Configuring a 2370, 2360, or 2380 Switch for Basic Service 109WLAN—Security Switch 2300 Series Installation and Basic Configuration GuideTable 9.Defaults for Service Profile ParametersParameter DefaultValueRadio Behavior WhenParameter Set To DefaultValueauth-dot1x enable When the Wi-Fi Protected Access(WPA) information element (IE) isenabled, uses 802.1X to authenticateWPA clients.auth-fallthru web-portal Uses Web-based AAA for users who donot match an 802.1X or MACauthentication rule for the SSIDrequested by the user.auth-psk disable Does not support using a preshared key(PSK) to authenticate WPA clients.beacon enable Sends beacons to advertise the SSIDmanaged by the service profile.cipher-ccmp disable Does not use Counter with CipherBlock Chaining MessageAuthentication Code Protocol (CCMP)to encrypt traffic sent to WPA clients.cipher-tkip enable When the WPA IE is enabled, usesTemporal Key Integrity Protocol (TKIP)to encrypt traffic sent to WPA clients.cipher-wep104 disable Does not use Wired Equivalent Privacy(WEP) with 104-bit keys to encrypttraffic sent to WPA clients.cipher-wep40 disable Does not use WEP with 40-bit keys toencrypt traffic sent to WPA clients.psk-phrase No passphrasedefined Uses dynamically generated keys ratherthan statically configured keys toauthenticate WPA clients.psk-raw No presharedkey defined Uses dynamically generated keys ratherthan statically configured keys toauthenticate WPA clients.rsn-ie disable Does not use the RSN IE in transmittedframes.shared-key-auth disable Does not use shared-key authentication.This parameter does not enable PSKauthentication for WPA. To enable PSKencryption for WPA, use theset radio-profile auth-psk command.ssid-name trapeze Uses the SSID name trapeze.ssid-type crypto Encrypts wireless traffic for the SSID.
