Manualshelf

Deployment Guide

ManualsBrandsDell ManualsAccess PlatformsW-ClearPass Virtual Appliances
131132133134135136137138139140
l 2048-bit RSA created by device: Recommended for general use. Uses SCEP to provision the EAP-TLS
certificate.
l 1024-bit RSA created by server: Lower security.
l 2048-bit RSA created by server: Recommended for general use.
l 4096-bit RSA created by server: Higher security.
NOTE: Using a private key containing more bits will increase security, but will also increase the processing time required to create
the certificate and authenticate the device. The additional processing required will also affect the battery life of a mobile device. It
is recommended to use the smallest private key size that is feasible for your organization. The created by device” options use SCEP
to provision the EAP-TLS device certificate, so the private key is known only to the device rather than also known by the user. When
a “created by device” option is selected, the generated key is used instead of a username/password authentication defined in
Network Settings.
6. To include the username as a prefix in the device's PEAP credentials, mark the check box in the Unique Device
Credentials row.
7. In the Authorization area, select the configuration profile to provision to devices. A configuration profile
includes information for an application set, Exchange ActiveSync settings, network settings, passcode policy, and
VPN settings. For more information, see "Configuration Profiles" on page 110.
8. In the Maximum Devices field, you may enter a number to limit the maximum number of devices that each user
may provision.
9. In the Supported Devices area, to enable device types for provisioning, mark their check boxes. When you
unmark a check box for a device type that will not be provisioned, the corresponding tab is removed from this
tabbed form.
10. In the Unsupported Device field, you may enter HTML code for the message displayed to the user if their device
is not supported.
11. Click Next to proceed to the next tab, or Save Changes to complete your edits.
Configuring Provisioning Settings for the Web Login Page
Onboard creates a default Web login page that is used to start the device provisioning process. To specify options
for the Web login landing page:
1. On the Device Provisioning Settings form, click the Web Login tab.
Dell Networking W-ClearPass Guest 6.1 | Deployment Guide Onboard | 135