User's Manual Part 3

Table Of Contents

Chapter 5 — Network Support

CN3 Mobile Computer User’s Manual - PRELIMINARY 143

5 Tap Additional Settings to assign an inner TTLS authentication and an

inner EAP, and set the server certificate validation and trust.

Additional TTLS Settings

1 Select an authentication method from the Inner TTLS Authentication

drop-down list.

2 If you select “EAP” for the inner authentication protocol, then select an

inner EAP protocol from the Inner EAP drop-down list.

3 Enter the Common Names of trusted servers. Note that if these fields are

left blank, the client will accept any authentication server with a valid certif-

icate. For increased security, you should specify exactly which authentication

servers you expect to use.

Check Validate Server Certificate to verify the identity of the authenti-

cation server based on its certificate when using TTLS.

4 Tap Root CA, select a root certificate, then tap OK to return to the

Inner TTLS Authentication.

5 Enter the Anonymous EAP-TTLS Name as assigned for public usage.

Use of this outer identity protects your login name or identity.

PAP Password Authentication Protocol. A simple authentication protocol that sends security

information in the clear.

CHAP Challenge Handshake Authentication Protocol. Use of Radius to authenticate a termi-

nal without sending security data in the clear. Authenticates against non-Windows user

databases. You cannot use this if authenticating against a Windows NT Domain or Active

Directory.

MS-CHAP; MS-CHAP-V2 Authenticates against a Windows Domain Controller and other non-Windows user

databases.

PAP/Token Card Use with token cards. The password value entered is never cached.

EAP Extensible Authentication Protocol