Manualshelf

User Manual

ManualsBrandsBarco ManualsComputers & AccessoriesMAIN-61771 | Small Medium Size Meeting Room Wireless Presentation System
51525354555657585960
6. CSE-200 Configurator
ClickShare supports 2 formats for uploading a c lient certicat e:
PKCS#12 (.pfx) -Anarchivele form at for storing multiple cryptography objects.
Privacy Enhanced Mail (.pem ) A Base64 encoded DER certicate stored between 2 tags:
"-----BEGIN CERTIFICATE-----" and "-----END CERTIFICATE-----".
When the p rovided PKCS#12 le also co ntains the n ecessary CA certicate t he Base Unit will extract it and
verify the chain of trust to avoid that you have to separately provide the CA cert icate.
CA certicate
The CA certicate is the certicate of the a uthoritative root CA in your dom ain and will be used in s etting up the EAP-TLS connection.
During the wizard the Base Unit w ill en sure that it can validate the chain of trust between the Client and CA certicates you provide.
ClickShare supports the c omm on .crt le ex tension which can contain a Base64 encoded DE R certicate.
When having p roblems connecting t he Button to your corporate netwo rk, to get feedback from the Button
please have a look at the ClickShare Client log. This log can be pressing the holding Shift key when starting
the Client executable. Look for the lines “EDSUSBDo ngleConnection::mpParseDong leMessages”. An error
code and a short summary of the issue should be logged.
6.14 Network int egration, EAP-TTLS security mode
About EAP-TTLS
EAP-TTLS (Tunneled Trans port Layer Sec urity) is an EAP implementation by Juniper networks. It is designed to provide authen-
tication that is as strong as EAP- TLS, but it doe s not require each user to be issued a certicate. Instead, only the authe ntication
servers are issued certicates. User authentication is performed by passw ord, but the password credentials are transported in a
securely encrypted tunnel established based upon the server certica te s.
User authentication is performed against the same security database that is already in use on the corporate LA N: for example, S Q L
or LDAP databases, or token s ystems. Since EAP-TTLS is usually impleme
nted in corporate environments w ithout a client certicate
we hav e not included sup port for this. If you p refer using c lient certic ates per us er we suggest using EAP-TLS.
How to start up for EAP-TTLS
1. LogintotheCongur ator.
2. Click WiFi & Network Network integration.ClickonChange congu r aton.
3. Select the radio button nex t to EA P-TT LS and click Next.
Image 6-26
Network integration, EAP-TTLS selected
R5900023 CLICKSHARE CSE-200 24/05/2017 47