etsysWPAConfigAllowLegacyClients
ENTERASYS-WIFI-PROTECTED-ACCESS-MIB ·
.1.3.6.1.4.1.5624.1.2.32.1.1.1.22
Object
This object provides a way to indicate that an access point in
WPA mode should accept associations from both WPA clients and
legacy (pre-WPA, pre-RSN) clients.
When this object is true(1), the etsysWPAConfigMulticastCipher
must be WEP-40 or WEP-104 (a.k.a. 128-bit WEP).
Using WEP Group keys and letting legacy clients associate may
weaken security. To minimize this,
1. Enable legacy associations only on radios that support
Pairwise keys.
2. Enable frequent Group key rekeying. With TKIP and AES,
there's much less threat of key cracking than with WEP,
so the default is 'once in a blue moon'. With WEP, you
need to think more in terms of Rapid Rekeying.
Access points implementing this feature are under no obligation
to support non-802.1X clients. For instance, an access point
might use one-time dynamic WEP keys when WPA Group key rotation
is disabled. Static WEP clients would not know these keys.
Context
- MIB
- ENTERASYS-WIFI-PROTECTED-ACCESS-MIB
- OID
.1.3.6.1.4.1.5624.1.2.32.1.1.1.22- Type
- column
- Access
- readwrite
- Status
- current
- Parent
- etsysWPAConfigEntry
- Table
- etsysWPAConfigTable
- Siblings
- 22
Values & Constraints
Type Values
1 | true |
2 | false |
Related Objects
Sibling Objects
| Object | Type | Syntax | OID |
|---|---|---|---|
| etsysWPAConfigIndex Each 802.11 interface is represented by an entry in the
ifTable. If this index is zero, the information in this
table shall apply to all 802.11 interfaces. | column | Integer32 | .1.3.6.1.4.1.5624.1.2.32.1.1.1.1 |
| etsysWPAConfigGroupRekeyPackets A packet count (in 1000s of packets) after which the WPA
group key shall be refreshed. The packet counter shall
start at the moment the group key was set using the
MLME-SetKeys… | column | 1000 packets Unsigned32 | .1.3.6.1.4.1.5624.1.2.32.1.1.1.10 |
| etsysWPAConfigGroupRekeyStrict This object signals that the WPA group key shall be
refreshed whenever a Station leaves the BSS. | column | SNMPv2-TCTruthValue | .1.3.6.1.4.1.5624.1.2.32.1.1.1.11 |
| etsysWPAConfigPSKValue The Pre-Shared Key (PSK) for when WPA in PSK mode is
the selected authentication suite. In that case, the PMK
will obtain its value from this object.
A string of… | column | OctetString | .1.3.6.1.4.1.5624.1.2.32.1.1.1.12 |
| etsysWPAConfigPSKPassPhrase The PSK, for when WPA in PSK mode is the selected
authentication suite, is configured by etsysWPAConfigPSKValue.
An alternative manner of setting the PSK uses the … | column | SNMPv2-TCDisplayString | .1.3.6.1.4.1.5624.1.2.32.1.1.1.13 |
| etsysWPAConfigPSKValueEntered Indicates whether the Pre-Shared Key (etsysWPAConfigPSKValue)
is set. This allows a network management system to prompt
the network manager, when appropriate, to enter the initia… | column | SNMPv2-TCTruthValue | .1.3.6.1.4.1.5624.1.2.32.1.1.1.14 |
| etsysWPAConfigMultipleAuthSuitesSupported Indicates whether the entity can take advantage of multiple
selections in the etsysWPAConfigAuthenticationSuitesTable.
On radios that allow use of only one key mana… | column | SNMPv2-TCTruthValue | .1.3.6.1.4.1.5624.1.2.32.1.1.1.15 |
| etsysWPAConfigGroupMasterRekeyTime The time in seconds after which the WPA group master
key must be changed. The timer shall start at the
moment the group master key was set.
