Configuring user encryption 305Nortel WLAN—Security Switch 2300 Series Configuration GuideConfiguring a global PSK passphrase or raw key for all clientsTo configure a global passphrase for all WPA clients, use the following command:set service-profile name psk-phrase passphraseThe passphrase must be from 8 to 63 characters long, including blanks. If you use blanks, you must enclose thestring in quotation marks.To configure service profile wpa to use passphrase 1234567890123<>?=+&% The quick brown fox jumpsover the lazy sl, type the following command:WSS# set service-profile wpa psk-phrase "1234567890123<>?=+&% The quickbrown fox jumps over the lazy sl"success: change accepted.As an alternative to entering a passphrase, which WSS Software converts into a key, you can enter the keyitself in raw hexadecimal format. To enter a PSK key in raw format, use the following command:set service-profile name psk-raw hexFor hex, type a 64-bit ASCII string representing a 32-digit hexadecimal number. Enter the two-characterASCII form of each hexadecimal number.Examples To configure service profile wpa to use a raw PSK with PSK clients,type a command such as the following:WSS# set service-profile wpa psk-rawc25d3fe4483e867d1df96eaacdf8b02451fa0836162e758100f5f6b87965e59dsuccess: change accepted.Disabling 802.1X authentication for WPATo disable 802.1X authentication for WPA clients, use the following command:set service-profile name auth-dot1x {enable | disable}To disable WPA authentication in service profile wpa, type the following command:WSS# set service-profile wpa auth-dot1x disablesuccess: change accepted.Displaying WPA settingsTo display the WPA settings in a service profile, use the following command:show service-profile {name | ?}Note. This command does not disable 802.1X authentication for non-WPA clients.