From f37d3c1fad766762b8cec2d5d452c866ecaeb0fe Mon Sep 17 00:00:00 2001 From: Pierantonio Merlino Date: Tue, 17 Dec 2024 09:01:14 +0100 Subject: [PATCH] docs: Updated note on WPA3 (#5608) Updated note on WPA3 Signed-off-by: pierantoniomerlino --- docs/gateway-configuration/network-configuration.md | 4 ++-- docs/gateway-configuration/wifi-configuration.md | 11 +++++++++-- 2 files changed, 11 insertions(+), 4 deletions(-) diff --git a/docs/gateway-configuration/network-configuration.md b/docs/gateway-configuration/network-configuration.md index 422c703b68..ee64f29172 100644 --- a/docs/gateway-configuration/network-configuration.md +++ b/docs/gateway-configuration/network-configuration.md @@ -173,7 +173,7 @@ Name | Type | De `net.interface..config.wifi.master.driver` | String | The driver used for the connection | `net.interface..config.wifi.master.passphrase` | Password | The password for the access point | `net.interface..config.wifi.master.ssid` | String | The SSID of the access point | -`net.interface..config.wifi.master.securityType` | String | The security protocol for the wireless network; possible values are `SECURITY_NONE`, `SECURITY_WEP`, `SECURITY_WPA`, `SECURITY_WPA2`, `SECURITY_WPA_WPA2` | `SECURITY_NONE` +`net.interface..config.wifi.master.securityType` | String | The security protocol for the wireless network; possible values are `SECURITY_NONE`, `SECURITY_WEP`, `SECURITY_WPA`, `SECURITY_WPA2`, `SECURITY_WPA_WPA2`, `SECURITY_WPA3`, `SECURITY_WPA2_WPA3` (see [here](../wifi-configuration#notes-about-wpa3-security) for more details about WPA3) | `SECURITY_NONE` `net.interface..config.wifi.master.mode` | String | The mode of the wireless connection; for the access point mode set it to `MASTER` | `MASTER` `net.interface..config.wifi.master.channel` | String | The channel to be used for the access point | 1 `net.interface..config.wifi.master.radioMode` | String | Specify the 802.11 radio mode; possible values are `RADIO_MODE_80211a`, `RADIO_MODE_80211b`, `RADIO_MODE_80211g`, `RADIO_MODE_80211nHT20`, `RADIO_MODE_80211_AC` | `RADIO_MODE_80211b` @@ -193,7 +193,7 @@ Name | Type | D `net.interface..config.wifi.infra.mode` | String | The mode of the wireless connection; for station mode set to `INFRA` | `INFRA` `net.interface..config.wifi.infra.pingAccessPoint` | Boolean | Enable pinging the access point after connection is established | false `net.interface..config.wifi.infra.driver` | String | The driver used for the connection | -`net.interface..config.wifi.infra.securityType` | String | The security protocol for the wireless network; possible values are `SECURITY_NONE`, `SECURITY_WEP`, `SECURITY_WPA`, `SECURITY_WPA2`, `SECURITY_WPA_WPA2` | `SECURITY_NONE` +`net.interface..config.wifi.infra.securityType` | String | The security protocol for the wireless network; possible values are `SECURITY_NONE`, `SECURITY_WEP`, `SECURITY_WPA`, `SECURITY_WPA2`, `SECURITY_WPA_WPA2`, `SECURITY_WPA3`, `SECURITY_WPA2_WPA3` (see [here](../wifi-configuration#notes-about-wpa3-security) for more details about WPA3) | `SECURITY_NONE` `net.interface..config.wifi.infra.groupCiphers` | String | Group ciphers i.e. group/broadcast encryption algorithms which prevents connections to Wi-Fi networks that do not utilize one of the algorithms set, possible values are `CCMP`, `TKIP`, and `CCMP_TKIP` | `CCMP_TKIP` `net.interface..config.wifi.infra.pairwiseCiphers` | String | Pairwise ciphers i.e. pairwise encryption algorithms which prevents connections to Wi-Fi networks that do not utilize one of the algorithms set, possible values are `CCMP`, `TKIP`, and `CCMP_TKIP` | `CCMP_TKIP` diff --git a/docs/gateway-configuration/wifi-configuration.md b/docs/gateway-configuration/wifi-configuration.md index ba4aaf4381..a22e86f524 100644 --- a/docs/gateway-configuration/wifi-configuration.md +++ b/docs/gateway-configuration/wifi-configuration.md @@ -95,8 +95,7 @@ In addition to the options described above, the **Wireless** configuration displ ## Notes about WPA3 security -The support to WPA3 security feature is experimental. Before using it, update your system with the latest changes and check that the WiFi module installed on you device has the latest firmware. -To check if an interface supports the new WPA3 security, run the following command: +The support to WPA3 security feature is experimental and disabled by default. Before using it, update your system with the latest changes and check that the WiFi module installed on you device has the latest firmware. To check if an interface supports the new WPA3 security, run the following command: ``` iw phy | grep -i sae @@ -107,3 +106,11 @@ and verify is the following output is present ``` Device supports SAE with AUTHENTICATE command ``` + +To enable the WPA3 WiFi Security in Eclipse Kura, edit the `/opt/eclipse/kura/user/kura_custom.properties` and add the following line: + +``` +kura.wpa3.wifi.security.enable=true +``` + +In this way the WPA3 and WPA2/WPA3 entries will be available in the Wireless Tab on the web UI and the wifi interface will be configurable with the new security using the REST APIs. \ No newline at end of file