User guide

Odyssey Access Client User Guide

48  TTLS Settings

 It is possible that anonymous EAP-PEAP authentication does not work with

your network authentication server, in which case leave the Anonymous name

blank.

TTLS Settings

Use the TTLS Settings tab to configure EAP-TTLS as an authentication protocol.

These settings are relevant only if you select EAP-TTLS as an authentication

protocol in the Authentication tab.

EAP-TTLS creates a secure encrypted tunnel through which your credentials are

presented to the authentication server. If you use EAP-TTLS with password

credentials, an inner authentication protocol completes the authentication. See

“EAP-TTLS” on page 102 for more information about this protocol.

Selecting an Inner Authentication Protocol

TTLS and PEAP support inner authentication tunnels. Inner authentication provides

an additional level of security by transferring password credentials through an

encrypted tunnel between the client and the authentication server. Table 4 on

page 49 lists the compatible inner and outer authentication protocols for TTLS and

PEAP.

Use the Inner authentication protocol list to select the inner authentication

protocol to use. Consult you network administrator for the recommended corporate

settings for your network.

NOTE: Your outer identity can be anonymous if your list of configured

authentication protocols for this profile includes only EAP-TTLS, EAP-PEAP, and/or

EAP-FAST. If you enable any other protocols, OAC cannot keep your identity

private and the Anonymous name field is disabled.