172 | |
|
|
1.Configure the following settings on the Association tab on the Network Properties dialog.
Association Tab
Field | Setting |
Network Authentication | WPA |
|
|
Data Encryption | TKIP or AES depending on how this option is configured on the |
| access point. |
| Note: When the Cipher Suite on the access point is set to "Both", |
| then TKIP clients with a valid TKIP key and AES clients with a valid |
| CCMP (AES) key can associate with the access point. |
|
|
2.Configure these settings on the Authentication tab.
Authentication Tab
Field | Setting |
Enable IEEE 802.1x | Enable (click to check) this option. |
authentication for this |
|
network |
|
EAP Type | Choose Smart Card or other Certificate |
|
|
3.Click Properties to bring up the Smart Card or other Certificate Properties dialog and enable the "Validate server certificate" option.
Smart Card or other Certificate Properties Dialog
Field | Setting |
Validate Server | Enable this option (click to uncheck the box). |
Certificate |
|
Certificates | In the certificate list shown, select the certificate for this client. |
|
|
4.To complete the client configuration you must now obtain a certificate from the RADIUS server and install it on this client. For information on how to do this see “Obtaining a
Logging on to the Wireless Network with a WPA Client Using a Certificate
WPA clients should now be able to connect to the access point using their TLS certificates. The certificate you installed is used when you connect, so you will not be prompted for login information. The certificate is automatically sent to the RADIUS server for authentication and authorization.
WPA/WPA2 Enterprise (RADIUS) Client Using
Extensible Authentication Protocol (EAP) Subscriber Identity Module (SIM), or