Resolution
During the logon session, the RADIUS server encrypts and sends the WEP key (called a session key) over the wired LAN to the Cisco Access Point (AP). The AP encrypts its broadcast key with the session key, and sends the encrypted broadcast key to the client. The client then uses the session key to decrypt it. The client and AP activate WEP and use the session and broadcast WEP keys for all communications during the remainder of the session.
For more information on how broadcast keys work for EAP authentication, refer to the EAP Authentication to the Network section of Configuring Authentication Types.
For more information on how to configure broadcast keys, refer to the Assigning Authentication Types to an SSID section of Configuring Authentication Types.
Problem Type
Definitions
Security Options
Broadcast key rotation