User's Manual
2-20
Cisco 3200 Series Wireless MIC Software Configuration Guide
OL-7734-02
Chapter 2 Configuring the WMIC for the First Time
Protecting Your Wireless LAN
Using the Express Security Page
Follow these steps to create an SSID using the Express Security page:
Step 1 Type the SSID in the SSID entry field. The SSID can contain up to 32 alphanumeric characters.
a. The Broadcast SSID in Beacon setting is active only when the WMIC is in the Root AP mode.
When you broadcast the SSID, devices that do not specify an SSID can associate to the WMIC when
it is a root access point. This is a useful option for an SSID used by guests or by client devices in a
public space. If you do not broadcast the SSID, client devices cannot associate to the access point
unless their SSID matches this SSID. Only one SSID can be included in the beacon.
Step 2 (Optional) Check the Enable VLAN ID check box and enter a VLAN number (1 through 4095) to assign
the SSID to a VLAN. You cannot assign an SSID to an existing VLAN.
Step 3 (Optional) Check the Native VLAN check box to mark the VLAN as the native VLAN.
Step 4 Select the security setting for the SSID. The settings are listed in order of robustness, from No Security
to WPA, which is the most secure setting. If you select EAP Authentication or WPA, enter the IP address
and shared secret for the authentication server on your network.
Note If you do not use VLANs on your wireless LAN, the security options that you can assign to multiple
SSIDs are limited. See the “Using VLANs” section on page 2-18 for details.
Step 5 Click Apply. The SSID appears in the SSID table at the bottom of the page.
CLI Security Configuration Examples
The examples in this section show the CLI commands that are equivalent to creating SSIDs using each
security type on the Express Security page. This section contains these example configurations:
• Example: No Security, page 2-20
• Example: Static WEP, page 2-21
• Example: EAP Authentication, page 2-22
• Example: WPA, page 2-23
Example: No Security
This example shows part of the configuration that results from using the Express Security page to create
an SSID called no_security_ssid, including the SSID in the beacon, assigning it to VLAN 10, and
selecting VLAN 10 as the native VLAN:
interface Dot11Radio0
no ip address
no ip route-cache
!
ssid no_security-ssid
vlan 10
authentication open
guest-mode
!
!