Specifications
Configuring Access Point Security
Altitude 3500 Series Access Point Product Reference Guide
172
Enabling Authentication and Encryption Schemes
To complement the built-in firewall filters on the WAN side of the Altitude 35xx, the WLAN side of the
Altitude 35xx supports authentication and encryption schemes. Authentication is a challenge-response
procedure for validating user credentials such as username, password, and sometimes secret-key
information. The Altitude 35xx provides two schemes for authenticating users: 802.1x EAP and Kerberos.
Encryption applies a specific algorithm to alter its appearance and prevent unauthorized reading.
Decryption applies the algorithm in reverse to restore the data to its original form. Sender and receiver
must employ the same encryption/decryption method to interoperate.
Wired Equivalent Privacy (WEP) is available in two encryption modes: 40 bit (also called WEP 64) and 104
bit (also called WEP 128). The 104-bit encryption mode provides a longer algorithm (better security) that
takes longer to decode (hack) than the 40-bit encryption mode.
Each WLAN (16 WLANs available in total to an Altitude 35xx regardless of the model) can have a
separate security policy. However, more than one WLAN can use the same security policy. Therefore, to
avoid confusion, do not name security policies the same name as WLANs. Once security policies have
been created, they are selectable within the Security field of each WLAN screen. If the existing default
security policy does not satisfy the data protection requirements of a specific WLAN, a new security
policy (using the authentication and encryption schemes discussed above) can be created.
To enable an existing WLAN security policy or create a new policy:
1 Select Network Configuration > Wireless > Security
from the Altitude 35xx menu tree.
The Security Configuration screen displays.