Operation Manual

1. Before connecting the KX-NTV150/KX-NTV160 to the protected network with 802.1x, please apply a digital

certificate from a Certificate Authority (i.e., your network administrator) which can be validated by a RADIUS

server.

2. Connect the KX-NTV150/KX-NTV160 to a PC or notebook outside of the protected LAN. Open the

configuration page of the KX-NTV150/KX-NTV160 as shown below. Select EAP-PEAP or EAP-TLS as the

EAP method. In the following blanks, enter your ID and password issued by the CA, then upload related

certificate(s).

3. When all settings are complete, move the KX-NTV150/KX-NTV160 to the protected LAN by connecting it

to an 802.1x enabled switch. The devices will then start the authentication automatically.

Note

• The authentication process for 802.1x:

1. The Certificate Authority (CA) provides the required signed certificates to the

KX-NTV150KX-NTV160 (the supplicant) and the RADIUS Server (the authentication server).

2. KX-NTV150/KX-NTV160 requests access to the protected LAN using 802.1X via a switch (the

authenticator). The client offers its identity and client certificate, which is then forwarded by the switch

to the RADIUS Server, which uses an algorithm to authenticate the KX-NTV150/KX-NTV160 and

returns an acceptance or rejection back to the switch.

3. The switch also forwards the RADIUS Server’s certificate to the KX-NTV150/KX-NTV160.

100 User’s Manual

2 Software