12-09-2013 02:11 PM - edited 07-04-2021 01:23 AM
Hi,
We have a staff WLAN on Cisco WLC 5508. We use 802.1x with TKIP with authentication from RADIUS server. We deployed new 802.11n APs but on staff WLAN we cannot enable 802.11n because of the TKIP encryption. Can we just simply change the encryption without changing any other configuration to support 802.11n data rates?
Solved! Go to Solution.
12-09-2013 02:28 PM
On your WLAN you can enable AES and TKIP. Just know that some clients mau have issue when they see both TKIP and AES. Ive had pretty good success with this in the past. Dont forget, you also need to enable WMM allowed to get N rates.
But you will need to configure AES on the client as well to support N rates.
__________________________________________________________________________________________
"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
__________________________________________________________________________________________
"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."
12-09-2013 02:28 PM
You'll also need to change the clients. Windows picks either WPA enterprise or WPA2 Enterprise, so if you can push a GPO that will make it easier.
On the WLC you'll want to go to WPA2/AES only (disable WPA/TKIP), and you should also check and make sure that 802.11n rates are enabled.
HTH,
Steve
------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
12-09-2013 02:28 PM
On your WLAN you can enable AES and TKIP. Just know that some clients mau have issue when they see both TKIP and AES. Ive had pretty good success with this in the past. Dont forget, you also need to enable WMM allowed to get N rates.
But you will need to configure AES on the client as well to support N rates.
__________________________________________________________________________________________
"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
__________________________________________________________________________________________
"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."
12-09-2013 02:28 PM
You'll also need to change the clients. Windows picks either WPA enterprise or WPA2 Enterprise, so if you can push a GPO that will make it easier.
On the WLC you'll want to go to WPA2/AES only (disable WPA/TKIP), and you should also check and make sure that 802.11n rates are enabled.
HTH,
Steve
------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide