Avaya AP-3 Security

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
I want to lock down an Avaya AP-3 by mac address authentication. I do see a  
place to do this in the web management interface, but it does not seem to
want to hold the mac addresses that I enter. Anybody know what I could be
doing wrong here?

Phil M.

Re: Avaya AP-3 Security

Quoted text here. Click to load it

Sorry I can't help directly with your problem.
However I'd question how far you can lock down a wireless device by mac address
authentication anyway.
It is much too easy for an attacker to pick up valid mac addresses and then
alter their machine's mac address to match.

I'd probably look at upgrading your firmware and using WPA either with 802.1X
authentication or pre-shared key.
The former is to be preferred in a company rather than home environment since
the latter can be vulnerable to a dictionary attack on the pass phrase -
however it should still be a lot better than mac authentication especially if
you use a long and complex pass phrase to generate the pre-shared key.
As far as I am aware apart from this dictionary attack there are currently no
known successful attacks against WPA.

A firmware upgrade for the AP-3 to support WPA is available from


David Webb
Security team leader
Middlesex University

Quoted text here. Click to load it

Site Timeline