Dell PowerConnect W-Airwave Configuration Manual page 79

W-airwave 7.1 configuration guide

Hide thumbs Also See for PowerConnect W-Airwave:

User manual (334 pages)

Configuration manual (176 pages)

Manual (50 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

page of 176

/ 176
Contents
Table of Contents
Bookmarks

Table of Contents

Table 17 Aruba Configuration > Profiles > AAA > 802.1x Auth Profile Settings (Continued)

Field

xSec MTU

(1024 - 1500 Bytes)

Termination

Termination EAP-

Type TLS

Termination EAP-

Type PEAP

Termination Inner

EAP-Type

MSCHAPv2

Termination Inner

EAP-Type GTC

Token Caching

Period (1-240 hrs)

CA-Certificate

Server-Certificate

TLS Guest Access

TLS Guest Role

AirWave Wireless Management Suite | Configuration Guide

Default

Description

1300 bytes

Define the maximum transmission unit size in bytes.

Select this option to terminate 802.1x authentication on the controller.

Specify if the EAP termination type is TLS.

Specify EAP-PEAP termination.

802.1x authentication based on PEAP with MS-CHAPv2 provides both

computer and user authentication. If a user attempts to log in without the

computer being authenticated first, the user is placed into a more limited

"guest" user role.

Windows domain credentials are used for computer authentication, and

the user's Windows login and password are used for user authentication. A

single user sign-on facilitates both authentication to the wireless network

and access to the Windows server resources.

Enable or disable this setting. You can enable caching of user credentials

on the controller as a backup to an external authentication server. The

EAP-Microsoft Challenge Authentication Protocol version 2 (MS-CHAPv2),

described in RFC 2759, is widely supported by Microsoft clients.

Enable or disable GTC. EAP-Generic Token Card (GTC): Described in RFC

2284, this EAP method permits the transfer of unencrypted usernames

and passwords from client to server. The main uses for EAP-GTC are one-

time token cards such as SecureID and the use of LDAP or RADIUS as the

user authentication server.

You can also enable caching of user credentials on the controller as a

backup to an external authentication server.

Disabled

Specify whether EAP token caching is enabled or disabled.

Specify token caching, in hours. The supported range is from 1 to 240

hours.

N/A

Type the CA certificate imported into the controller.

N/A

Specify a server certificate. The list of available certificates is taken from

the computer certificate store on which IAS is running. In this case, a self-

signed certificate was generated by the local certificate authority and

installed on the IAS system. On each wireless client device, the local

certificate authority is added as a trusted certificate authority, thus allowing

this certificate to be trusted.

Specify if TLS authentication supports guest users.

User-level authentication is performed by an external RADIUS server using

PPP EAP-TLS. In this scenario, client and server certificates are mutually

authenticated during the EAP-TLS exchange. During the authentication,

the controller encapsulates EAP-TLS messages from the client into

RADIUS messages and forwards them to the server.

ap-role

Specify the TLS authentication role that will support guests. This setting

requires a policy enforcement firewall license.

Aruba Configuration Reference |

Table of Contents

This manual is also suitable for:

Airwave wireless management suite

Dell PowerConnect W-Airwave Configuration Manual page 79

Related Manuals for Dell PowerConnect W-Airwave

Related Products for Dell PowerConnect W-Airwave

This manual is also suitable for:

Table of Contents