User's Manual
hwc_vnsconfiguration.fm
Virtual Network configuration
Configuring privacy for a VNS
A31003-W1050-U100-2-7619,
March 2008
HiPath Wireless Controller, Access Points and Convergence Software V5 R1 , C20/C2400 User Guide 211
8. To enable re-keying after a time interval, select Broadcast re-key interval.
If this checkbox is not selected, the Broadcast encryption key is never
changed and the Wireless AP will always use the same broadcast key for
Broadcast/Multicast transmissions. This will reduce the level of security for
wireless communications.
9. In the Broadcast re-key interval box, type the time interval after which the
broadcast encryption key is changed automatically. The default is 3600.
10. In the Pre-Shared Key box, type the shared secret key to be used between
the wireless device and Wireless AP. The shared secret key is used to
generate the 256-bit key.
11. To proofread your entry before saving the configuration, click Unmask to
display the Pre-Shared Key. To mask the key, click Mask.
12. To save your changes, click Save.
6.11.2 Privacy for a VNS for AAA
For a VNS with authentication by 802.1x (AAA), there are four Privacy options:
• Static keys (WEP)
• Dynamic keys
• Wi-Fi Protected Access (WPA) version 1, with encryption by Temporal Key
Integrity Protocol (TKIP)
• Wi-Fi Protected Access (WPA) version 2, with encryption by Advanced
Encryption Standard with Counter-Mode/CBC-MAC Protocol (AES-CCMP)
Note: In order to use WPA with 802.1x authentication, network assignment must
be AAA.
Wireless 802.11n APs and WPA authentication
If a VNS is configured to use WPA authentication, any Wireless 802.11n AP within
that VNS will do the following:
• WPA v.1 – If WPA v.1 is enabled, the Wireless 802.11n AP will advertise only
TKIP as an available encryption protocol.
• WPA v.2 – If WPA v.2 is enabled, the Wireless 802.11n AP will do the
following:
• If WPA v.1 is enabled, the Wireless 802.11n AP will advertise TKIP as an
available encryption protocol.