7. Specify the WiFi security by selecting an option from the Authentication menu and,
if applicable, by specifying a passphrase in the Passphrase field or selecting an
option from the Encryption menu:
•
Open: A legacy open WiFi network does not provide any security. Any WiFi
device can join the network. We recommend that you do
not
use a legacy open
WiFi network but configure WiFi security. However, a legacy open network might
be appropriate for a WiFi hotspot.
If you select Open from the Authentication menu, the Enhanced Open check
box displays.
-
Enhanced Open check box cleared: The WiFi network is a legacy open
network without any security. This is the default option for an open network.
Clients are not authenticated, traffic is not encrypted, and 802.11w (PMF) is
automatically disabled (see Step 8).
-
Enhanced Open check box selected: The WiFi enhanced open feature is
enabled. This feature is based on opportunistic wireless encryption (OWE).
The encryption is set to CCM mode protocol (CCMP) and 802.11w (PMF) is
automatically set to mandatory (see Step 8). If you select the Enhanced Open
check box, the Allow Devices to Connect with Open check box displays.
If you select the Allow Devices to Connect with Open check box, the WiFi
network can accept both clients that support the WiFi enhanced open feature
and clients that do not. For clients that do not support the WiFi open enhanced
feature, traffic is not encrypted.
If you clear the Allow Devices to Connect with Open check box, the WiFi
network can only accept clients that support the WiFi enhanced open feature.
•
WPA2 Personal: This option, which is the same as WPA2-PSK, is the default
setting and uses AES encryption. This type of security enables only WiFi devices
that support WPA2 to join the VAP.
WPA2 provides a secure connection but some legacy WiFi devices do not detect
WPA2 and support only WPA. If your network includes such older devices, select
WPA2/WPA Personal authentication.
In the Passphrase field, enter a phrase of 8 to 63 characters. To join the VAP, a
user must enter this passphrase. To view the passphrase in clear text, click the
eye icon.
•
WPA2/WPA Personal: This option, which is the same as WPA2-PSK/WPA-PSK,
enables WiFi devices that support either WPA2 or WPA to join the VAP. This
option uses AES and TKIP encryption.
WPA-PSK (which uses TKIP) is less secure than WPA2-PSK (which uses AES) and
limits the speed of WiFi devices to 54 Mbps.
In the Passphrase field, enter a phrase of 8 to 63 characters. To join the VAP, a
user must enter this passphrase. To view the passphrase in clear text, click the
eye icon.
User Manual
59
Manage the Basic WiFi Features
for a WiFi network
Insight Managed WiFi 6 AX5400 Access Point Model WAX628