AMX MVP-5100, MVP-5150 EAP Authentication

Appendix B: Wireless Technology

160 MVP-5100/5150 Modero Viewpoint Touch Panels

EAP Authentication

EAP (Extensible Authentication Protocol) is an Enterprise authentication protocol that can be used in

both a wired and wireless network environment. EAP requires the use of an 802.1x Authentication

Server, also known as a RADIUS server. Although over 40 different EAP methods are currently defined,

the current internal Modero 802.11g wireless card and accompanying firmware only support the

following EAP methods (listed from simplest to most complex):

 EAP-LEAP (Cisco Light EAP)

 EAP-FAST (Cisco Flexible Authentication via Secure Tunneling, a.k.a. LEAPv2)

The following use certificates:

 EAP-PEAP (Protected EAP)

 EAP-TTLS (Tunneled Transport Layer Security)

 EAP-TLS (Transport Layer Security)

EAP requires the use of an 802.1x authentication server (also known as a RADIUS server). Sophisticated

Access Points (such as Cisco) can use a built-in RADIUS server. The most common RADIUS servers

used in wireless networks today are:

 Microsoft Sever 2003

 Juniper Odyssey (once called Funk Odyssey)

 Meetinghouse AEGIS Server

 DeviceScape RADIUS Server

 Cisco Secure ACS

EAP characteristics

The following table outlines the differences among the various EAP Methods from most secure (at the

top of the list) to the least secure (at the bottom of the list):

EAP Method Characteristics

Method: Credential Type: Authentication: Pros: Cons:

EAP-TLS • Certificates • Certificate is based on a

two-way authentication

• Highest

Security

• Difficult to

deploy

EAP-TTLS • Certificates

• Fixed Passwords

• One-time passwords

(tokens)

• Client authentication is

done via password and

certificates

• Server authentication is

done via certificates

• High Security •Moderately

difficult to

deploy

EAP-PEAP •Certificates

• Fixed Passwords

• One-time passwords

(tokens)

• Client authentication is

done via password and

certificates

• Server authentication is

done via certificates

• High Security •Moderately

difficult to

deploy

EAP-LEAP •Certificates

• Fixed Passwords

• One-time passwords

(tokens)

• Authentication is based on

MS-CHAP and

MS-CHAPv2

authentication protocols

• Easy

deployment

• Susceptible to

dictionary

attacks

EAP-FAST •Certificates

• Fixed Passwords

• One-time passwords

(tokens)

