User's Manual Part 2
Table Of Contents
- Chapter 3 - Configuring the Computer
- Developing Applications for the Computer
- Packaging Applications for the CN3 Computer
- Installing Applications on the Computer
- Updating the System Software
- Launching Your Application Automatically
- Customizing How Applications Load on the Computer
- Configuring CN3 Parameters
- Configuring the Color Camera
- Configuring the SF51 Scanner
- Using Configuration Parameters
- Chapter 4 - Maintaining the Computer
- Chapter 5 - Network Support
- Index
Chapter 5 — Network Support
CN3 Mobile Computer User’s Manual - PRELIMINARY 141
TLS (EAP-TLS)
EAP-TLS is a protocol that is based on the TLS (Transport Layer Security)
protocol widely used to secure web sites. This requires both the user and
authentication server have certificates for mutual authentication. While
cryptically strong, this requires corporations that deploy this to maintain a
certificate infrastructure for all their users.
Use “TLS” to configure using EAP-TLS as an authentication protocol, pick
“Open,” “WPA,” “WPA2,” or “Network EAP” as an association mode.
1 Set 8021x Security as “TLS, then choose any of the following:
•Set Association to “Open.”
•Set Association to “WPA.”
•Set Association to “WPA2” and Encryption to either “TKIP” or
“AES.”
•Set Association to “Network EAP” and Encryption to either “WEP”
or “CKIP.”
2 Enter your unique Subject Name and User Name of the corresponding
certificate installed on your CN3 Computer to use this protocol.
3 Tap Get Certificates to obtain or import server certificates. See
page 144.
4 Tap Additional Settings to set options for server certificate validation
and trust.
Additional TLS Settings
1 Check Validate Server Certificate to verify the identity of the authenti-
cation server based on its certificate when using TLS.
2 Tap Root CA, select a root certificate, then tap OK to return to the TLS
settings.
3 Enter the Common Names of trusted servers. Note that if these fields are
left blank, the client will accept any authentication server with a valid certif-
icate. For increased security, you should specify exactly which authentication
servers you expect to use.