Technical data
Configure a Security Profile With the CLI
© 2012 Meru Networks, Inc. Configuring Security 127
key key
Specifies the shared secret text string used by the controller for
the Radius profile (required parameter if password-type is
shared-secret). Maximum 64 characters.
password-type shared-secret |
mac-address
Specifies whether the password type is the Radius key
(shared-secret) or is the MAC address of the client, as
determined by the client setup in Radius for MAC Filtering
configuration.
mac-delimiter colon | hyphen |
singlehyphen | none
Optional. Sets the Radius profile delimiter character.
port port
Optional. Configures the Radius profile port (the default port
1812, is configured by default).
vlan vlan
Optional. Configures a VLAN for the RADIUS server. Use the
command if the Radius server is located on a VLAN so that
RADIUS requests are sent to the VLAN interface instead of
default/untagged interface.
pmkcaching pmkcaching |
disable
Enables or disables PMK caching.
rekey period n
Sets the PTK rekey period. The default is set to 60 seconds and
the allowable range is 60 seconds to 60 minutes.
[no] group-rekey interval n
Sets the GTK group rekey period. The default is set to 60
seconds and the allowable range is 60 seconds to 60 minutes
Table 5: Commands to Configure the 802.1X Radius Servers
Command Purpose
Table 6: Commands Used to Create Security Profiles
Command Purpose
allowed-l2-modes 802.1x
In Security Profile configuration, enables 802.1X
authentication.
radius-server primary profile
In Security Profile configuration, specifies the Radius profile
containing the configuration parameters for the primary Radius
server.