Manualshelf

User manual

ManualsBrandsRedline Communications ManualsComputer equipmentAN-50e
41424344454647484950
AN-80i User Manual
70-00072-01-10 Proprietary Redline Communications © 2011 Page 50 of 152 March 2, 2011
4.7.3 Wireless Security
Use these settings to configure the AN-80i wireless security features.
Fig. 23: Web - PMP - Wireless Configuration Screen
Encryption Type: Select an encryption type for data transmitted over the wireless
interface. All units in a sector must be set to the same encryption type.
None: Encryption is disabled.*
AES 128: Advanced Encryption Standard using 128-bit encryption.
AES 192: Advanced Encryption Standard using 192-bit encryption.
AES 256: Advanced Encryption Standard using 256-bit encryption.
Shared key: Enter the encryption key to be shared between the sector controller and all
subscribers in this sector. This is required only when encryption is enabled.
Shared key confirmation: Re-enter key to minimize errors. This field must be identical
to the Shared Key field.
X509 Authentication Enable: Check this box
to require authentication using an
installed X.509 certificate. The user-defined unit certificate, authority certificate, and RSA
private key must be downloaded using the CLI 'load' command. Uncheck this box to
allow network connections without requiring authentication.
Note: AN-50e systems do not support X.509 authentication.
Fast Registration Enable: Check this box
to enable the sector controller to use pre-
shared keys for quick authentication of a subscriber (bypass Diffie-Hellman method).
This feature is not
available in FIPS mode.
FIPS Mode Enable: Check this box
to enable FIPS mode. The unit will enter FIPS
mode only if the AN-80i is configured according to the FIPS standards. In FIPS mode,
only FIPS approved algorithms are used for SSH, HTTPS and wireless security.
BS MAC: (Subscriber only) MAC address of the sector controller. The subscriber will
establish a wireless link only with the base station having the MAC address recorded in
this field. If this field is zero (00-00-00-00-00-00), the subscriber will establish a wireless
link with any base station.
Notes:
1. HTTPS (SSL) is not available until an X.509 certificate and DSA private key have
been loaded (ssl_cert_<mac>.pem and ssl_key_<mac>.pem).
2. AES encryption is not available until the X.509 certificate and key files have been
loaded (usr_wacert_<mac>.der, usr_wcert_<mac>.der, and usr_wkey_<mac>.der).
3. FIPS X.509 certificates can be loaded only
when the AN-80i is in FIPS mode.
4Gon www.4Gon.co.uk info@4gon.co.uk Tel: +44 (0)1245 808295 Fax: +44 (0)1245 808299