cancel
Showing results for 
Search instead for 
Did you mean: 

Wi-Fi Combo

sugac_3385211
New Contributor II

In AP mode ,please specify all the capabilities supported from below list ?

1 Configuring SNMP settings on APs for least privilege (i.e., read only).

2 Disable SNMP if it is not used. SNMPv1 and SNMPv2 are not recommended.

3 Enhance AP management traffic security by using SNMPv3 or equivalent cryptographically protected protocol.

4 Use a local serial port interface for AP configuration to minimize the exposure of sensitive management information.

5 Consider other forms of authentication for the wireless network such as RADIUS and Kerberos.

6 Deploy intrusion detection agents on the wireless part of the network to detect suspicious behavior or unauthorized access and activity.

7 Deploy auditing technology to analyze the records produced by RADIUS for suspicious activity.

8 Deploy an 802.11 security product that offers other security features such as enhanced cryptographic protection or user authorization features.

11 Wait until future releases of 802.11 WLAN technologies incorporate fixes to the security features or provide enhanced security features.

12 When disposing access points that will no longer be used by the agency, clear access point configuration to prevent disclosure of network configuration, keys, passwords, etc.

13 If the AP supports logging, turn it on and review the logs on a regular basis.

0 Likes
1 Solution
GauravS_31
Moderator
Moderator

1. SNMP is not supported in WICED library.

2. You can check mbedTLS security library to explore the security features in WICED.

3. Access point configuration is stored in DCT which can be cleared.

View solution in original post

3 Replies
GauravS_31
Moderator
Moderator

1. SNMP is not supported in WICED library.

2. You can check mbedTLS security library to explore the security features in WICED.

3. Access point configuration is stored in DCT which can be cleared.

View solution in original post

AxLi_1746341
Honored Contributor

grsr wrote:

2. WICED provides enterprise security user authentication which has been tested on freeradius over EAP-TLS, EAP-TTLS and PEAPv0 for ThreadX build. Please refer to doc/WICED-Enterprise-Security-User-Guide.pdf for more details.

Are you sure enterprise security user authentication is supported when the device is running as *AP* mode?

GauravS_31
Moderator
Moderator

Sorry that is not supported in softAP mode. I have corrected it.