Re: [Aironet] A Complete Security Solution and WE
Status: Inactive
Brought to you by:
breed
From: <hid...@ya...> - 2001-08-29 12:05:50
|
Hi, Jim Which key does authenticated-STA use to encrypt the data traffic? the multicast/global key or the session key recieved from RADIUS server? I have heard that The AP uses the session key recieved from RADIUS server to securely transmit a per-STA unicast session key and multicast/global authentication key to the STA,and these are used with ordinary WEP encryption. Does aironet 350 series support the per-STA unicast session key to encrypt the traffic? > When you configure the AP for (LEAP/EAP) + WEP > you assign a key to WEP Key #1 (index 0) on the AP. > This static key is used for all broadcasts. > > Key #4, (index 3) is the session key. > This is different for all clients. > (You do NOT assign this on the AP) > > The AP sends the broadcast key to the clients > during the association/(LEAP/EAP) authentication > > > stage. I have heard that the wireless AP is configured to inhibit data traffic from being forwarded either to a wired network or to another wireless STA without valid authentication keys. In this case, what is the "authentication keys"? The multicast/global authentication key(Key #1) or a per-STA unicast session key(Key #4)? Thanks very much in advance, ---- hide |