Specifications
8-17
Cisco Aironet Access Point Software Configuration Guide
OL-0657-07
Chapter 8 Security Setup
Enabling Additional WEP Security Features
Note When you enable TKIP, all WEP-enabled client devices associated to the
access point must support WEP key hashing. WEP-enabled devices that do not
support key hashing cannot communicate with the access point.
Note To use TKIP, the Use Aironet Extensions setting on the AP Radio Advanced
page must be set to yes (the default setting).
Tip When you enable TKIP, you might not need to enable broadcast key rotation.
Key hashing prevents intruders from calculating the static broadcast key, so
you do not need to rotate the broadcast key.
Note You cannot enable MIC and TKIP for SSIDs that use shared key
authentication.
Follow these steps to enable TKIP:
Step 1 Follow the steps in the “Setting Up WEP” section on page 8-9 to set up and enable
WEP. Select either optional or full encryption for the WEP level.
Step 2 Follow this link path to browse to the AP Radio Advanced page:
a. On the Summary Status page, click Setup.
b. On the Setup page, click Advanced in the AP Radio row under Network
Ports.
Step 3 Select Cisco from the Temporal Key Integrity Protocol pull-down menu.
Step 4 Make sure yes is selected for the Use Aironet Extensions setting. Key hashing
does not work if Use Aironet Extensions is set to no.
Step 5 Click OK. TKIP is enabled.