Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1651
Views
0
Helpful
0
Replies

Support for enabling both the TKIP and AES ciphers for WPA-protected SSID's in CCA

John Platts
Level 4
Level 4

‎11-03-2010 08:28 AM - edited ‎03-21-2019 03:13 AM

The AP541N plus the AP's on the UC520W and UC540W allow both the TKIP and AES ciphers to be enabled for WPA-protected SSIDs. However, CCA only allows either the TKIP or AES ciphers to be enabled but not both to be simultaneously enabled.

Here is the command to enable both the TKIP and AES ciphers for WPA-protected SSIDs on the UC520W and UC540W:

interface Dot11Radio0/5/0

!

encryption vlan 1 mode ciphers aes-ccm tkip

!

The reason I have turned on both the AES and TKIP ciphers for WPA-protected SSIDs is because some earlier WPA-capable wireless devices do not work properly with the AES cipher but work properly with the TKIP cipher. CCA currently does not like the above configuration. In addition, both ciphers can be enabled for WPA-protected SSIDs on the AP541N through its web-based user interface. For WPA-protected Voice SSIDs, only the AES cipher needs to be enabled as the 7921, 7925, SPA525G, SPA525G2, and 9971 all work correctly with WPA2 protection and the AES cipher enabled.

Will CCA 3.0 support enabling both the AES and TKIP ciphers for WPA-protected SSIDs on the UC520W, UC540W, and AP541N?

Labels:
0 Helpful
0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents