Manual
Appendix D: Command Line Interface (CLI) for Access Point Configuration
320
In this example, the cipher suite is set to TKIP Only:
AT-WA7400# set bss wlan0bssInternal wpa-cipher-tkip on
AT-WA7400# set bss wlan0bssInternal wpa-cipher-ccmp off
Set the Authentication Server
You can use the built-in authentication server on the access point or an
external RADIUS server. The commands are shown in Table 21.
Note
To use the built-in authentication server, set the RADIUS IP address
to that used by the built-in server (127.0.0.1) and turn RADIUS
accounting off because it is not supported by the built-in server.
In this example, an external RADIUS server with an IP address of
142.77.1.1 is used as the authentication server:
AT-WA7400#
set bss wlan0bssInternal radius-ip 142.77.1.1
Set the RADIUS Key (For External RADIUS Server Only)
If you use an external RADIUS server, you must provide the RADIUS key.
(If you use the built-in authentication server the RADIUS key is
automatically provided.)
Both: When the authentication
algorithm is set to Both, both TKIP
and AES clients can associate with
the access point. WPA clients
must have either a valid TKIP key
or a valid CCMP (AES) key to be
able to associate with the access
point.
set bss wlan0bssIngernal wpa-cipher-tkip on
set bss wlan0bssIngernal wpa2-cipher-ccmp on
Table 20. Cipher Commands (Continued)
Function Commands
Table 21. Authentication Server Commands
Function Commands
Set the access point to use the
built-in authentication server
set bss wlan0bssInternal radius-ip 127.0.0.1
Set the access point to use an
external RADIUS server
set bss wlan0bssInternal radius-ip
RADIUS_IP_Address
where
RADIUS_IP_Address
is the IP address of an
external RADIUS server