User's Manual
- 22 -
• TLSSmart Card: Transport Layer Security. Provides
for certificate-based and mutual authentication of the
client and the network. It relies on client-side and
server-side certificates to perform authentication and
can be used to dynamically generate user-based and
session-based WEP keys to secure subsequent
communications between the WLAN client and the
access point.
• TTLS: Tunneled Transport Layer Security. This
security method provides for certificate-based, mutual
authentication of the client and network through an
encrypted channel. Unlike EAP-TLS, EAP-TTLS
requires only server-side certificates.
• LEAP: Light Extensible Authentication Protocol. It is
an EAP authentication type used primarily in Cisco
Aironet WLANs. It encrypts data transmissions using
dynamically generated WEP keys, and supports
mutual authentication.
• MD5-Challenge: Message Digest Challenge.
Challenge is an EAP authentication type that provides
base-level EAP support. It provides for only one-way
authentication - there is no mutual authentication of
wireless client and the network.
Session Resumption: user can choose from the pull-down
list including Disable, Reauthentication, Roaming,
SameSsid, and Always.
Identity and Password: Identity and password for server.
Use Client Certicate: Client Certicate for server
authentication.
Tunnel Authentication:
• Protocol: Tunnel protocol, List information including
EAP-MSCHAP v2, EAP-TLS/Smart card, and
Generic Token Card.
• Tunnel Identity: Identity for tunnel.
• Tunnel Password: Password for tunnel.
CA Server: Certificate Authority Server. Each certificate is
signed or issued by it.
CA Server tab: