GT7 Terminal
Configuration
www.gantner.com
HB_GT7-2x00-3x00--EN_12
43
Protected EAP (PEAP)
Protected Extensible Authentication Protocol (PEAP) is an 802.1X authentication method that uses server-side public key
certificates to authenticate clients with server. The PEAP authentication creates an encrypted SSL/TLS tunnel between the
client and the authentication server. Define the following settings:
- Anonymous identity:
An anonymous identity can be entered here for systems that support a separate
authentication outside of a secure tunnel. If no anonymous identity is provided, the
de
fault is to use the “Username” for outer and inner authentication.
- Verify CA certificate:
It is recommended to enable this option. Certificates are managed via the “Certificate
management” page (see chapter “5.6.19 Certificate Management”).
- Inner authentication:
Select the type of protocol to use for inner authentication from the menu.
- Username:
Enter the username to be used for authentication.
- Password:
Enter the password to be used for authentication.
Tunneled TLS (TTLS)
Tunneled Transport Layer Security (TTLS) is a variant of TLS. In contrast to this, TTLS allows authentication not only via
certificates but also via all other EAP mechanisms such as MD5 and one-time password. Unlike TLS, TTLS requires only
server-side certificates. The settings for TTLS are analogous to those of PEAP described above.
TLS
Transport Layer Security (TLS) relies on client-side and server-side certificates to perform authentication and can be used to
dynamically generate user-based and session-based WEP keys to secure communications between the WLAN client and
the access point.
- Identity:
Enter the value of the server identity field here.
- Verify CA certificate:
It is recommended to enable this
option. Certificates are managed via the “Certificate
management” page (see chapter “5.6.19 Certificate Management”).