Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
824
Views
5
Helpful
2
Replies

WPA and WEP on AP1200

jonathanmayhew
Level 1
Level 1

‎05-22-2008 07:55 AM - edited ‎07-03-2021 03:55 PM

I have a number of wireless clients which connect to Cisco 1200 AP's. They currently connect using WEP but we want to connect clients using both WEP and WPA at the same time (until we start phasing out WEP devices).

I have tried WPA migration mode but this is not suitable as you cannot enter the WEP key in key position 1 (which the WEP devices are on). Migration mode only allows you to use 2 and 3. I am not in the position to reconfigure the WEP clients to key 2 or 3 unfortunately as they are located in public transport vehicles.

We have also tried setting up two SSID's and configure one for WPA and one for WEP. The only way of doing this though is by setting up two VLANs, one for each method of encryption. This does get devices connecting using WPA or WEP but only one set of devices can see the 1200 access points (the devices which are in the native VLAN of the AP). We need the AP to see both.

In summary is the Cisco AP 1200 is capable of allowing connections from both WEP and WPA wireless clients at the same time? This would allow us to migrate clients from WEP to WPA at our leisure.

Labels:
0 Helpful
2 Replies 2

andrew.prince
Level 10
Level 10

‎05-22-2008 08:36 AM

Jonathan,

You are going on the right track with:-

"We have also tried setting up two SSID's and configure one for WPA and one for WEP. The only way of doing this though is by setting up two VLANs, one for each method of encryption. This does get devices connecting using WPA or WEP but only one set of devices can see the 1200 access points (the devices which are in the native VLAN of the AP). We need the AP to see both" it sounds like you are only broadcasting the SSID of the WEP SSID. You need to enable MBSSID, something like:-

dot11 ssid TEST1

mbssid guest-mode

dot11 ssid TEST2

mbssid guest-mode

interface Dot11Radio0

mbssid

ssid TEST1

ssid TEST2

The the devices will see the two SSID's the WEP and WPA - then you can connect to either.

HTH.

jonathanmayhew
Level 1
Level 1
In response to andrew.prince

‎05-23-2008 07:13 AM

Thank you for your suggestion. It looks like the VLAN method is the way to go. I will try your commands and see where I get with it. I will post my findings at the end of next week.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card