Operation Manual

MP Access Point Commands

12 – 287

The following command limits the days and times when users accessing the SSID managed by

service profile sp2 can access the network, to 5 p.m. to 2 a.m. every weekday, and all day Saturday

and Sunday:

MX# set service-prof sp2 attr time-of-day Wk1700-0200,Sa,Su

success: change accepted.

See Also

● show service-profile on page 12-357

● show sessions network on page 19-454

set service-profile [rsn-ie | wpa-ie] auth-dot1x

Disables or reenables 802.1X authentication of Wi-Fi Protected Access (WPA) clients by MP

radios, when the WPA information element (IE) is enabled in the service profile that is mapped to

the radio profile for the radios.

Syntax

set service-profile profile-name [rsn-ie | wpa-id] auth-dot1x

{enable | disable}

Defaults

When the WPA IE is enabled, 802.1X authentication of WPA clients is enabled by

default. If the WPA IE is disabled, the auth-dot1x setting has no effect.

Access

Enabled.

History

Introduced in MSS Version 3.0.

Usage

This command does not disable dynamic WEP for non-WPA clients. To disable dynamic

WEP for non-WPA clients, enable the WPA IE (if not already enabled) and disable the 40-bit WEP

and 104-bit WEP cipher suites in the WPA IE, if they are not already disabled.

To use 802.1X authentication for WPA clients, you also must enable the WPA IE.

If you disable 802.1X authentication of WPA clients, the only method available for authenticating

the clients is preshared key (PSK) authentication. To use this, you must enable PSK support and

configure a passphrase or key.

Examples

The following command disables 802.1X authentication for WPA clients that use service

profile wpa_clients:

MX# set service-profile wpa_clients auth-dot1x disable

success: change accepted.