Specifications

AP as 802.1X supplicant

Summit WM Technical Reference Guide, Software Version 5.3104

3 Type the EAP-PEAP username and password. The username can be one of the pre-defined choices:

AP name, serial number, MAC or type a custom string.

4 Save the configuration. The certificate status window displays the results of the configuration push

to the AP.

NOTE

The AP should be connected to the Summit WM Controller in order to receive and acknowledge the configuration. If

the AP is not connected, the configuration will be pushed the next time it connects to the Summit WM Controller.

EAP-TLS configuration with the Summit WM Controller as proxy

EAP-TLS authentication, unlike EAP-PEAP, involves a third-party CA server to generate the credentials.

Do the following:

1 In proxy mode, click Generate Certificate Signing Request on the 802.1X tab to create the certificate

request.

2 Fill up the entries and save the CSR in PKCS#10 format on the local machine disk. The Summit WM

Controller names the file with the AP serial number and .csr extension.

3 After obtaining the certificate from the CA, navigate to the .cer file under the EAP-TLS section of the

802.1X tab. Confirm that the file was exported in DER format (.cer). Do not specify a password since

it is only necessary when the file format is .pfx and contains the private key.

4 To easily match .cer files to an AP, export the certificates from the CA to a file with AP serial name.

5 Save the configuration. The certificate status window displays the results of the configuration push

to the AP. The AP may reject the configuration for one of the reasons described in “Transferring

credentials from the Summit WM Controller to AP” on page 98.

Configure AP

with EAP-

PEAP

credentials