802.1x and WPA

This screen varies according to the wireless port control and the key management protocol you select.

Click here to go to 802.1x.

Click here to go to WPA.

Click here to go to WPA-PSK.

802.1x

FieldDescription
Wireless Port Control

To control wireless clients access to the wired network, select a control method from the drop-down list box. Choose from No Authentication Required, Authentication Required and No Access Allowed.

No Authentication Required allows all wireless stations access to the wired network without entering usernames and passwords. This is the default setting.

Authentication Required means that all wireless stations have to enter usernames and passwords before access to the wired network is allowed.

No Access Allowed blocks all wireless stations access to the wired network.

Select Authentication Required to configure Key Management Protocol and other related fields.

ReAuthentication Timer (In Seconds)

Specify how often wireless stations have to reenter usernames and passwords in order to stay connected. This field is activated only when you select Authentication Required in the Wireless Port Control field.

Enter a time interval between 10 and 9999 seconds. The default time interval is 1800 seconds (30 minutes).

Note: If wireless client authentication is done using a RADIUS server, the reauthentication timer on the RADIUS server has priority.

Idle Time Out (In Seconds)

The Prestige automatically disconnects a wireless station from the wired network after a period of inactivity. The wireless client needs to enter the username and password again before access to the wired network is allowed.

This field is activated only when you select Authentication Required in the Wireless Port Control field. The default time interval is 3600 seconds (1 hour).

Key Management ProtocolChoose 802.1x from the drop-down list.
Dynamic WEP Key Exchange

This field is activated only when you select Authentication Required in the Wireless Port Control field. Also set the Authentication Databases field to RADIUS Only. Local user database may not be used.

Select Disable to allow wireless stations to communicate with the access points without using dynamic WEP key exchange.

Select 64-bit WEP or 128-bit WEP to enable data encryption.

Up to 32 stations can access the Prestige when you configure dynamic WEP key exchange.

Authentication Databases

This field is activated only when you select Authentication Required in the Wireless Port Control field.

The authentication database contains wireless station login information. The local user database is the built-in database on the Prestige. The RADIUS is an external server. Use this drop-down list box to select which database the Prestige should use (first) to authenticate a wireless station.

Before you specify the priority, make sure you have set up the corresponding database correctly first.

Select Local User Database Only to have the Prestige just check the built-in user database on the Prestige for a wireless station's username and password.

Select RADIUS Only to have the Prestige just check the user database on the specified RADIUS server for a wireless station's username and password.

Select Local first, then RADIUS to have the Prestige first check the user database on the Prestige for a wireless station's username and password. If the user name is not found, the Prestige then checks the user database on the specified RADIUS server.

Select RADIUS first, then Local to have the Prestige first check the user database on the specified RADIUS server for a wireless station's username and password. If the Prestige cannot reach the RADIUS server, the Prestige then checks the local user database on the Prestige. When the user name is not found or password does not match in the RADIUS server, the Prestige will not check the local user database and the authentication fails.

BackClick Back to go to the main wireless LAN setup screen.
ApplyClick Apply to save these settings back to the Prestige.
CancelClick Cancel to reload the previous configuration for this screen.

WPA

FieldDescription
Wireless Port Control

To control wireless clients access to the wired network, select a control method from the drop-down list box. Choose from No Authentication Required, Authentication Required and No Access Allowed.

No Authentication Required allows all wireless stations access to the wired network without entering usernames and passwords. This is the default setting.

Authentication Required means that all wireless stations have to enter usernames and passwords before access to the wired network is allowed.

No Access Allowed blocks all wireless stations access to the wired network.

Select Authentication Required to configure Key Management Protocol and other related fields.

ReAuthentication Timer (In Seconds)

Specify how often wireless stations have to reenter usernames and passwords in order to stay connected. This field is activated only when you select Authentication Required in the Wireless Port Control field.

Enter a time interval between 10 and 9999 seconds. The default time interval is 1800 seconds (30 minutes).

Note: If wireless client authentication is done using a RADIUS server, the reauthentication timer on the RADIUS server has priority.

Idle Time Out (In Seconds)

The Prestige automatically disconnects a wireless station from the wired network after a period of inactivity. The wireless client needs to enter the username and password again before access to the wired network is allowed.

This field is activated only when you select Authentication Required in the Wireless Port Control field. The default time interval is 3600 seconds (1 hour).

Key Management ProtocolChoose WPA from the drop-down list.
WPA Mixed Mode

The Prestige can operate in WPA Mixed Mode, which supports both clients running WPA and clients running WEP security in the same Wi-Fi network.

Select the check box to activate WPA mixed mode. Otherwise, clear the check box and configure the Group Data Privacy field.

Group Data Privacy

Group Data Privacy allows you to choose TKIP (recommended) or WEP for broadcast and multicast ("group") traffic if the Key Management Protocol is WPA and WPA Mixed Mode is disabled. WEP is used automatically if you have enabled WPA Mixed Mode.

All unicast traffic is automatically encrypted by TKIP when WPA or WPA-PSK Key Management Protocol is selected.

WPA Group Key Update TimerThe WPA Group Key Update Timer is the rate at which the AP (if using WPA-PSK key management) or RADIUS server (if using WPA key management) sends a new group key out to all clients. The re-keying process is the WPA equivalent of automatically changing the WEP key for an AP and all stations in a WLAN on a periodic basis. Setting of the WPA Group Key Update Timer is also supported in WPA-PSK mode. The Prestige default is 1800 seconds (30 minutes).
Authentication Databases

When you configure Key Management Protocol to WPA, the Authentication Databases must be RADIUS Only. You only use the Local User Database Only with 802.1x Key Management Protocol.

BackClick Back to go to the main wireless LAN setup screen.
ApplyClick Apply to save these settings back to the Prestige.
CancelClick Cancel to reload the previous configuration for this screen.

WPA-PSK

FieldDescription
Wireless Port Control

To control wireless clients access to the wired network, select a control method from the drop-down list box. Choose from No Authentication Required, Authentication Required and No Access Allowed.

No Authentication Required allows all wireless stations access to the wired network without entering usernames and passwords. This is the default setting.

Authentication Required means that all wireless stations have to enter usernames and passwords before access to the wired network is allowed.

No Access Allowed blocks all wireless stations access to the wired network.

Select Authentication Required to configure Key Management Protocol and other related fields.

ReAuthentication Timer (In Seconds)

Specify how often wireless stations have to reenter usernames and passwords in order to stay connected. This field is activated only when you select Authentication Required in the Wireless Port Control field.

Enter a time interval between 10 and 9999 seconds. The default time interval is 1800 seconds (30 minutes).

Note: If wireless client authentication is done using a RADIUS server, the reauthentication timer on the RADIUS server has priority.

Idle Time Out (In Seconds)

The Prestige automatically disconnects a wireless station from the wired network after a period of inactivity. The wireless client needs to enter the username and password again before access to the wired network is allowed.

This field is activated only when you select Authentication Required in the Wireless Port Control field. The default time interval is 3600 seconds (1 hour).

Key Management ProtocolChoose WPA-PSK from the drop-down list.
Pre-Shared Key

The encryption mechanisms used for WPA and WPA-PSK are the same. The only difference between the two is that WPA-PSK uses a simple common password, instead of user-specific credentials.

Type a pre-shared key from 8 to 63 case-sensitive ASCII characters (including spaces and symbols).

WPA Mixed Mode

The Prestige can operate in WPA Mixed Mode, which supports both clients running WPA and clients running WEP security in the same Wi-Fi network.

Select the check box to activate WPA mixed mode. Otherwise, clear the check box and configure the Group Data Privacy field.

Group Data Privacy

Group Data Privacy allows you to choose TKIP (recommended) or WEP for broadcast and multicast ("group") traffic if the Key Management Protocol is WPA and WPA Mixed Mode is disabled. WEP is used automatically if you have enabled WPA Mixed Mode.

All unicast traffic is automatically encrypted by TKIP when WPA or WPA-PSK Key Management Protocol is selected.

WPA Group Key Update TimerThe WPA Group Key Update Timer is the rate at which the AP (if using WPA-PSK key management) or RADIUS server (if using WPA key management) sends a new group key out to all clients. The re-keying process is the WPA equivalent of automatically changing the WEP key for an AP and all stations in a WLAN on a periodic basis. Setting of the WPA Group Key Update Timer is also supported in WPA-PSK mode. The Prestige default is 1800 seconds (30 minutes).
Authentication Databases

This field is only visible when WPA Mixed Mode is enabled.

When you configure Key Management Protocol to WPA, the Authentication Databases must be RADIUS Only. You only use the Local User Database Only with 802.1x Key Management Protocol.

BackClick Back to go to the main wireless LAN setup screen.
ApplyClick Apply to save these settings back to the Prestige.
CancelClick Cancel to reload the previous configuration for this screen.