akara ngosi CISCO

Ebe agbakwunyere ihe njikwa ikuku agbakwunyere
Ntuziaka onye ọrụ

ọdịnaya zoo
1 Ebe agbakwunyere ihe njikwa ikuku agbakwunyere
2 Hash-na-Element (H2E)
3 YANG (ụdị RPG)
4 Na-ahazi WPA3 SAE H2E
5 Na-enyocha nkwado WPA3 SAE H2E na WLAN
6 Akwụkwọ / akụrụngwa
6.1 Ntụaka

Ebe agbakwunyere ihe njikwa ikuku agbakwunyere

Ebe CISCO agbakwunyere ihe njikwa ikuku ikukuCISCO agbakwunyere ihe njikwa ikuku na-eme ka ihe nweta ebe - figNkwado maka Hash-to-Element for Password Element na SAE Nyocha

 

  • Hash-to-Element (H2E), na ibe 1
  • YANG (ụdị RPG), na ibe 1
  • Na-ahazi WPA3 SAE H2E, na ibe 2
  • Na-enyocha nkwado WPA3 SAE H2E na WLAN, na ibe 4

Hash-na-Element (H2E)

Hash-to-Element (H2E) bụ usoro SAE Password Element (PWE) ọhụrụ. Na usoro a, PWE nzuzo eji eme ihe na SAE protocol sitere na paswọọdụ.
Mgbe STA na-akwado H2E ji AP malite SAE, ọ na-enyocha ma AP na-akwado H2E. Ọ bụrụ ee, AP na-eji H2E nweta PWE site na iji uru koodu ọnọdụ akọwapụtara ọhụrụ na ozi SAE Commit.
Ọ bụrụ na STA na-eji ịchụ nta-na-pecking, mgbanwe SAE niile agaghị agbanwe agbanwe.
Mgbe ị na-eji H2E, ewepụtara PWE n'ime ihe ndị a:

  • Mwepụta nke ihe etiti etiti nzuzo PT site na paswọọdụ. Enwere ike ịme nke a na-anọghị n'ịntanetị mgbe ahaziri paswọọdụ mbụ na ngwaọrụ maka otu ọ bụla akwadoro.
  • Mwepụta nke PWE site na PT echekwara. Nke a na-adabere na ndị nwere mkparịta ụka na adreesị MAC nke ndị ọgbọ. A na-eme nke a ozugbo n'oge mgbanwe SAE.

Ebe njikwa ikuku agbakwunyere CISCO - akara ngosi Rịba ama

  • Usoro H2E tinyekwara nchebe megide mwakpo otu Downgrade mmadụ-na-etiti. N'oge mgbanwe SAE, ndị ọgbọ na-agbanwe ndepụta nke otu ndị a jụrụ ajụ na ntinye PMK. Ndị ọgbọ ọ bụla na-atụnyere ndepụta enwetara na ndepụta nke otu ndị akwadoro, enweghị nkwekọrịta ọ bụla na-achọpụta mwakpo mbelata wee kwụsị nyocha ahụ.

YANG (ụdị RPG)

Iji mepụta RPC maka ọnọdụ SAE Password Element (PWE), jiri ụdị RPC ndị a:CISCO agbakwunyere ihe njikwa ikuku agbakwunyere ihe ntinye ohere - fig1
Ebe njikwa ikuku agbakwunyere CISCO - akara ngosi Rịba ama

Ọrụ ihichapụ ahụ na-eme otu ihe n'otu oge n'ihi oke infra dị ugbu a. Ya bụ, na modul YANG, anaghị akwado ọrụ ihichapụ n'ọtụtụ ọnụ.

