• SonicOS8
• About Access Points
• Settings
  • Synchronize Access Points
  • Provisioning Overview
  • Creating/Modifying Provisioning Profiles
    • Adding/Editing a Provisioning Profile - Getting Started
    • General Settings for Provisioning Profiles
    • 5GHz/2.4GHz Radio Basic Settings for Provisioning Profiles
      • Radio Settings
      • Wireless Security
      • Protected Management Frames (PMF Option)
      • About Local Radius Servers and EAP Authentication Balancing
      • Configuring Radius Server Settings
      • ACL Enforcement
      • Remote MAC Address Access Control Settings
    • 5GHz/2.4GHz Radio Advanced Settings for Provisioning Profiles
      • Configuring the RSSI Threshold
      • Configuring IEEE802.11r Settings for Secure Fast Roaming
      • Configuring IEEE802.11k Settings for Dynamic Radio Management
      • Configuring IEEE802.11v Settings for Dynamic Environment Management
    • Sensor Settings for WIDP in Provisioning Profiles
    • Mesh Network Settings for Provisioning Profiles
      • Setting Up a Mesh Network
      • Enabling a Multi-hop Mesh Network
      • Active/Active Clustering Full Mesh
    • 3G/4G/LTE WWAN Settings for Provisioning Profiles
      • Manually Configuring the 3G/4G/LTE WWAN Profile
      • Configuring Load Balancing among Multiple USB Modems
    • Bluetooth LE Settings for Provisioning Profiles
    • Deleting Access Point Profiles
    • Product Specific Configuration Notes
  • Managing Access Point Objects
    • Deleting Access Point Objects
    • Rebooting Access Point Objects
    • Modifying Access Point Objects
• Firmware Management
  • About Firmware Management
  • Obtaining the Latest SonicWall Firmware
  • Downloading Firmware from a Specific URL
  • Uploading Firmware to an Access Point
• Floor Plan View
  • Managing the Floor Plans
    • Selecting a Floor Plan
    • Creating a Floor Plan
    • Editing a Floor Plan
  • Managing Access Points
    • Available Devices
    • Added Access Points
    • Removing Access Points
    • Export Image
    • Context Menu
• Station Status
• Intrusion Detection Services
  • Scanning Access Points
  • Authorizing Access Points
• Advanced IDP
  • Enabling Wireless IDP on a Profile
  • Configuring Wireless IDP Settings
  • Viewing KRACK Sniffer Packets
• Packet Capture
• Virtual Access Points
  • Before Configuring VAPs
    • Determining Your VAP Needs
    • Determining Security Configurations
    • Sample Network Definitions
    • Prerequisites
    • VAP Configuration Worksheet
  • Access Point VAP Configuration Task List
  • Virtual Access Point Groups
  • Virtual Access Point Objects
    • General Tab
    • Advanced Tab
  • Virtual Access Point Profiles
    • Virtual Access Point Schedule Settings
    • Virtual Access Point Profile Settings
    • Remote MAC Address Access Control Settings
    • ACL Enforcement
    • IEEE802.11R Settings
    • IEEE802.11K Settings
    • IEEE802.11V Settings
    • Agile Multiband Settings
• RF Monitoring
  • Prerequisites
  • RF Monitoring Summary
  • 802.11 General Frame Setting
  • 802.11 Management Frame Setting
  • 802.11 Data Frame Setting
  • Discovered RF Threat Stations
  • Adding a Threat Station to the Watch List
  • Practical RF Monitoring Field Applications
    • Using Sensor ID to Determine RF Threat Location
    • Using RSSI to Determine RF Threat Proximity
• RF Analysis
  • Using RF Analysis on SonicWall Access Points
    • Understanding the RF Score
    • Channel Utilization Graphs and Information
    • Viewing Overloaded Channels
    • RFA Highly Interfered Channels
• RF Spectrum
• FairNet
  • Supported Platforms
  • FairNet Features
  • Management Interface Overview
  • Configuring FairNet
• Wi-Fi Multimedia
  • WMM Access Categories
  • Assigning Traffic to Access Categories
  • Configuring Wi-Fi Multimedia Parameters
    • Configuring WMM
    • Creating a WMM Profile for an Access Point
• 3G/4G/LTE WWAN
• Bluetooth LE Devices
  • Viewing BLE Scanned Data
• Radio Management
  • Configuring Radio Management
  • Configuring Dynamic Channel Selection Settings
• SonicWall Support
  • About This Document

Wireless Security

The SonicOS interface is context-sensitive. If a VAP Group was selected in the General screen, the Wireless Security section is hidden and you can skip this section.

To set the Wireless Security options

1. Scroll down to the Wireless Security section. The options vary depending on the selected Authentication Type.

   

   

   

To configure Wireless Security

1. In the Wireless Security section, select the Authentication Type from the drop-down menu.

   The options available change with the type of configuration you select. If a WPA2 - EAP option is selected, the Radius Server Settings section is displayed.

2. Define the remaining settings, using the following tables as a reference:

   WPA2 Settings for Wireless Security

   Description
   Authentication Type	Settings
   WPA and WPA2 (Wi-Fi Protected Access) are protocols for protecting wireless devices. Selecting one of the WPA2 - AUTO options allows the WPA protocol to be used if a device is not enabled for WPA2.
   WPA2 - PSK	Select Cipher Type from the drop-down menu. Options are AES (default), TKIP, or Auto. Set the Group Key Interval in seconds. The default is 86400. For SonicWave, select the PMF Option from the drop-down menu. See Protected Management Frames (PMF Option). Define the Passphrase for the public shared key.
   WPA2 - EAP	For SonicWave , select the Authentication Balance Method from the drop-down menu. See About Local Radius Servers and EAP Authentication Balancing. Select Cipher Type from the drop-down menu. Options are AES (default), TKIP, or Auto. Set the Group Key Interval in seconds. The default is 86400. For SonicWave, select the PMF Option from the drop-down menu. See Protected Management Frames (PMF Option).
   WPA2 - AUTO - PSK	Select Cipher Type from the drop-down menu. Options are AES (default), TKIP, or Auto. Set the Group Key Interval in seconds. The default is 86400. For SonicWave , select the PMF Option from the drop-down menu. See Protected Management Frames (PMF Option). Define the Passphrase for the public shared key.
   WPA2 - AUTO - EAP	For SonicWave, select the Authentication Balance Method from the drop-down menu. See About Local Radius Servers and EAP Authentication Balancing. Select Cipher Type from the drop-down menu. Options are AES (default), TKIP, or Auto. Set the Group Key Interval in seconds. The default is 86400. For SonicWave, select the PMF Option from the drop-down menu. See Protected Management Frames (PMF Option).

   WPA3 Settings for Wireless Security

   Description
   Authentication Type	Settings
   WPA3 (Wi-Fi Protected Access 3) is the latest iteration protocol for protecting wireless devices. Selecting one of the WPA3 options signs up new devices through processes that do not require the use of shared passwords.
   WPA3 - OWE	Opportunistic Wireless Encryption (OWE).
   WPA3 - PSK	Select Cipher Type from the drop-down menu. Options are AES (default). Set the Group Key Interval in seconds. The default is 86400. Define the Passphrase for the individual access key.
   WPA2 - EAP	For SonicWave , select the Authentication Balance Method from the drop-down menu. See About Local Radius Servers and EAP Authentication Balancing. Select Cipher Type from the drop-down menu. Options are AES (default). Set the Group Key Interval in seconds. The default is 86400.
   WPA3/WPA2 - PSK	Select Cipher Type from the drop-down menu. Options are AES (default). Set the Group Key Interval in seconds. The default is 86400. Define the Passphrase for the individual access key.
   WPA3/WPA2 - EAP	For SonicWave, select the Authentication Balance Method from the drop-down menu. See About Local Radius Servers and EAP Authentication Balancing. Select Cipher Type from the drop-down menu. Options are AES (default). Set the Group Key Interval in seconds. The default is 86400.
   WPA3 - EAP - 192B	For SonicWave, select the Authentication Balance Method from the drop-down menu. See About Local Radius Servers and EAP Authentication Balancing. Select Cipher Type from the drop-down menu. Options are GCMP (default). Set the Group Key Interval in seconds. The default is 86400.