WLAN Configuration

Multi PSK – Mist IoT Assurance

The Mist IoT Assurance cloud service streamlines IT operations while securing network connections for headless IoT and BYOD devices. It uses Multi Pre-Shared Key (MPSK) or Private Pre-Shared Key (PPSK) as new types of identity and policy vectors to provide a simple yet comprehensive way to onboard client devices without relying on client MAC addresses....

Personal WLANs

Personal WLANs are secure micro-segmented networks across a single WLAN.  These Personal WLANs are created by generating unique keys to access the SSID.  Each of these keys automatically creates a segment of the WLAN, isolated from the other Personal WLANs on the same network.  This is limited to 5000 PSKs (with suggested/select firmware) To set...

QoS Override

Override the QoS Priority in the WLAN Configurations page by selecting Override QoS and choosing Wireless Access Class from the dropdown menu.   For QoS override, on downstream (AP->Client), traffic gets marked with whatever QoS override Access Class value that is set. For upstream (Client->AP) marking is not supported so packets are marked with CS0.  

RadSec

RadSec is a protocol which allows RADIUS servers to transfer data over TCP and TLS for increased security.  With RadSec capabilities, you can transfer RADIUS packets through public networks while still ensuring end-to-end security through the transport layer.  This feature is configurable through using our Mist API or directly from the UI. UI configuration To...

TKIP Security

Please note: TKIP Encryption is not available by default.  If you would like to use TKIP in your WLAN, please contact us and we will enable this feature for you. WPA-2 with TKIP is enabled for compatibility with older clients that cannot be connected with the AES encryption protocol.  If your device is compatible, we...

URL-redirect AVP

Requires 0.7 or newer firmware With our URL-redirect AVP function, you can now configure a WLAN to redirect a user to a particular web page after 802.1X authentication has been successfully completed.  This web redirect can be configured to give the user either full or partial access to the network.  Use the URL-redirect function to...

VLANs (Static & Dynamic)

STATIC VLANs First configure a WLAN by going to Network > WLANs and then select Tagged in the VLAN section to configure a static VLAN for your network.  Here, enter your VLAN ID and make sure the same VLAN is tagged on your switch port. By default a WLAN will be set not to use...

WEP Security

Please note: WEP Authentication is not available by default.  If you would like to use WEP in your WLAN, please contact us and we will enable this feature for you. WLANs with WEP are enabled for compatibility with older clients that cannot be connected with the more modern security security protocols such as WPA-2. If...

WLAN Rate Limiting

  WLAN rate limit feature enables the admin to cap out the maximum rate a user can achieve per WLAN, per user or per application. To configure rate limiting on a WLAN, navigate to WLAN configuration in template or site level WLAN and select the WLAN. WLAN Rate Limit Specify the total uplink /downlink for...