Advanced Configuration
5-17
The 802.1x EAP packets are also used to pass dynamic unicast
session keys and static broadcast keys to wireless clients.
Session keys are unique to each client and are used to encrypt
and correlate traffic passing between a specific client and the
access point. You can also enable broadcast key rotation, so the
access point provides a dynamic broadcast key and changes it at
a specified interval.
You can enable 802.1x as optionally supported or as required to
enhance the security of the wireless network.
•
Disabled: The access point does not support 802.1x
authentication for any wireless client. After successful
wireless association with the access point, each client is
allowed to access the network.
•
Supported: The access point supports 802.1x authentication
only for clients initiating the 802.1x authentication process
(i.e., the access point does not initiate 802.1x authentication).
For clients initiating 802.1x, only those successfully
authenticated are allowed to access the network. For those
clients not initiating 802.1x, access to the network is allowed
after successful wireless association with the access point.
•
Required: The access point enforces 802.1x authentication for
all associated wireless clients. If 802.1x authentication is not
initiated by a client, the access point will initiate authentication.
Only those clients successfully authenticated with 802.1x are
allowed to access the network.
When 802.1x is enabled, the broadcast and session key rotation
intervals can also be configured.
•
Broadcast Key Refresh Rate: Sets the interval at which the
broadcast keys are refreshed for stations using 802.1x
dynamic keying. (Range: 0-1440 minutes; Default: 0 means
disabled)
Summary of Contents for WA6102X
Page 27: ...Hardware Installation 2 4 ...