Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 6: Implement Wireless Scalability.

Published byHugo Carroll Modified over 8 years ago

Similar presentations

Presentation on theme: "© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 6: Implement Wireless Scalability."— Presentation transcript:

1 © 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 6: Implement Wireless Scalability

2 © 2006 Cisco Systems, Inc. All rights reserved. Module 6: Implement Wireless Scalability Lesson 6.5: Configuring Encryption and Authentication on Lightweight Access Points

3 © 2006 Cisco Systems, Inc. All rights reserved. Objectives  Describe how to use the WLAN controller to configure WLAN security options: Open authentication WEP key authentication WPA preshared key Web authentication 802.1x WPA2

4 © 2006 Cisco Systems, Inc. All rights reserved. WLAN Controllers ProductFeatures Cisco 4400 Series Wireless LAN Controllers For medium-to-large enterprise facilities The Cisco 4402 with 2 Gigabit Ethernet ports supports configurations for 12, 25, and 50 access points Cisco 4404 with 4 Gigabit Ethernet ports supports 100 access points Cisco 2100 Series Wireless LAN Controllers For small to medium-sized businesses or branch offices

5 © 2006 Cisco Systems, Inc. All rights reserved. WLAN Controller Topology and Network Connections WLAN Controller

6 © 2006 Cisco Systems, Inc. All rights reserved. Configuring Open Authentication

7 © 2006 Cisco Systems, Inc. All rights reserved. Configuring Static WEP Key Authentication

8 © 2006 Cisco Systems, Inc. All rights reserved. Configuring WPA Preshared Key This example shows WPA preshared key.

9 © 2006 Cisco Systems, Inc. All rights reserved. Web Authentication  Users authenticate via a web browser interface.  Clients using HTTP are automatically directed to a login page: Customizable for logos and text Maximum simultaneous authentication requests—21 Maximum local web authentication users—2500  Generally used for guest access: Data is not secure between the access point and the client.

10 © 2006 Cisco Systems, Inc. All rights reserved. Configuring Web Authentication

11 © 2006 Cisco Systems, Inc. All rights reserved. Customizing the Web Login Page

12 © 2006 Cisco Systems, Inc. All rights reserved. 802.1x Authentication Microsoft Windows XP clients support only 40-bit or 104-bit dynamic WEP keys.

13 © 2006 Cisco Systems, Inc. All rights reserved. Configuring WPA with 802.1x This example shows WPA with dynamic keys.

14 © 2006 Cisco Systems, Inc. All rights reserved. WPA2 This example shows WPA2 with dynamic keys.

15 © 2006 Cisco Systems, Inc. All rights reserved. Self Check 1.What is web authentication? 2.How is it typically used? 3.Which controller supports web authentication?

16 © 2006 Cisco Systems, Inc. All rights reserved. Summary  Authentication and encryption are the two primary facilities for securing the WLAN. While encryption using static WEP keys is very vulnerable, WLANs can now be configured to support EAP and the 802.1x standards including LEAP, EAP-FAST, EAP-TLS, PEAP, WPA, and WPA2.

17 © 2006 Cisco Systems, Inc. All rights reserved. Q and A

18 © 2006 Cisco Systems, Inc. All rights reserved. Resources  Five Steps to Securing Your Wireless LAN and Preventing Wireless Threats http://www.cisco.com/en/US/netsol/ns340/ns394/ns348/ns386/n etworking_solutions_white_paper0900aecd8042e23b.shtml  Wireless LAN Security White Paper http://www.cisco.com/en/US/netsol/ns340/ns394/ns348/ns386/n etworking_solutions_white_paper09186a00800b469f.shtml  Security of the WEP algorithm http://www.isaac.cs.berkeley.edu/isaac/wep-faq.html

19 © 2006 Cisco Systems, Inc. All rights reserved.

Download ppt "© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 6: Implement Wireless Scalability."

Similar presentations

© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 High-performance Gigabit Ethernet ports rapidly transfer large files supporting.

© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 High-performance Gigabit Ethernet ports rapidly transfer large files supporting.
Filtering and Security By Mohammad Shanehsaz June 2004.

Filtering and Security By Mohammad Shanehsaz June 2004.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Configure a Wireless Router LAN Switching and Wireless – Chapter 7.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Configure a Wireless Router LAN Switching and Wireless – Chapter 7.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Access Control Lists Accessing the WAN – Chapter 5.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Access Control Lists Accessing the WAN – Chapter 5.
Implementing Security for Wireless Networks Presenter Name Job Title Company.

Implementing Security for Wireless Networks Presenter Name Job Title Company.
Network Access and 802.1X Klaas Wierenga SURFnet

Network Access and 802.1X Klaas Wierenga SURFnet
© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 6: Implement Wireless Scalability.

© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 6: Implement Wireless Scalability.
802.1x EAP Authentication Protocols

802.1x EAP Authentication Protocols
© 2006 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialBCMSN 6 - 6 1 Configuring Wireless LANs BCMSN Module 6 Lesson 6.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialBCMSN Configuring Wireless LANs BCMSN Module 6 Lesson 6.
© 2003, Cisco Systems, Inc. All rights reserved. FWL 1.0—8-1 Security Olga Torstensson Halmstad University.

© 2003, Cisco Systems, Inc. All rights reserved. FWL 1.0—8-1 Security Olga Torstensson Halmstad University.
WLAN Security:PEAP Sunanda Kandimalla. Intoduction The primary goals of any security setup for WLANs should include: 1. Access control and mutual authentication,

WLAN Security:PEAP Sunanda Kandimalla. Intoduction The primary goals of any security setup for WLANs should include: 1. Access control and mutual authentication,
DVG-N5402SP.

DVG-N5402SP.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Wireless Technologies Networking for Home and Small Businesses – Chapter 7.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Wireless Technologies Networking for Home and Small Businesses – Chapter 7.
Top-Down Network Design Chapter Eight Developing Network Security Strategies Copyright 2010 Cisco Press & Priscilla Oppenheimer.

Top-Down Network Design Chapter Eight Developing Network Security Strategies Copyright 2010 Cisco Press & Priscilla Oppenheimer.
© 2007 Cisco Systems, Inc. All rights reserved.ICND1 v1.0—3-1 Wireless LANs Understanding WLAN Security.

© 2007 Cisco Systems, Inc. All rights reserved.ICND1 v1.0—3-1 Wireless LANs Understanding WLAN Security.
Wireless Security with 802.1X Copyright 2005 Michael Griego This work is the intellectual property of the author. Permission is granted for this material.

Wireless Security with 802.1X Copyright 2005 Michael Griego This work is the intellectual property of the author. Permission is granted for this material.
802.1X in Windows Tom Rixom Alfa & Ariss. Overview 802.1X/EAP 802.1X in Windows Tunneled Authentication Certificates in Windows WIFI Client in Windows.

802.1X in Windows Tom Rixom Alfa & Ariss. Overview 802.1X/EAP 802.1X in Windows Tunneled Authentication Certificates in Windows WIFI Client in Windows.
Wireless Network Security Lab Last Update 2011.06.01 1.0.0 1Copyright 2011 Kenneth M. Chipps Ph.D. www.chipps.com.

Wireless Network Security Lab Last Update Copyright 2011 Kenneth M. Chipps Ph.D.
1 © 2005 Cisco Systems, Inc. All rights reserved. 111 © 2004, Cisco Systems, Inc. All rights reserved.

1 © 2005 Cisco Systems, Inc. All rights reserved. 111 © 2004, Cisco Systems, Inc. All rights reserved.
Network Topology. Cisco 2921 Integrated Services Router Security Embedded hardware-accelerated VPN encryption Secure collaborative communications with.

Network Topology. Cisco 2921 Integrated Services Router Security Embedded hardware-accelerated VPN encryption Secure collaborative communications with.

Similar presentations

Ads by Google