2
Settings
Common
to
the
Network
Protocols
2-20
IEEE802.1X Authentication Settings
IEEE802.1X Authentication Settings
This section describes how to set the IEEE802.1X authentication.
For IEEE802.1X, the RADIUS server requires user authentication from the supplicant (machine)
when connecting to a network. EAPOL (EAP over LAN) is used for communication between the
supplicant and the authenticator (LAN switch) that performs access control of the terminal based on
the authentication results. Authentication information is managed collectively with the RADIUS
(Remote Authentication Dial In User Service) server, and then the supplicant is authenticated. Invalid
access can be prevented because this authentication method permits only supplicants authenticated
by the RADIUS server to connect to the network via an authenticator. The authenticator blocks
communication from supplicants not authenticated by the RADIUS server.
The machine supports the following methods of authentications:
Remark
You cannot set the EAP-TLS method and the
EAP-TTLS/PEAP method at the same time.
EAP-TLS (Extensible Authentication Protocol-Transport Level Security)
For the EAP-TLS method, authentication is performed by issuing a digital certificate bilaterally to both
the client and the RADIUS server. The key pair and client certificate sent from the machine are
verified using the CA certificate on the RADIUS server. The server certificate sent from the RADIUS
server is verified using the CA certificate on the client (the machine). The CA certificate used to verify
the server certificate must be registered. For information on installing the CA certificate file using the
Remote UI, see the Remote UI Guide For information on registering the installed CA certificate file,
see "Registering a CA Certificate File Installed from a Computer(p.3-47)."
Furthermore, the settings for the key pair (in PKCS#12 format) and the client certificate are necessary
to use the EAP-TLS with the machine. After installing the key pair file and client certificate file using
the Remote UI (see the Remote UI Guide"), set the key pair and client certificate for EAP-TLS as the
default key with the control panel of the machine.
Acesst 1.0 6251194
Summary of Contents for iR3245
Page 2: ......
Page 7: ...chapter 1 Before You Start...
Page 15: ...1 Before You Start Using E Mail I Fax 1 9 Using E Mail I Fax...
Page 18: ...1 Before You Start 1 12 Sending Data Sending Data...
Page 29: ...chapter 2 Settings Common to the Network Protocols...
Page 53: ...chapter 3 Using a TCP IP Network...
Page 149: ...3 Using a TCP IP Network FTP Server Settings 3 97 FTP Server Settings...
Page 171: ...chapter 4 Using a NetWare Network Windows...
Page 194: ...4 Using a NetWare Network Windows 4 24 Setting Up a Computer as a File Server...
Page 195: ...chapter 5 Using a NetBIOS Network...
Page 206: ...5 Using a NetBIOS Network 5 12 Printer Connection Method Printer Connection Method...
Page 222: ...5 Using a NetBIOS Network 5 28 Samba UNIX Linux Mac OS X...
Page 223: ...chapter 6 Using an AppleTalk Network Macintosh...
Page 228: ...6 Using an AppleTalk Network Macintosh 6 6 Setting Up a Computer for Printing...
Page 229: ...chapter 7 Troubleshooting...
Page 252: ...7 Troubleshooting 7 24 IEEE802 1X Authentication Problems and Remedies...
Page 253: ...chapter 8 Appendix...
Page 287: ......