June 30, 2006
Confidential
Document Number BDTM10001-A05 Standard
BelAir100 User Guide
Wireless Security
Example 2
/# cd radio
/radio# set arm1 radius-reauth-time 3
Setting and Displaying the Network Access Server Identifier
show arm<n> radius-nas-identifier [ssidx <ssid_index>]
set arm<n> radius-nas-identifier <name> [ssidx <ssid_index>]
These commands let you manage the RADIUS Network Access Server (NAS)
identifier. The <name> parameter specifies the new identifier. The default value
is the switch name as set with the
/system/system switch <name>
command.
Enabling or Disabling Station ID Formatting
show arm<n> radius-station-id-unformatting [ssidx <ssid_index>]
set arm<n> radius-station-id-unformatting {enable|disable}
[ssidx <ssid_index>]
These commands let you manage RADIUS station ID formatting. By default the
called-station-ID
and the
calling-station-ID
fields are formatted to include SSID
information to the provided MAC address.
Including an Accounting Session Identifier in Access-request Packets
show arm<n> radius-
account-session-id [ssidx <ssid_index>]
set arm<n> radius-account-session-id {enable|disable}
[ssidx <ssid_index>]
These commands let you manage whether to include or not an accounting
session identifier in access-request packets. The session identifier is
automatically generated by the system.
802.1X Authentication
with WEP Encryption
show arm<n> dot1x [ssidx <ssid_index>]
set arm<n> dot1x ( [wepkey {psk|bits40|bits104}]
[rekey {no|kpackets <count>|seconds <seconds>}]
[ssidx <ssid_index>] ) {enabled|disabled}
These commands let you to manage 802.1X authentication.
Note: The syntax statement for the
set
command contains parentheses ( )
enclosing optional parameters (
wepkey
,
rekey
or
ssidx
). When you use
this command, you must specify at least one of these optional
parameters. For example, to enable 802.1X authentication, you specify
set arm<n> dot1x
, at least one of the optional parameters, and then
enabled
.
If
wepkey
is set to
psk
, the specified key for pre-shared WEP key encryption is
used. (The command fails if pre-shared WEP key encryption is not turned on.)