Moxa AWK-4121-EU-T [30/89] Awk 4121 web console configuration

AWK-4121 Web Console Configuration

3-12

WLAN Security Settings

The AWK-4121 provides four standardized wireless security modes: Open, WEP (Wired Equivalent Privacy),

WPA (Wi-Fi Protected Access) and WPA2. Several types of security models are available in AWK-4121 by

selecting Security mode and the WPA type:

• Open: No authentication, no data encryption.

• WEP: Static WEP (Wired Equivalent Privacy) keys must be manually configured.

• WPA/WPA2-Personal: Also known as WPA/WPA2-PSK. You need to specify the Pre-Shared Key in the

Passphrase field, which will be used by the TKIP or AES engine as a master key to generate keys that

actually encrypt outgoing packets and decrypt incoming packets.

• WPA/WPA2-Enterprise: Also called WPA/WPA2-EAP (Extensible Authentication Protocol). In addition to

device-based authentication, WPA/WPA2-Enterprise enables user-based authentication via IEEE802.1X.

The AWK-4121 can support three EAP methods: EAP-TLS, EAP-TTLS, and EAP-PEAP.

Security mode

Setting Description Factory Default

Open No authentication Open

WEP Static WEP is used

WPA* WPA is used

WPA2* Fully supports IEEE802.11i with “TKIP/AES + 802.1X”

* WPA and WPA2 cannot be supported in WDS (Bridge) mode.

Open

For security reasons, it is highly recommended that the security mode should be set to the options other than

Open System. When the security mode is set to Open System, no authentication or data encryption will be

performed.

WEP

According to the IEEE802.11 standard, WEP can be used for authentication and data encryption

(confidentiality). Shared (or Shared Key) authentication type is used if WEP authentication and data

encryption are both needed. Normally, Open (or Open System) authentication type is often used when WEP

data encryption is run with authentication.

When WEP is enabled as a security mode, the length of a key (so-called WEP seed) can be specified as 64/128

bits, which is actually a 40/104-bit secret key with a 24-bit initialization vector. The AWK-4121 provides 4

entities of WEP key settings that can be selected to use with Key index. The selected key setting specifies the

key to be used as a send-key for encrypting traffic from the AP side to the wireless client side. All 4 WEP keys

are used as receive-keys to decrypt traffic from the wireless client side to the AP side.

The WEP key can be presented in two Key types, HEX and ASCII. Each ASCII character has 8 bits, so a 40-bit

(or 64-bit) WEP key contains 5 characters, and a 104-bit (or 128-bit) key has 13 characters. In hex, each

character uses 4 bits, so a 40-bit key has 10 hex characters, and a 128-bit key has 26 characters.