User guide

Infranet Controller Profile Configuration—UAC Networks Only  53

Chapter 5: Managing Profiles

c. Re-type the PIN under Please confirm your PIN.

d. Click OK.

After you create your new PIN, you are re-prompted to enter your new PIN,

followed by your token information.

Infranet Controller Profile Configuration—UAC Networks Only

Connecting to an Infranet Controller requires an authentication profile. Best

practices recommend that you have an authentication profile for each Infranet

Controller that you use to access protected network resources.

The profile configuration requirements are similar to those for a network

authentication profile. Configure the following settings:

 Profile name

 User name

 Password or other credentials

 Outer authentication protocol (TTLS or PEAP)

 Inner authentication protocol: EAP > JUAC (see “Setting JUAC as an Inner

Authentication Protocol for TTLS” on page 53)

 Realm name and role (optional). For more information about realms and roles,

see “Specifying a Preferred Realm and Role” on page 74.

JUAC is an inner EAP protocol developed by Juniper Networks for authenticating

access to an Infranet Controller. JUAC is compatible with TTLS and PEAP. This

section describes how to set up JUAC as an inner authentication protocol for TTLS

and for PEAP.

Setting JUAC as an Inner Authentication Protocol for TTLS

If you intend to connect to and be authenticated by an Infranet Controller, you must

use JUAC as an inner authentication protocol.

To add JUAC as in inner authentication protocol for TTLS:

1. Open the Profile Properties dialog.

2. Select the TTLS tab.

3. From the pull-down list of Inner EAP protocols, in order of preference, select

EAP.

4. Click the Add button to display the Add EAP Protocol dialog and select JUAC

and any other inner EAP protocols to add by highlighting one or more of them.

5. Click OK.