01-27-2016 10:44 PM - edited 07-05-2021 04:32 AM
Hi,
What are the differnces between in choosing option 1 and 2 in the wlan profile
1)
layer2 security
WPA2 + WPA
AUTH Key Mgmt : FT802.1X
2)
layer2 security
802.1x
AUTH Key Mgmt : FT802.1X
Thank you
01-27-2016 11:08 PM
Check this:
http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wlan-security/82135-wlc-authenticate.html#L2
Regards
Don't forget to rate helpful posts
01-28-2016 01:51 AM
Thanks Sandeep
My question , what s the difference between using WPA2 + WPA and AUTH Key Mgmt : FT802.1X
and 802.1x & AUTH Key Mgmt : FT802.1X together
thanks again
01-28-2016 01:13 AM
Check this
The Cisco Unified Wireless Network supports Layer 2 security methods.
Layer 2 security
Layer 2 security is not supported on Guest LANs.
This table lists the various Layer 2 and Layer 3 security methods supported on the Wireless LAN Controller. These security methods can be enabled from the Security tab on the WLANs > Edit page of the WLAN.
Layer 2 Security Mechanism | ||
---|---|---|
Parameter | Description | |
Layer 2 Security | None | No Layer 2 security selected. |
WPA+WPA2 | Use this setting in order to enable Wi-Fi Protected Access. | |
802.1X | Use this setting in order to enable 802.1x authentication. | |
Static WEP | Use this setting in order to enable Static WEP encryption. | |
Static WEP + 802.1x | Use this setting in order to enable both Static WEP and 802.1x parameters. | |
CKIP | Use this setting in order to enable Cisco Key Integrity Protocol (CKIP). Functional on AP Models 1100, 1130, and 1200, but not AP 1000. Aironet IE needs to be enabled for this feature to work. CKIP expands the encryption keys to 16 bytes. |
01-28-2016 04:42 AM
Thanks
I could see that one of the wlc below settings ,
Layer 2 Security : WPA+WPA2
WPA2 policy :enabled
wpa2 Encryption : aes enabled , and tkip also
auth key mgmt : ft+802.1x
If we need .802.1x authentication , Layer 2 security must be 802.1x , correct ?
Thanks
01-28-2016 04:59 AM
what exactly you want to do.Which kind of WLAN(Means the security) you want to implement?
1. WPa/WPA2 with AES/TKIP + FT802.1x
More Secure
2. 802.1x +WEP
Less Secure
Please go through this doc to understand:http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wlan-security/82135-wlc-authenticate.html#L2
Regards
Don't forget to rate helpful posts
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide