireless g: VAP[0])#