User guide

ManualsBrandsEnterasys ManualsComputer equipment802.11

Configuring WLAN Services

Enterasys Wireless Standalone 802.11n AP User Guide 4-37

Field Description

Privacy

Privacy Select the security mode for the WLAN service from the

drop-down menu. Privacy is set to None by default.

WPAv1 Select WPA v1 to use encryption by temporal key integrity protocol

(TKIP). WPAv1 is disabled by default.

WPAv2 Select WPA v2 to use encryption by advanced encryption

standard with counter-mode/CBC-MAC protocol (AES-CCMP).

WPA. WPAv2 is enabled by default.

Key Management Options Select how clients authenticate when roaming between different

APs on the same WLAN Service. These options make it easier for

clients to roam without having to re-authenticate every time.

Select one of the following:

• None — The mobile units (client devices) performs a complete

802.1X authentication each time it associates or connects to a

Wireless AP.

• Opportunistic Keying — Enables secure fast roaming (SFR)

of mobile units.

• Pre-authentication — Enables seamless roaming.

• Opportunistic Keying & Pre-Auth — Enables secure fast

roaming (SFR) of mobile units and seamless roaming. This

option is meant for device clients that support both

authentication processes. For example, the Microsoft-operated

device clients support opportunistic keying by default, but they

can be configured to support pre-authentication too.

Broadcast Re-Key Interval(s) Enter the time interval, in seconds, after which the broadcast

encryption key is changed automatically. The time interval can

range from 30 to 86,400 seconds. The default is 1800 seconds.

Authentication and Accounting

NAS Identifier Enter the identifier for the Network Access Server (NAS). The

NAS identifier is a RADIUS attribute that identifies the server

responsible for passing information to designated RADIUS

servers and then acting on the response returned.

NAS IP Address Enter the IP address of the Network Access Server.

Authentication

Primary RADIUS Server Select the primary RADIUS server.

Secondary RADIUS Server Select the secondary RADIUS server.

Include VSA Attributes

AP Name Select to include the name of the AP in VSA attributes. Vendor

Specific Attributes (VSA) provide information on the identity of the

specific AP that is handling the wireless device, enabling the

provision of location-based services. The AP name is not included

in VSA attributes by default.

Service Name Select to include the WLAN service name in VSA attributes.

Vendor Specific Attributes (VSA) provide information on the

identity of the specific AP that is handling the wireless device,

enabling the provision of location-based services. The WLAN

service name is not included in VSA attributes by default.