Reference Manual for the NETGEAR ProSafe Dual Band Wireless Access Point WAG102
Basic Installation and Configuration
3-19
v1.0, September 2005
—
WPA with Radius.
If selected, you must configure the Radius Server Settings (see
Figure 3-13 on page 3-27
).
—
WPA2-PSK.
WPA2 is a later version of WPA. Only select this if all clients support
WPA2. If selected, you must use AES encryption and enter the WPA passphrase (network
key).
—
WPA2 with Radius.
WPA2 is a later version of WPA. Only select this option if all clients
support WPA2. If selected, you must use AES encryption and configure the Radius Server
Settings (see
Figure 3-13 on page 3-27
).
—
WPA and WPA2 with Radius.
This selection allows clients to use either WPA (with
TKIP encryption) or WPA2 (with AES encryption). If selected, you must use TKIP + AES
encryption and configure the Radius Server Settings (see
Figure 3-13 on page 3-27
).
•
Data Encryption
: Select the desired option. If enabled (64 bit, 128 bit or 152 bits) the keys
must be entered, and other wireless stations must use the same keys. The default is None.
–
The 64- and 128-bit WEP (Wired Equivalent Privacy) options are the standard encryption
strength options.
–
The 152-bit key length is a proprietary WEP mode that will only work with other wireless
devices that support this mode.
–
The TKIP option is automatically enabled when either
WPA with Radius
or
WPA-PSK
authentication type is selected.
–
The AES option is automatically enabled when
WPA2-PSK
or
WPA2 with Radius
authentication type is selected. Some clients may support AES encryption with WPA, but
such an option is not supported by the WAG102 Access Point.
–
TKIP + AES. This option is automatically selected when
WPA and WPA2 with Radius
authentication type is selected. Broadcast packets always use TKIP. For unicast (point-to-
point) transmissions, WPA clients use TKIP and WPA2 clients use AES.
•
Passphrase
: To use the
passphrase
to generate the keys, enter a passphrase and click the
Generate Keys
button. You can also enter the keys directly. These keys must match the other
wireless stations. The key length must be 8 to 63 characters.
•
Key 1, Key 2, Key 3, Key 4
: Select the key to be used as the default key. Data transmissions
are always encrypted using the default key. The other keys can only be used to decrypt
received data. The four entries will be disabled if
Legacy 802.1x
or a
WPA/WPA2
authentication option is selected.
•
Re-authentication Time
: The time interval in seconds after which the supplicant will be
authenticated again with the Radius Server. The default is 3600 seconds.