User`s manual

183

DWS-1008 User’s Manual

D-Link Systems, Inc.

Conguring User Encryption

183D-Link Systems, Inc.

set service-prole name tkip-mc-time wait-time

To change the countermeasures wait time in service prole wpa to 30 seconds, type the

following command:

DWS-1008# set service-prole wpa tkip-mc-time 30000

success: change accepted.

Enabling PSK Authentication

By default, WPA uses 802.1X dynamic keying. If you plan to use static keys, you must

enable PSK authentication and congure a passphrase or the raw key. You can congure the

passphrase or key globally. You also can congure keys on an individual MAC client basis.

By default, 802.1X authentication remains enabled when you enable PSK authentication.

To enable PSK authentication, use the following command:

set service-prole name auth-psk {enable | disable}

To enable PSK authentication in service prole wpa, type the following command:

DWS-1008# set service-prole wpa auth-psk enable

success: change accepted.

Conguring a Global PSK Passphrase or Raw Key for All Clients

To congure a global passphrase for all WPA clients, use the following command:

set service-prole name psk-phrase passphrase

The passphrase must be exactly 63 characters long, including blanks. If you use blanks,

you must enclose the string in quotation marks.

To congure service prole wpa to use passphrase 1234567890123<>?=+&% The quick

brown fox jumps over the lazy sl, type the following command:

DWS-1008# set service-prole wpa psk-phrase “1234567890123<>?=+&% The quick

brown fox jumps over the lazy sl”

success: change accepted.

As an alternative to entering a passphrase, which MSS converts into a key, you can enter

the key itself in raw hexadecimal format. To enter a PSK key in raw format, use the following

command:

set service-prole name psk-raw hex

For hex, type a 64-bit ASCII string representing a 32-digit hexadecimal number. Enter the

two-character ASCII form of each hexadecimal number.