User Manual
Appendix C: Configuring Security Settings On Wireless Clients
Configuring WPA/WPA2 Enterprise (RADIUS) Security On A Client
C-18
Psion Teklogix 9160 Wireless Gateway User Manual
3. Click Properties to bring up the Smart Card or other Certificate Prop-
erties dialog and enable the Validate server certificate option.
Click OK on all dialogs to close and save your changes.
4. To complete the client configuration you must now obtain a certificate
from the RADIUS server and install it on this client. For information on
how to do this see “Obtaining A TLS-EAP Certificate For A Client” on
page C-34.
Connecting To The Wireless Network With An IEEE 802.1x Client Using A
Certificate
IEEE 802.1x clients should now be able to connect to the access point using their
TLS certificates. The certificate you installed is used when you connect, so you will
not be prompted for logon information. The certificate is automatically sent to the
RADIUS server for authentication and authorization.
C.7 Configuring WPA/WPA2 Enterprise (RADIUS) Security On A
Client
Wi-Fi Protected Access 2 (WPA2) with Remote Authentication Dial-In User
Service (RADIUS) is an implementation of the Wi-Fi Alliance IEEE 802.11i stan-
dard, which includes Advanced Encryption Standard (AES), Counter mode/CBC-
MAC Protocol (CCMP), and Temporal Key Integrity Protocol (TKIP) mechanisms.
This mode requires the use of a RADIUS server to authenticate users.
This security mode also provides backwards-compatibility for wireless clients that
support only the original WPA.
When you configure WPA/WPA2 Enterprise (RADIUS) security mode on the
access point, you have a choice of whether to use the Built-in Authentication Server
or an external RADIUS server that you provide.
Validate Server Certificate
Enable
this option (click to check the box).
Certificates In the certificate list shown, select the
certificate
for this client.
Table C.9 Smart Card Or Other Certificate Properties Settings