Manualshelf

User's Manual

ManualsBrandsDell ManualsComputer equipmentPowerconnect W-ClearPass Hardware Appliances
131132133134135136137138139140
134 | Onboard Dell Networking W-ClearPass Guest 6.4 | User Guide
Configuring Enterprise Protocol Settings
On the Onboard >Configuration>Network Settings form, click the Protocols tab to display the
Enterprise Protocols form.
Use this form to specify the authentication methods required by your network infrastructure. The default EAP
type is TLS for all platforms that support this method.
l The iOS & OS X EAP option supports TLS, TTLS, PEAP, and EAP-FAST.
l The Legacy OS X EAP option supports only PEAP with MSCHAPv2.
l The Android EAP option supports TLS, PEAP with MSCHAPv2, PEAP with GTC, TTLS with MSCHAPv2, TTLS
with GTC, and TTLS with PAP.
l The Windows EAP option supports TLS and PEAP with MSCHAPv2.
l The Ubuntu option supports TLS and PEAP with MSCHAPv2.
These best practices are recommended when choosing the 802.1X authentication methods to provision:
l Configure PEAP with MSCHAPv2 for Onboard devices – Android, Windows, and legacy OS X (10.5/10.6).
l Configure EAP-TLS for iOS devices and OS X (10.7 or later).
l Other EAP methods, while possible, are limited in their applicability and should only be used if you have a
specific requirement for that method.
The Windows EAP options that may be specified include:
l Enable Fast Reconnect – Fast Reconnect is a PEAP property that enables wireless clients to move between
wireless access points on the same network without being re-authenticated each time they associate with a
new access point. If TLS is selected, Fast Reconnect is not available.
l Enforce Network Access Protection– Enable this option to obtain a system statement-of-health (SSoH)
from the OnGuard or Microsoft NAP Agent and send it to the authentication server during the 802.1X