Bridge GUI Guide: Network Configuration
78
BSSs enabled for bridging (Section 3.3.4.3) must be
Enabled
for
Fortress Security
. You cannot apply
Wi-Fi Security
to
bridging-enabled BSSs.
A
Wi-Fi Security
setting of
None
requires no further
configuration.
Figure 3.13. Advanced View
New BSS
settings frame, all radio-equipped platforms
WPA, WPA2 and WPA2-Mixed Security
NOTE:
Enterprise
WPA and WPA2
modes require an 802.1X
authentication service to
be available, as part of
the Bridge configuration
(Section 4.3.2.7) or exter-
nally (Section 4.3.1).
WPA (Wi-Fi Protected Access) and WPA2 are the
enterprise
modes of WPA (as distinguished from the
pre-shared key
modes described below). You can specify that
WPA
or
WPA2
be
used exclusively by the BSS, or you can configure it to be able
to use either by selecting
WPA2-Mixed
.
WPA and WPA2 use EAP-TLS (Extensible Authentication
Protocol-Transport Layer Security) to authenticate network
connections via X.509 digital certificates. In order for the Bridge
to successfully negotiate a WPA/WPA2 transaction, you must
have specified a locally stored key pair and certificate for the
Bridge to use to authenticate the connecting device as an EAP-
TLS peer, and at least one CA (Certificate Authority) certificate
must be present in the local certificate store. Refer to Section
6.2.1 for guidance on configuring an EAP-TLS key pair and
digital certificate.
Figure 3.14.
WPA Security Suite Options
frame for WPA2 enterprise modes, all radio-equipped platforms
You can configure WPA2 security in either Bridge GUI view.
WPA and WPA2-Mixed security are available for selection only
in Advanced View.