Actually this can be fairly easy. The WEP is to encrypt (poorly in my view) what flies through the air. I won't dive into any deep debate, but it's not bulletproof but you want the bare minimum level so it's not human readable packets in the air. I've found that knocking it back to the 64bit encryption saved us from replacing non-playing wifi cards/drivers. YOUR CHOICE.
As to the MAC address. You just set the policy that no unknown MACs are allowed and make a file for the allowed ones and add them as you go.
Be sure to look out for the 32 user limit per WAP. Hint: you need more than one WAP.
Bob
My organization is looking at providing wireless access to everyone in the organization that has a wireless device.
We wanted to lock it down and of course that means the usual WEP encryption and also MAC address filtering. However, given that we support 100+ people, the task of actually manually inputting that information onto various wireless adapters is daunting.
I'm basically looking for an equivalent of a wireless DHCP style access point that can not only manage the individual connections from wireless devices but also that of other wireless access points (same brand obviously) so that the various access points throughout the building actually get the Mac address information and other bits of information from that one "master" WAP device.
Is there such a product like that out there? Or is this more of piece by piece system that one must configure on his own? Any ideas or suggestions would be appreciated, thanks in advance!

Chowhound
Comic Vine
GameFAQs
GameSpot
Giant Bomb
TechRepublic