Reference Guide
468 | papi-security (deprecated) Dell PowerConnect W-Series ArubaOS 6.2 | Reference Guide
papi-security (deprecated)
papi-security
key <key>
[enhanced-security]
no...
Description
The papi-security command enforces advanced security options and provides an enhanced level of security.
WARNING: The best practice is to refrain from modifying these settings unless advised to do so by Dell technical support.
Syntax
Parameter Description Default
key
The key authenticates the messages between systems. —
key
The key string. Range: 10–64
characters
enhanced-security
Allows you to use the enhanced security mode. This mode causes the system to
reject messages when an incorrect key is used.
disabled
no key
Reverts to the default key. —
Usage Guidelines
This command allows you to use advanced options which regulate the controller and AP communication. One way
PAPI messages are authenticated is through a shared secret key. The papi-security command lets you configure a key
on the master controller which then distributes it to other controllers and APs, thus allowing each site to have a
unique key. If no key is configured, then the controller uses the default key.
When enhanced-security mode is disabled, any AP can obtain the current shared secret key.
When enhanced-security mode is enabled, an AP is not updated with the new shared secret key unless the AP knows
the previous key and the AP is updated with the new key within one hour of the key creation.
NOTE: Make sure that the enhanced-security mode is disabled before installing new APs.
If an AP cannot be authenticated because it has the wrong key, the show ap database command displays a “Bad key”
status.
Example
This example sets a unique shared secret key called “testkey123” on the master controller.
(host) (config) #papi-security
(host) (PAPI Security Profile) #
(host) (PAPI Security Profile) #key testkey123
(host) (PAPI Security Profile) #exit