cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Please be advised, the GuideMe Wizard is no longer available on the Small Business Support Community. For search capability please use the community search field to find content related to Cisco Small Business documents, videos, and discussions.
1441
Views
0
Helpful
0
Replies
Highlighted
Enthusiast

Support for enabling both the TKIP and AES ciphers for WPA-protected SSID's in CCA

The AP541N plus the AP's on the UC520W and UC540W allow both the TKIP and AES ciphers to be enabled for WPA-protected SSIDs. However, CCA only allows either the TKIP or AES ciphers to be enabled but not both to be simultaneously enabled.

Here is the command to enable both the TKIP and AES ciphers for WPA-protected SSIDs on the UC520W and UC540W:

interface Dot11Radio0/5/0

!

encryption vlan 1 mode ciphers aes-ccm tkip

!

The reason I have turned on both the AES and TKIP ciphers for WPA-protected SSIDs is because some earlier WPA-capable wireless devices do not work properly with the AES cipher but work properly with the TKIP cipher. CCA currently does not like the above configuration. In addition, both ciphers can be enabled for WPA-protected SSIDs on the AP541N through its web-based user interface. For WPA-protected Voice SSIDs, only the AES cipher needs to be enabled as the 7921, 7925, SPA525G, SPA525G2, and 9971 all work correctly with WPA2 protection and the AES cipher enabled.

Will CCA 3.0 support enabling both the AES and TKIP ciphers for WPA-protected SSIDs on the UC520W, UC540W, and AP541N?