Manualshelf

User manual

ManualsBrandsWavion ManualsComputer equipmentWBS-2400-SCT
71727374757677787980
Managing System and Station Security
76 Wavion
PSK gets assigned to the default VLAN, while the clients that authenticate using RADIUS
have their VLAN determined by the RADIUS.
Encryption Methods
Legacy 802.11 clients may connect Open (no encryption), or WEP.
In WEP, the encryption key can be either 40bit or 104bit.
In WPA, WS410 supports TKIP encryption.
Since some clients may be legacy (supporting only WEP), WS410 has the capability to
have SSIDs that support both WEP and TKIP clients. In this case, the broadcast key is
WEP, while the unicast key is either TKIP or WEP, depending on the way the client
connected to the system. This mode is called TSN (Transient Security Network).
When you configure a TSN SSID, configure the WEP key as key #2, since key #1 is used
by TKIP.
SSIDs and VLANs
In WS410, the SSID has the notion of Security definitions. All SSIDs (with their Security
capabilities) are advertised in probe responses. The primary SSID is also advertised in the
Beacon.
An AP transmits beacons (every beacon interval) in which it advertises the primary SSID.
In addition, when a client sends a Probe Request with the correct SSID (may be different
from the Primary SSID), the AP responds with the matching Probe Response it exists).
In case VLANs configuration is required, the user has to define the SSIDs in the WS410,
and to define the specific SSID to which each client needs to connect, in the client’s
configuration tool (which is out of scope of this user manual).
In VLANs mode, when clients are associated to an SSID, they are assigned to the default
VLAN that is linked to this SSID. When RADIUS is used for authentication, the RADIUS can
determine the exact VLAN for the user (among all VLANs that are linked to this SSID).