D-Link AirPremier DWL-2210AP Manual page 68

802.11g wireless adaptive access point

Hide thumbs Also See for AirPremier DWL-2210AP:

Quick installation manual (16 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

Table of Contents

Conﬁguring Security

Key Management Encryption Algorithm

IEEE 802.1x provides

dynamically-

generated keys that

are periodically

refreshed.

There are different

Unicast

keys for

each station.

Recommendations

IEEE 802.1x mode is a better choice than Static WEP because keys are dynamically

generated and changed periodically. However, the encryption algorithm used is the same

as that of Static WEP and is therefore not as reliable as the more advanced encryption

methods such as

Additionally, compatibility issues may be cumbersome because of the variety of

authentication methods supported and the lack of a standard implementation

method.

Therefore, IEEE 802.1x mode is not as secure a solution as Wi-Fi Protected Access

(WPA). If, you cannot use

then a better solution than using IEEE 802.1x mode is to use WPA with RADIUS mode

instead and check the "Allow non-WPA IEEE 802.1x clients" checkbox to allow non-WPA

clients. This way, you get the beneﬁt of IEEE 802.1x key management for non-WPA

clients along with even better data protection of TKIP and CCMP (AES) key management

and encryption algorithms for your WPA clients.

See Also

For information on how to conﬁgure IEEE 802.1x security mode, see "IEEE 802.1x"

under "Conﬁguring Security Settings" in this manual.

When to Use WPA with RADIUS

Wi-Fi Protected Access (WPA) with Remote Authentication Dial-In User Service

(RADIUS) is a Wi-Fi Alliance subset of IEEE 802.11i, which includes Temporal Key

Integrity Protocol (TKIP), Counter mode/CBC-MAC Protocol (CCMP), and Advanced

Encryption Standard (AES) mechanisms. This mode requires the use of a RADIUS

server to authenticate users. WPA with RADIUS provides the best security available

for wireless networks.

RC4

stream cipher is used to

encrypt the frame body and cyclic

redundancy checking (CRC) of

each 802.11 frame.

TKIP

and

CCMP

(AES) used in Wi-Fi Protected Access (WPA).

WPA

because some of your client stations do not have WPA,

User Authentication

IEEE 802.1x mode supports

a variety of authentication

methods, like cer tificates,

Kerberos, and public key

authentication with a RADIUS

server.

You have a choice of using the

D-Link DWL-2210AP

embedded RADIUS server or

an external RADIUS server.

The embedded RADIUS server

supports Protected

EAP

(PEAP) and MSCHAP V2.

Table of Contents

D-Link AirPremier DWL-2210AP Manual page 68

Related Manuals for D-Link AirPremier DWL-2210AP

Related Products for D-Link AirPremier DWL-2210AP

Table of Contents