Wireless
Networks
Cisco Small Business WAP371 Wireless Access Point Administration Guide
76
5
•
Key 2 to Key 4—The RADIUS key associated with the configured backup RADIUS
servers. The server at Server IP (IPv6) Address 2 uses Key 2, the server at Server IP
(IPv6) Address 3 uses Key 3, and so on.
•
Enable RADIUS Accounting—Enables tracking and measuring of the resources a
particular user has consumed, such as system time, amount of data transmitted and
received, and so on.
If you enable RADIUS accounting, it is enabled for the primary RADIUS server and
all backup servers.
•
Active Server—Enables administratively selecting the active RADIUS server, rather
than having the WAP device attempt to contact each configured server in sequence and
choose the first server that is up.
•
Broadcast Key Refresh Rate—The interval at which the broadcast (group) key is
refreshed for clients associated with this VAP.
The default is 300. The valid range is from 0 to 86400 seconds. A value of 0 indicates
that the broadcast key is not refreshed.
•
Session Key Refresh Rate—The interval at which the WAP device refreshes session
(unicast) keys for each client associated with the VAP.
The valid range is from 0 to 86400 seconds. A value of 0 indicates that the session key
is not refreshed.
WPA Personal
WPA Personal is a Wi-Fi Alliance IEEE 802.11i standard, which includes AES-CCMP and
TKIP encryption. The Personal version of WPA uses a pre-shared key (PSK) instead of using
IEEE 802.1X and EAP as is used in the Enterprise WPA security mode. The PSK is used for
an initial check of credentials only. WPA Personal is also referred to as WPA-PSK.
This security mode is backwards-compatible for wireless clients that support the original
WPA.
These parameters configure WPA Personal:
•
WPA Versions—The types of client stations to be supported:
-
WPA-TKIP—The network has some client stations that only support original WPA
and TKIP security protocol. Note that selecting only WPA-TKIP for the access
point is not allowed as per the latest WiFi Alliance requirement.
-
WPA2-AES—All client stations on the network support WPA2 version and AES-
CCMP cipher/ security protocol. This WPA version provides the best security per