Manualshelf

Specifications

ManualsBrandsExtreme Networks ManualsComputer equipmentWM20 Controller
41424344454647484950
Creating the Windows Security Infrastructure
Summit WM20 Technical Reference Guide, Software Version 4.244
authentication servers that must perform validation, select Connect to these servers and type the
names.
3 Click OK to save changes to the Smart Card or other Certificate EAP type.
Step 10: Configuring Wireless Client Computers for
PEAP-MS-CHAP v2
If you have configured Wireless Network (IEEE 802.11) Policies Group Policy settings and specified the
use of PEAP-MS-CHAP v2 authentication for your wireless network (the Protected EAP (PEAP) type
with the Secured password (EAP-MSCHAP v2) authentication method), then no other configuration for
wireless clients running Windows XP with SP1, Windows XP with SP2, or Windows Server 2003 is
needed.
To manually configure PEAP-MS-CHAP v2 authentication on a wireless client running Windows XP
with SP1, Windows XP with SP2, or Windows Server 2003, do the following:
1 Obtain properties of the wireless connection in the Network Connections folder. Click the Wireless
Networks tab, click the name of the wireless network in the list of preferred networks, and then click
Properties.
2 Click the Authentication tab and select Enable network access control using IEEE 802.1X and the
Protected EAP EAP type.
3 Click Properties. In the Protected EAP Properties dialog box, select Validate server certificate to
validate the computer certificate of the IAS server (enabled by default). If you want to specify the
names of the authentication servers that must perform validation, select Connect to these servers
and type the names. In Select Authentication Method, click Secured password (EAP-MSCHAP v2).
To configure PEAP-MS-CHAP v2 authentication on a wireless client running Windows 2000 SP4, do the
following:
1 Obtain properties of the wireless connection in the Dial-up and Network Connections folder.
2 Click the Authentication tab and select Enable network access control using IEEE 802.1X and the
Protected EAP EAP type.
3 Click Properties. In the Protected EAP Properties dialog box, select Validate server certificate to
validate the computer certificate of the IAS server (enabled by default). If you want to specify the
names of the authentication servers that must perform validation, select Connect to these servers and
type the names. In Select Authentication Method, click Secured password (EAP-MSCHAP v2).
NOTE
By default, the PEAP-MS-CHAP v2 authentication uses your Windows logon credentials for wireless authentication. If
you are connecting to a wireless network that uses PEAP-MS-CHAP v2 and you want to specify different credentials,
click Configure and clear the Automatically use my Windows logon name and password check box.
Although the Protected EAP Properties dialog box for Windows XP with SP1, Windows XP with SP2,
Windows Server 2003, and Windows 2000 SP4 has an Enable Fast Reconnect check box, IAS in
Windows 2000 does not support fast reconnect. IAS in Windows Server 2003 does support fast
reconnect.
If the root CA certificate of the issuer of the computer certificates installed on the IAS servers is already
installed as a root CA certificate on your wireless clients, no other configuration is necessary. If your