Manualshelf

Technical data

ManualsBrandsMeru Networks ManualsComputer equipmentOAP180
151152153154155156157158159160
Configure a Security Profile With the CLI
© 2012 Meru Networks, Inc. Configuring Security 129
Example WPA2-PSK Configuration
To configure security with the Web UI, click Configuration > Security > Profile. Click
Help for option details.
When setting the PSK key with the CLI, use a key from 8 to 63 ASCII characters (the
characters ! \ " ? must be escaped with the backslash (\) character; for example \!
\?) or 64 hex characters (hex keys must be prefixed with “0x” or the key will not
work).
The following example creates the profile named wpa2-psk that enables WPA2-PSK
for Layer 2, sets the encryption mode to CCMP, and sets the preshared key to
theSecretKeyForNov28.
default(config)# security-profile wpa2-psk
default(config-security)# allowed-l2-modes wpa2-psk
default(config-security)# encryption-modes ccmp
default(config-security)# psk key theSecretKeyForNov28
default(config-security)# exit
default(config)# exit
Configure WPA With the CLI
The controller supports the WPA standard that includes TKIP which improves upon
WEP security by expanding the size of the encryption key (128 bits) and Initialization
Vector (IV) (64 bits), increasing the number of keys in use, and supplying a message
integrity check.
Additionally, with 802.1X implementations, the Radius server profiles can be assigned
from within the Security Profile to leverage the existing 802.1X authentication.
To configure WPA security with the Web UI, click Configuration > Security > Profile.
Click Help for option details. Note that you can configure MIXED WPA and WPA2 in
release 3.6 and later.
Example CLI WPA Configuration
The following example creates the profile named wpa-tkip that enables WPA for
Layer 2, sets the encryption mode to TKIP, and names the Radius server in the
main-auth profile as the primary Radius authentication server.
default(config)# security-profile wpa-tkip
default(config-security)# allowed-l2-modes wpa
default(config-security)# encryption-modes tkip
default(config-security)# radius-server primary main-auth
default(config-security)# exit
default(config)# exit
default#