Security
ColorQube 9301/9302/9303 Multifunction Printer
91
System Administrator Guide
Enabling and Configuring 802.1X in CentreWare Internet Services
1.
In CentreWare Internet Services, click
Properties
>
Security
.
2.
Click
802.1X
.
3.
Under Protocol, select
Enable 802.1X
.
4.
Under Authentication Method, select the method used on your network. Options are:
EAP-MD5
PEAPv0/EAP-MS-CHAPv2
EAP-MS-CHAPv2
EAP-TLS
Note:
When the printer is in FIPS 140 mode, EAP-TLS authentication is required.
5.
Under User Name (Device Name), type the user name required by your authentication switch and
server.
6.
If you selected PEAPv0/EAP-MS-CHAPv2, EAP-MS-CHAPv2, or EAP-TLS as the Authentication
Method, you can require the printer to validate certificates used to encrypt 802.1X. Under Server
Validation, select the root certificate that you want to use to validate the authentication server.
Select
No Validation
if you do not want to validate a certificate.
Notes:
TLS authentication and server verification both require X.509 certificates. To use these
features, install the necessary certificates on the Security Certificates page before configuring
802.1X.
The Default Xerox
®
Device Certificate cannot be used with EAP-TLS in Windows environments.
It can be used in FreeRADIUS server environments.
7.
To view or save a certificate, select the certificate from the menu and click
View/Save
.
Certificate details appear on the View/Save Device Certificate page.
a.
To save the certificate file to your computer, at the bottom of the page, click
Save Base-64
encoded (PEM)
.
b.
Click
Cancel
to return to the previous page.
8.
If you selected PEAPv0/EAP-MS-CHAPv2, EAP-MS-CHAPv2, or EAP-TLS as the Authentication
Method, you can allow the printer to encrypt 802.1X communication. Under Device Certificate (TLS)
- Authentication Certificate, select the certificate that you want to use.
9.
To view or save a certificate, select the certificate from the menu and click
View/Save
.
Certificate details appear on the View/Save Device Certificate page.