Reference11r1:Interfaces/ETH/802.1X: Difference between revisions
Jump to navigation
Jump to search
(New page: '''802.1X,''' Port-Based Network Control, is an IEEE standard. The standard allows LAN devices (wired network cabling!<ref>The standard refers to 802 LANs as a whole, including shared medi...) |
(Customer feedback: Clarified that EAP-TLS settings re-use EAP-MD5 settings) |
||
(8 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
''' | ;'''EAP-MD5''': | ||
* '''User''' Enter the user/identity to authenticate with. | |||
* '''Password''' Enter the shared secret for the MD5 challenge/response handshake. | |||
;'''EAP-TLS''': | |||
The EAP-MD5 settings are going to reused for EAP-TLS needs. I.e. there's currently no extra setting for EAP-TLS. The configuration for an actual certificate, being fed into the EAP-TLS session, can be found at ''General/Certificates/Device Certificate''. | |||
* '''User''' Enter the user/identity<ref>EAP-TLS doesn't mandate that identity to necessarily be the same as the certificates subject/CN</ref> to be sent within the EAP Identity request.<ref name="user-pw">A non-empty user/password just serves as an "on"-switch</ref> | |||
* '''Password''' Enter arbitrary content.<ref name="user-pw"/> | |||
* '''General/Certificates/Device Certificate''' | |||
=Notes= | |||
<references/> | |||
[[Concept_802.1X|Concept 802.1X]] | |||
[[Howto:802.1X_EAP-TLS_With_FreeRadius|Howto article: 802.1X EAP-TLS With FreeRadius]] | |||
Latest revision as of 11:29, 21 August 2015
- EAP-MD5
- User Enter the user/identity to authenticate with.
- Password Enter the shared secret for the MD5 challenge/response handshake.
- EAP-TLS
The EAP-MD5 settings are going to reused for EAP-TLS needs. I.e. there's currently no extra setting for EAP-TLS. The configuration for an actual certificate, being fed into the EAP-TLS session, can be found at General/Certificates/Device Certificate.
- User Enter the user/identity[1] to be sent within the EAP Identity request.[2]
- Password Enter arbitrary content.[2]
- General/Certificates/Device Certificate