A group key refresh wi… | column | seconds Unsigned32 | .1.3.6.1.4.1.5624.1.2.32.1.1.1.16 |
| etsysWPAConfigGroupUpdateTimeOut The time in seconds after which the WPA group
update handshake will be retried. The timer shall
start at the moment the group update message is sent. | column | seconds Unsigned32 | .1.3.6.1.4.1.5624.1.2.32.1.1.1.17 |
| etsysWPAConfigGroupUpdateCount The number of times the WPA Group update will be retried. | column | Unsigned32 | .1.3.6.1.4.1.5624.1.2.32.1.1.1.18 |
| etsysWPAConfigPairwiseUpdateTimeOut The time in seconds after which the WPA 4-way handshake
will be retried. The timer shall start at the moment a
4-way message is sent. | column | seconds Unsigned32 | .1.3.6.1.4.1.5624.1.2.32.1.1.1.19 |
| etsysWPAConfigOptionImplemented This variable indicates whether the entity is WPA-capable. | column | SNMPv2-TCTruthValue | .1.3.6.1.4.1.5624.1.2.32.1.1.1.2 |
| etsysWPAConfigPairwiseUpdateCount The number of times the WPA 4-way handshake will be retried. | column | Unsigned32 | .1.3.6.1.4.1.5624.1.2.32.1.1.1.20 |
| etsysWPAConfigLegacyOptionSupported This object indicates whether the entity supports the 'Allow
Legacy Clients' option. The answer may vary depending upon
the currently-installed radio card model. | column | SNMPv2-TCTruthValue | .1.3.6.1.4.1.5624.1.2.32.1.1.1.21 |
| etsysWPAConfigRekeyPairwiseWEP This object applies when WPA is enabled (dot11PrivacyInvoked,
etsysWPAConfigEnabled) and management has chosen to allow a mix
of WPA and non-WPA clients (etsysWPAConfigAllowLegacy… | column | SNMPv2-TCTruthValue | .1.3.6.1.4.1.5624.1.2.32.1.1.1.23 |
| etsysWPAConfigEnabled When this object is set to TRUE, this shall indicate that
WPA is enabled on this entity. The entity will advertise the
WPA Information Element in its Beacons and Probe Responses.… | column | SNMPv2-TCTruthValue | .1.3.6.1.4.1.5624.1.2.32.1.1.1.3 |
| etsysWPAConfigTKIPNumberOfReplayCounters Specifies the number of replay counters:
(0) - 1 replay counter,
(1) - 2 replay counters,
(2) - 4 replay counters,
(3) - 16 replay counters. | column | SNMPv2-SMIInteger32 | .1.3.6.1.4.1.5624.1.2.32.1.1.1.4 |
| etsysWPAConfigVersion The highest WPA version this entity supports. | column | SNMPv2-SMIInteger32 | .1.3.6.1.4.1.5624.1.2.32.1.1.1.5 |
| etsysWPAConfigPairwiseKeysSupported This object indicates how many pairwise keys the entity
supports for WPA. When zero, it only supports (four)
group keys. | column | Unsigned32 | .1.3.6.1.4.1.5624.1.2.32.1.1.1.6 |
| etsysWPAConfigMulticastCipher This object indicates the multicast cipher suite selector
the entity must use. The multicast cipher suite in the WPA
Information Element shall take its value from this variable.… | column | OctetString | .1.3.6.1.4.1.5624.1.2.32.1.1.1.7 |
| etsysWPAConfigGroupRekeyMethod This object selects a mechanism for rekeying the WPA Group Key.
The default is time-based, once per day. Rekeying the Group
key is only applicable to an entity acting in the Authe… | column | Enumeration | .1.3.6.1.4.1.5624.1.2.32.1.1.1.8 |
| etsysWPAConfigGroupRekeyTime The time in seconds after which the WPA group key
must be refreshed. The timer shall start at the moment
the group key was set using the MLME-SetKeys primitive.
The fine granula… | column | seconds Unsigned32 | .1.3.6.1.4.1.5624.1.2.32.1.1.1.9 |