Reference11r1:Interfaces/ETH/802.1X

From innovaphone wiki
Revision as of 10:29, 21 August 2015 by Inno-mst (talk | contribs) (Customer feedback: Clarified that EAP-TLS settings re-use EAP-MD5 settings)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search
There are also other versions of this article available: Reference7 | Reference9 | Reference11r1 (this version) | Reference11r2
EAP-MD5
  • User Enter the user/identity to authenticate with.
  • Password Enter the shared secret for the MD5 challenge/response handshake.
EAP-TLS

The EAP-MD5 settings are going to reused for EAP-TLS needs. I.e. there's currently no extra setting for EAP-TLS. The configuration for an actual certificate, being fed into the EAP-TLS session, can be found at General/Certificates/Device Certificate.

  • User Enter the user/identity[1] to be sent within the EAP Identity request.[2]
  • Password Enter arbitrary content.[2]
  • General/Certificates/Device Certificate

Notes

  1. EAP-TLS doesn't mandate that identity to necessarily be the same as the certificates subject/CN
  2. 2.0 2.1 A non-empty user/password just serves as an "on"-switch

Concept 802.1X

Howto article: 802.1X EAP-TLS With FreeRadius