Technical data
124 Meru System Director Configuration Guide © 2012 Meru Networks, Inc.
Configure a Security Profile With the CLI
Configure a Security Profile With the CLI
The controller supports the ability to define multiple Security Profiles that can be
assigned to different wireless LAN extended service sets (ESS) according to the level
and type of security required. A Security Profile is a list of parameters that define
how security is handled within an ESS. With Security Profiles, you can define the
Layer 2 security method, including the cipher suite, primary and secondary Radius
server, static WEP key entries and key index position, and other parameters. The
various Security Profiles you create allow you to support multiple authentication and
encryption methods within the same WLAN infrastructure.
The controller is shipped with OPEN authentication, meaning that there is no
authentication, and that any wireless client can connect to the controller. These
setting are defined in the default Security Profile named default.
You can view the default Security Profile using the show security-profile default
command.
default# show security-profile default
Security Profile Table
Security Profile Name : default
L2 Modes Allowed : clear
Data Encrypt : none
Primary Radius Profile Name :
Secondary Radius Profile Name :
WEP Key (Alphanumeric/Hexadecimal) : *****
Static WEP Key Index : 1
Re-Key Period (seconds) : 0
Captive Portal : disabled
802.1X Network Initiation : off
802.1x Termination : PEAP, TTLS
Shared Key Authentication : off
Pre-shared Key (Alphanumeric/Hexadecimal) : *****
Group Keying Interval (seconds) : 0
PMK Caching : disabled
Key Rotation : disabled
Reauthentication : off
MAC Filtering : off
Firewall Capability : none
Firewall Filter ID :
Security Logging : off
The default Security Profile is configured to allow “clear” Layer 2 access with no
authentication method, encryption, or cipher suite specified.
Note:
Only one Layer 2 method can be defined in each Security Profile.