Manualshelf

Connectivity Guide

ManualsBrandsDell ManualsAccess PlatformsW-ClearPass Virtual Appliances
121122123124125126127128129130
The Windows EAP options that may be specified include:
l Enable Fast Reconnect Fast Reconnect is a PEAP property that enables wireless clients to move between
wireless access points on the same network without being re-authenticated each time they associate with a new
access point. If TLS is selected, Fast Reconnect is not available.
l Enforce Network Access Protection Enable this option to obtain a system statement-of-health (SSoH) from the
OnGuard or Microsoft NAP Agent and send it to the authentication server during the 802.1X authentication
process. Use this option to enforce network access control (NAC) protections on the network. If TLS is selected,
Enforce Network Access Protection is not available.
l Enforce Cryptobinding Cryptobinding is a process that protects the authentication protocol negotiation against
man-in-the-middle attacks. The cryptobinding request and response performs a two-way handshake between the
peer and the authentication server using key materials. If TLS is selected, Enforce Cryptobinding is not available.
l Do one of the following:
n Click Previous to return to the Access tab.
n Click Next to continue to the Authentication tab.
l Click Save Changes to make the new network configuration settings take effect.
n Click Cancel to discard your changes and return to the main Onboard configuration user interface.
Configuring Device Authentication Settings
On the Network Settings form, click the Authentication tab to display the Enterprise Authentication form.
1. Select one of these options in the iOS & OS X Credentials drop-down list:
l Certificate A device certificate will be provisioned and used for EAP-TLS client authentication. When this
option is selected, EAP-TLS must be selected on the Protocols tab.
l Username & Password A device certificate will be provisioned, but the client authentication will use unique
device credentials (as for Onboard devices). When this option is selected, EAP-TTLS or PEAP must be selected
on the Protocols tab.
2. The fields available in the Windows Authentication area depend on which option was chosen for Windows EAP
on the Protocols tab.
If PEAP with MSCHAPv2 was selected, this area includes the Vista Credentials and XP Credentials fields.
Options available for these fields are:
l Machine Only Use computer-only credentials.
l User Only Use user-only credentials
l Machine Or User Use computer-only credentials or user-only credentials. When a user is logged on, the user's
credentials are used for authentication. When no user is logged on, computer-only credentials are used for
authentication.
Dell Networking W-ClearPass Guest 6.2 | User Guide Onboard + WorkSpace | 127