User Manual User guide

802.1x Setting / CeRtiFiCation

EAP Method: The EAP authentication protocols supported by this

adapter require that settings be consistent with the wireless access

points or routers that the adapter is intended to connect.

• PEAP & TTLS: These protocols are similar and easier to use than

TLS (below) in that they specify a stand-alone authentication protocol

to be used within an encrypted tunnel. TTLS supports any protocol

within its tunnel, including CHAP, MS-CHAP, MS-CHAPv2, PAP and

EAP-MD5. PEAP species that an EAP-compliant authentication

protocol be used; this adapter supports EAP-MSCHAP v2, EAP-TLS/

Smart Card and Generic Token Card. The client certicate is optional.

• TLS/Smart Card: This is the most secure of the EAP protocols, but

isn’t easy to use: It requires that digital certicates be exchanged in

the authentication phase. The server presents a certicate to the

client and, after validating the server’s certicate, the client presents

a client certicate to the server for validation.

Session Resumption: Click/check the box to activate or de-activate.

ID/Password: Enter the password as the identity for the server.

Client Certication: A client certicate is required for TLS, but is

optional for TTLS and PEAP. This forces a client certicate to be

selected from the appropriate Windows Certicate Store and made

available to the RADIUS server for certication.

Tunneled Authentication/Protocol: When the authentication type is

PEAP or TTLS, select a protocol for building the encrypted tunnel.

Tunnel Authentication: Select one of three options from the drop-

down menu: “EAP-MSCHAPv2,” “EAP-TLS/Smart card” or “Generic

Token Card.”

CONFIGURATION