Encryption

The settings for encryption and authentication of the Wireless Distribution System are configured under Wireless-LAN > WDS > Encryption.

Important: For WDS connections, we recommend using WPA3 to guarantee maximum security.

The following encryption profiles are stored by default and these can be used for the configuration of the WLAN networks.

P-PSK-WPA2
The authentication method used is WPA2 with pre-shared key (PSK), also known as WPA2-Personal. A key must be configured for the WLAN network.
P-PSK-WPA2-3
The authentication method used is WPA2 and/or WPA3 with pre-shared key (PSK), also known as WPA-Personal. A key must be configured for the WLAN network.
P-PSK-WPA3
The authentication method used is WPA3 with pre-shared key (PSK), also known as WPA3-Personal. A key must be configured for the WLAN network.




Profile-Name
Choose a meaningful name for the encryption profile here. This internal identifier is used to reference the encryption profile from other parts of the configuration.
Method
Here you configure the encryption method. The following methods are available:
WPA
WPA(2/3)-PSK: WPA2 and/or WPA3 with pre-shared key (PSK), also known as WPA-Personal.
RADIUS
WPA(2/3)-802.1X: WPA2 and/or WPA3 with RADIUS.
WPA-Version
Wi-Fi Protected Access (WPA) is an encryption method. Here you configure the WPA version used for the encryption methods WPA(2)-PSK and WPA(2)-802.1X. The following versions are available:
  • WPA1: WPA version 1 is used exclusively.
  • WPA2: WPA version 2 is used exclusively.
  • WPA3: WPA version 3 is used exclusively.
  • WPA1/2: Whether the encryption method WPA 1 or 2 is used depends on the capabilities of the client.
  • WPA2/3: Whether the encryption method WPA 2 or 3 is used depends on the capabilities of the client.
WPA1-Session-Keytypes
Here you configure the session key type to be used for WPA version 1. This also influences the encryption method used. The following types are available:
TKIP
TKIP encryption is used.
AES
AES encryption is used.
TKIP/AES
Whether the encryption method TKIP or AES is used depends on the capabilities of the client.
Note: Employing TKIP is only recommended for operating older WLAN clients which do not support AES.
Note: If a WLAN network uses only WEP or WPA with TKIP for encryption, the WLAN clients connected to it achieve a maximum gross data rate of 54 Mbps.
WPA2/3-Session-Keytypes
Here you configure the session key type to be used for WPA version 2 and 3. This also influences the encryption method used. The following types are available:
TKIP
TKIP encryption is used.
AES
AES encryption is used.
TKIP/AES
Whether the encryption method TKIP or AES is used depends on the capabilities of the client.
Note: Employing TKIP is only recommended for operating older WLAN clients which do not support AES.
Note: If a WLAN network uses only WEP or WPA with TKIP for encryption, the WLAN clients connected to it achieve a maximum gross data rate of 54 Mbps.
RADIUS-Client-Profile
Specify a RADIUS client profile here if necessary.

www.lancom-systems.com

LANCOM Systems GmbH | Adenauerstr. 20/B2 | 52146 Wuerselen | Germany | E-Mail info@lancom.de

LANCOM Logo