Manualshelf

Users Guide

ManualsBrandsDell ManualsAccess PlatformsW-ClearPass Virtual Appliances
131132133134135136137138139140
Parameter Description
Session
Resumption
Caches EAP-FAST sessions on Policy Manager for reuse if the user/end-host
reconnects to Policy Manager within the session timeout interval.
Session Timeout Caches EAP-FAST sessions on Policy Manager for reuse if the user/end-host
reconnects to Policy Manager within the session timeout interval. If session timeout
value is set to 0, the cached sessions are not purged.
End-Host
Authentication
Refers to establishing the EAP-Fast Phase 1 Outer tunnel:
l Choose Using PACs to use a strong shared secret.
l Choose Using Client Certificate to use a certificate.
NOTE: The PACs and PAC Provisioning tabs are only available when Using PACs
is selected.
Certificate
Comparison
Type of certificate comparison (identity matching) upon presenting Policy Manager
with a client certificate:
l To skip the certificate comparison, choose Do not compare.
l To compare specific attributes, choose Compare Distinguished Name (DN),
Compare Common Name (CN), Compare Subject Alternate Name (SAN), or
Compare CN or SAN.
l To perform a binary comparison of the
stored
(in the end-host record in Active
Directory or another LDAP-compliant directory) and
presented
certificates,
choose Compare Binary.
Table 51:
EAP_FAST General tab Parameters (Continued)
Inner Methods Tab
The Inner Methods tab controls the inner methods for the EAP-FAST method
Dell Networking W-ClearPass Policy Manager 6.3 | User Guide Authentication and Authorization | 137