MikroTik

Hi,
I have a small hotspot with a customer that wants to do sensitive data access online.
He wants to be connected via a secured "https" access point.
For the interim, i've given him a wpa2 key. So he is the only one at the moment that can connect.
Can one suggest the best way to lock down an AP so that users connect securely.
Untill I enable https on the hotspot server profile. Is this the best method?
And what's the best approach to tell the customer he's secure.
Basically what's the difference in level of security between having an https connection and giving the customer a WPA2 connection?

Thanks

https hotspot only ensures that the person's login+password is sent securely. His data (browsing etc) will not be encrypted. Use WPA2 for the maximum security. It will encrypt all traffic that's going over the Wifi connection with a very strong encryption.

I guess I was confusing https hotspot with https activitated on a Wireless Access point.

Thanks Normis

Data is data to an access point or a router, you don't "activate" HTTPS on an access point unless it is for the management interface which will make no difference to the end user. Layer2/3 devices only really ever look at the packet headers to determine where to send that data and don't pay attention to the payload of that packet.

So by setting up WPA2 on the access point you have fulfilled his request as Normis has said. For more security for the end user on the access point, be sure to turn off default forwarding. This will prevent other end users from trying to connect to his computer over the access point itself.