User Manual Part 2

Wi-Fi Array

436

TKIP solves security issues with WEP. It also allows you to

establish encryption keys on a per-user-basis, with key rotation

for added security. In addition, TKIP provides Message Integrity

Check (MIC) functionality and prevents active attacks on the

wireless network.

AES is the strongest encryption standard and is used by

government agencies; however, old legacy hardware may not be

capable of supporting the AES mode (it probably won’t work on

older wireless clients). Because AES is the strongest encryption

standard currently available, it is highly recommended for

Enterprise networks.

Any of the above encryption modes can be used (and can be used at

the same time).

Q. Which user authentication method should I use?

A. User authentication ensures that users are who they say they are. For

example, the most obvious example of authentication is logging in with a

user name and password. The Wi-Fi Array allows you to choose between

the following user authentication methods:

 Pre-Shared Key

Users must manually enter a key (pass phrase) on the client side

of the wireless network that matches the key stored by the

administrator in your Wi-Fi Arrays.

 RADIUS 802.1x with EAP

802.1x uses a RADIUS server to authenticate large numbers of

clients, and can handle different EAP (Extensible Authentication

Protocol) authentication methods, including EAP-TLS, EAP-

TTLS and EAP-PEAP. The RADIUS server can be internal



TKIP encryption does not support high throughput rates, per the

IEEE 802.11n.

TKIP should never be used for WDS links on XR and XN arrays.