Na-ahazi WPA3 SAE H2E

Usoro Iwu ma ọ bụ Omume Ebumnuche
Nzọụkwụ 1 hazie ọnụ
ExampLe:
Ngwaọrụ # nhazi ọnụ		 Na-abanye ụdị nhazi ụwa.
Nzọụkwụ 2 wan wan-aha kwụsịrị SSID-aha ExampLe:
Ngwaọrụ (nhazi) # wan WPA3 1 WPA3		 Na-abanye n'okpuru ọnọdụ nhazi WLAN.
Nzọụkwụ 3 enweghị nchekwa wpa akm dot1x
ExampLe:
Ngwaọrụ(config-wlan)# enweghị nchekwa wpaakm dot1x		 Gbanyụọ nchekwa AKM maka dot1x.
Nzọụkwụ 4 enweghị nchekwa ft over-the-ds ExampLe:
Ngwaọrụ(config-wlan)# enweghị nchekwa ft over-the-ds		 Na-ewepụ mgbanwe ọsọ ọsọ na isi iyi data na WLAN.
Nzọụkwụ 5 enweghị nchekwa ft ExampLe:
Ngwaọrụ(config-wlan)# enweghị nchekwa ft		 Gbanyụọ mgbanwe ngwa ngwa 802.11r na WLAN.
Nzọụkwụ 6 enweghị nchekwa wpa wpa2 ExampLe:
Ngwaọrụ(config-wlan)# enweghị nchekwa wpa wpa2		 Gbanyụọ nchekwa WPA2. PMF nwere nkwarụ ugbu a.
Nzọụkwụ 7 nchekwa wpa wpa2 ciphers aes
ExampLe:
Ngwaọrụ(config-wlan)# security wpa wpa2 ciphers aes		 Na-ahazi cipher WPA2.
Mara Ị nwere ike ịlele ma ahaziri cipher na-eji enweghị nchekwa wpa wpa2 ciphers aes iwu. Ọ bụrụ ntọgharịghị cipher, hazie ya
ntụsara ahụ.
Nzọụkwụ 8 nchekwa wpa psk set-key ascii uru preshared-igodo ExampLe:
Ngwaọrụ(config-wlan)# security wpa psk set-key ascii 0 Cisco123		 Na-akọwapụta igodo etinyegoro.
Nzọụkwụ 9 nche wpa wpa3 ExampLe:
Ngwaọrụ(config-wlan)# security wpa wpa3		 Na-akwado nkwado WPA3.
Nzọụkwụ 10 nche wpa akm sae ExampLe:
Device(config-wlan)# security wpa akm sae		 Na-akwado nkwado AKM SAE.
Nzọụkwụ 11 nche wpa akm sae pwe {h2e | hnp | ma-h2e-hnp}
ExampLe:
Device(config-wlan)# security wpa akm sae pwe		 Na-akwado nkwado AKM SAE PWE.
PWE na-akwado nhọrọ ndị a:
• h2e — Hash-to-Element naanị; gbanyụọ Hnp.
•hnp-Ịchụ nta na Ịchụ nta naanị; gbanyụọ H2E.
• Abụọ-h2e-hnp-Ma Hash-to-Element na ịchụ nta na nkwado Pecking (bụ nhọrọ ndabara).
Nzọụkwụ 12 enweghị nkwụsị ExampLe:
Ngwaọrụ(config-wlan)# enweghị nkwụsị		 Na-akwado WLAN.
Nzọụkwụ 13 ngwụcha ỌpụampLe:
Ngwaọrụ(config-wlan)# njedebe		 Na-alaghachi na ọnọdụ EXEC dị mkpa.

Na-enyocha nkwado WPA3 SAE H2E na WLAN

Iji view Njirimara WLAN (usoro PWE) dabere na WLAN ID, jiri iwu a:

CISCO agbakwunyere ihe njikwa ikuku agbakwunyere ihe ntinye ohere - fig2

CISCO agbakwunyere ihe njikwa ikuku agbakwunyere ihe ntinye ohere - fig3
CISCO agbakwunyere ihe njikwa ikuku agbakwunyere ihe ntinye ohere - fig4

Iji nyochaa ndị otu ndị ahịa ejirila usoro PWE dị ka H2E ma ọ bụ Hnp, jiri iwu a:
CISCO agbakwunyere ihe njikwa ikuku agbakwunyere ihe ntinye ohere - fig5
CISCO agbakwunyere ihe njikwa ikuku agbakwunyere ihe ntinye ohere - fig6

CISCO agbakwunyere ihe njikwa ikuku agbakwunyere ihe ntinye ohere - fig7
Iji view ọnụọgụ nke nzere SAE site na iji H2E na HnP, jiri iwu a:

CISCO agbakwunyere ihe njikwa ikuku agbakwunyere ihe ntinye ohere - fig8CISCO agbakwunyere ihe njikwa ikuku agbakwunyere ihe ntinye ohere - fig9

Nkwado maka Hash-to-Element for Password Element na SAE Nyochaakara ngosi CISCO

Akwụkwọ / akụrụngwa

Ebe CISCO agbakwunyere ihe njikwa ikuku ikuku [pdf] Ntuziaka onye ọrụ
Ihe njikwa ikuku agbakwunyere agbakwunyere ihe nnweta, ihe njikwa ikuku ikuku, ebe njikwa ihe njikwa, ebe nnweta, ebe nnweta, ntụpọ.

Ntụaka

Hapụ ikwu

Agaghị ebipụta adreesị ozi-e gị. Akara mpaghara achọrọ akara *