User's Manual
5-23
Cisco Aironet 802.11a/b/g Wireless LAN Client Adapters (CB21AG and PI21AG) Installation and Configuration Guide
OL-4211-05
Chapter 5 Configuring the Client Adapter
Setting Security Parameters
EAP-FAST authentication Choose 802.1x and EAP-FAST, set
EAP-FAST settings, and enable
automatic provisioning or import a
PAC file
Set up and enable WEP and enable
both Network-EAP and Open with
EAP Authentication for the SSID
EAP-FAST authentication
with WPA or WPA2
Choose WPA/WPA2/CCKM and
EAP-FAST, set EAP-FAST
settings, and enable automatic
provisioning or import a PAC file
For WPA, choose a cipher suite that
includes TKIP and enable both
Network-EAP and Open with EAP
Authentication as well as WPA for
the SSID
For WPA2, choose a cipher suite
that includes AES-CCMP and
enable both Network-EAP and
Open with EAP Authentication as
well as WPA for the SSID
Note To allow both WPA and
non-WPA clients to use the
SSID, enable optional
WPA.
EAP-TLS authentication
If using ADU to
configure card
Choose 802.1x and EAP-TLS; then
set EAP-TLS settings
Set up and enable WEP and enable
Open with EAP Authentication for
the SSID
If using Windows XP
to configure card
Choose Enable network access
control using IEEE 802.1X and
Smart Card or other Certificate as
the EAP Type
Set up and enable WEP and enable
Open with EAP Authentication for
the SSID
EAP-TLS authentication with WPA or WPA2
If using ADU to
configure card
Choose WPA/WPA2/CCKM and
EAP-TLS; then set EAP-TLS
settings
For WPA, choose a cipher suite that
includes TKIP; then enable WPA
and Open with EAP Authentication
for the SSID
For WPA2, choose a cipher suite
that includes AES-CCMP; then
enable WPA and Open with EAP
Authentication for the SSID
Note To allow both WPA and
non-WPA clients to use the
SSID, enable optional
WPA.
Table 5-4 Client and Access Point Security Settings (continued)
Security Feature Client Setting Access Point Setting