Manualshelf

User Manual

ManualsBrandsPsion ManualsComputers & AccessoriesPSION TEKLOGIX WIRELESS GATEWAY 802.11a/b/g
141142143144145146147148149150
Chapter 13: Configuring Security
Comparison Of Security Modes For Key Management, Authentication And Encryption Algorithms
120
Psion Teklogix 9160 Wireless Gateway User Manual
Recommendations
WPA/WPA2 Personal (PSK) is not recommended for use with the 9160 Wireless
Gateway when WPA/WPA2 Enterprise (RADIUS) is an option.
We recommend that you use WPA/WPA2 Enterprise (RADIUS) mode instead,
unless you have interoperability issues that prevent you from using this mode.
For example, some devices on your network may not support WPA or WPA2 with
EAP talking to a RADIUS server. Embedded printer servers or other small client
devices with very limited space for implementation may not support RADIUS. For
such cases, we recommend that you use WPA/WPA2 Personal (PSK).
See Also
For information on how to configure this security mode, see “WPA/WPA2 Personal
(PSK)” on page 133.
13.1.2.5 When To Use WPA/WPA2 Enterprise (RADIUS)
Wi-Fi Protected Access 2 (WPA2) with Remote Authentication Dial-In User
Service (RADIUS) is an implementation of the Wi-Fi Alliance IEEE 802.11i stan-
dard, which includes Advanced Encryption Standard (AES), Counter mode/CBC-
MAC Protocol (CCMP), and Temporal Key Integrity Protocol (TKIP) mechanisms.
This mode requires the use of a RADIUS server to authenticate users. WPA/WPA2
Enterprise (RADIUS) provides the best security available for wireless networks.
This security mode also provides backwards-compatibility for wireless clients that
support only the original WPA.
Key Management Encryption Algorithms User Authentication
WPA/WPA2 Enterprise
(RADIUS) mode provides
dynamically-generated
keys that are periodically
refreshed.
There are different
Uni-
cast
keys for each station.
Temporal Key Integrity Protocol
(TKIP).
Counter mode/CBC-MAC Proto-
col (CCMP) Advanced Encryp-
tion Standard (AES).
Remote Authentication Dial-In User Service
(
RADIUS
)
You have a choice of using the 9160 Wireless
Gateway embedded RADIUS server or an
external RADIUS server. The embedded
RADIUS server supports Protected
EAP
(PEAP) and MSCHAP V2.
Table 13.4 WPA/WPA2 Enterprise (RADIUS) Security Mode