Indeed. Our environment sees anywhere from 6-10k unique devices every day. Less than one tenth of one percent of those use TKIP. (6-10 devices total).
All of the other devices choose the most robust cipher suite available (CCMP-AES). And I bet we could disable TKIP entirely without any trouble. Xbox 360's got WPA2-Personal support many years ago via firmware update, but there was a time that they didn't support it well. http://forums.xbox.com/xbox_forums/xbox_support/f/9/p/298768/1566370.aspx Also remember that TKIP-RC4 devices are forbidden by the standard from using MCS rates. Sent from a grassfire using smoke signals ________________________________ From: Steve Bohrer<mailto:skboh...@simons-rock.edu> Sent: 3/30/2015 10:13 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> Subject: Re: [WIRELESS-LAN] Cisco 2702 APs and MacOS security error? We are very small, so my experiences don’t necessarily scale, but we disabled TKIP two years ago with no complaints. Are lots of people still running TKIP? Are there particular classes of equipment that require it? Steve Bohrer Network Admin, ITS Bard College at Simon's Rock 413-528-7645 On Mar 27, 2015, at 12:09 PM, Joe Roth <jr...@binghamton.edu<mailto:jr...@binghamton.edu>> wrote: We are in the process of upgrading some buildings to 2702 APs, and after doing our first building clients with Apple hardware are seeing some odd behavior. They are receiving the attached error. It seems to be related to TKIP. We plan to remove TKIP from the WPA2 SSID this summer anyway and go with AES natively, but in the mean time we are trying to determine a fix. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
