Wireless Network Manager Administration Guide

Technical Documentation>  Managing Policies>  SSID Policy>  SSID Policies>  Adding SSID Security Policies>  General>  Authentication
Table of Contents

Authentication

Wireless authentication methods ensure only authorized devices can access a network. Wireless Network Manager supports a wide variety of authentication methods, to ensure different security levels of the authentication method for your wireless connections.

  • Authentication Type - This field allows you to choose an authentication type for the SSID.
  • Cipher Type - Auto is the only choice for the cipher type in this case.
  • Group Key Interval (seconds) - Select this option for the Group Key Interval in seconds.
  • PMF Option - The Protected Management Frames (PMF) standard provides an approved amendment to the IEEE 802.11 standard to protect wireless management frames, the IEEE 802.11W-2009. The chosen SSID can be edited. You can choose the options Enabled, Disabled or Required.
  • Strict rekey - Disabling the Strict Rekey can potentially help improve connectivity in environments with a lot of wireless interference.

    PSK Type - Choose Unique PSK, Multiple PSK, Multiple PSK with Radius using the radio button. When multiple PSK is selected, you need to add a client PSK setting. Click the + icon from MULTIPLE PSK to add client PSK global policy. From the Client MAC Address Group dropdown, choose the desired policy and enter the passphrase. Click Add to continue.

    To assign VLAN ID, you need to enable VLAN.

    If you choose Multiple PSK with Radius, you need to input EAP Setting options like number of server tries, primary server retry interval (in minutes), NAS identifier, NAS IP Address.

    If you choose the Authentication Type as WPA2 - EAP. The page allows you to configure RADIUS accounting support on the new SSID for this authentication type.

    • For Radius Server and Radius Accounting Server, the Server IP address for the respective ports and server secret key has to be provided.

      The maximum characters that can be entered for the fields under Radius Server and Radius Accounting Server are as follows
      Server 1 or 2 Port = 1 to 65535, Server 1 or 2 Secret = 128.

    • The enabling RADIUS CoA Support helps you to connect the devices to act as a RADIUS dynamic authorization server, and respond to the RADIUS Change of Authorization (CoA) and disconnect messages sent by the RADIUS server.

Passphrase -A passphrase is required before you can complete any configuration changes.