•N/A •N/A •N/A

Contents

Main AMX Limited Warranty and Disclaimer Page Software License and Warranty Agreement Table of Contents Page Page Page Introduction MVP-5150 5.2" Modero ViewPoint WiFi Touch Panel MVP-5150 Specifications (FG5966-07) MVP-5150 Specifications (FG5966-07) (Cont.) 1.2. MVP-5100 5.2" Modero ViewPoint IR Touch Panel MVP-5100 Specifications (FG5966-08) Memory Table Charging Station Connector Locations MVP-5100 Specifications (FG5966-08) (Cont.) Basic Operation Audio/Video Capabilities Power Management Cleaning the Touch Overlay and Case Accessories Table Charging Station MVP-TCS-52 Specifications Page Wall Charging Station Unlocking the touch panel 1. 2. 3. 4. Recharging Installing the MVP-WCS-52 Installing the plastic Back Box 1. 2. 3. 4. 5. 6. 7. 8. 9. 10. 11. 12. 13. Installing the Optional Metal Rough-In Box Other MVP-WCS-52 installations Page Configuring Communication Page Modero Setup and System Settings Page Wireless Settings - Wireless Access Overview (MVP-5150 Only) DHCP Configuring Wireless Network Access (MVP-5150 Only) Step 1: Configure the Devices Wireless IP Settings (MVP- 5150 Only) Page Page Page 4. 5. 4. Step 2: Configure the Cards Wireless Security Settings Configuring the devices wireless card for unsecured access to a WEP 1. 2. 3. 5. Page 2. 3. 4. 5. Required Information: 6. 7. 8. 9. 10. 11. Page Step 3: Choose a Master Connection Mode 1. 2. Panel downloads and firmware updates 6. 7. 8. Page 3. 4. 5. 6. Configure a Virtual NetLinx Master via USB 1. Page 6. 7. 8. 9. 10. 11. Page Page Page Page Setup Pages Setup Pages Setup Page (Cont.) Navigation Buttons The following Navigation buttons (FIG. 42) appear on the left side of the Setup page: FIG. 42 Information on the Protected Setup pages is available on page 55. Protected Setup Pages Information Button 1. 2. 3. Project Information Page Project Information Page (Cont.) IR receivers and transmitters on G4 panels share the device address number of the panel. Panel Information Page The Panel Information page provides detailed panel information (FIG. 44). Features on this page include: FIG. 44 Panel Information Page Time & Date Settings Page Features on this page include: FIG. 45 Audio Settings Page The Audio Settings page allows adjustment of volume levels and panel sounds settings (FIG. 46). Features on these pages include: FIG. 46 Audio Settings Page Battery Settings Page Features on this page include: FIG. 47 Battery Page Page Protected Setup Pages 1. 2. 3. Protected Setup Page (Cont.) FIG. 49 BUTTON Page Protected Setup Navigation Buttons FIG. 52 FIG. 51 System Settings Page The System Settings page (FIG. 53) displays sets the NetLinx Masters communication settings. The elements of this page include: FIG. 53 System Settings Page Elements System Setting Page Elements (Cont.) Wireless Settings Page (MVP-5150 Only) Features on this page include: FIG. 54 Wireless Settings Page Page Wireless Settings Page (Cont.) Wireless Security Open (Clear Text) Settings Static WEP Settings Press the Static WEP button to open the Static WEP Settings page (FIG. 57). FIG. 57 Static WEP Settings WPA-PSK Settings EAP Security & Server Certificates - Overview Page EAP-LEAP Settings options. should appear. FIG. 61 EAP-LEAP Settings EAP-FAST Settings EAP-FAST Settings (Cont.) EAP-PEAP Settings Refer to the EAP Authentication section on page 160 and the Using the Site Survey tool section on EAP-PEAP Settings EAP-TTLS Settings EAP-TTLS Settings (Cont.) EAP-TLS Settings options. feature. EAP-TLS Settings (Cont.) Client certificate configuration Calibration Page Other Settings Cache Settings Page Password Settings Page 1. 2. 3. Page Upgrading Firmware Upgrading the Modero Firmware via the USB port Step 1: Configure the panel for a USB Connection Type 1. 2. 3. 4. 5. Page Page 21. Step 3: Confirm and Upgrade the firmware via the USB port 1. 2. 3. A B A Special Note for Network Interface Connections 1. 2. Page Page Uploading IR Codes to the MVP-5100 1. 2. 3. Page Page Page Page Page Programming Overview These Page Commands are used in NetLinx Programming Language and are case insensitive. Page Commands @APG @PDR @PHE @PHP @PHT @PPA @PPF @PPG @PPK @PPM @PPN @PPT @PPX @PSE @PSP @PST PAGE PPOF PPOG PPON Programming Numbers RGB triplets and names for basic 88 colors RGB Values for all 88 Basic Colors RGB Values for all 88 Basic Colors (Cont.) Font styles and ID numbers RGB Values for all 88 Basic Colors (Cont.) Default Font Styles and ID Numbers Border styles and Programming numbers Border styles can be used to program borders on buttons, sliders, and popup pages. Border Styles and Programming Numbers TPD4 Border Styles by Name Page TPD4 Border Styles by Name (Cont.) "^" Button Commands command. notation. "^" Button Commands ^ANI ^BAU ^BCB ^BCF ^BCT ^BDO ^BFB ^BIM ^BLN ^BMC ^BMF 1 4 789 6 32 5 0 Zero can be used for an absolu te positio n ^BMF (Cont.) ^BMI ^BML ^BMP ^BNC ^BNN ^BNT ^BOP ^BOR ^BOS ^BPP ^BRD ^BSF ^BSM ^BSO ^BVL ^BVN ^BVP ^BVT ^BWW ^CPF ^DLD ^DPF ^ENA ^FON 0 = Normal ^GDI ^GIV 0 23 ^GLH ^GLL ^GRD ^GRU ^GSC ^GSN ^ICO ^IRM ^JSB ^JSI ^JST ^MBT ^MDC ^SHO ^TEC ^TEF ^TXT Miscellaneous MVP Strings back to the Master The following two strings are sent by the MVP panel back to the communicating Master: MVP Panel Lock Passcode commands ^UNI MVP Strings to Master Text Effects Names The following is a listing of text effects names associated with the ^TEF command on page 129. MVP Panel Lock Passcode Commands (Cont.) ^LPR ^LPS Button Query Commands DEFINE_EVENT Text Effects (Cont.) All custom events have the following 7 fields: Custom Event Fields Button Query Commands ?BCB ?BCF ?BCT ?BMP ?BOP ?BRD ?BWW ?FON ?ICO ?JSB ?JSI ?JST ?TEC ?TEF ?TXT Panel Runtime Operations Panel Runtime Operation Commands ABEEP ADBEEP @AKB @AKP @AKR BEEP BRIT @BRT @EKP PKEYP @PKP SETUP SHUTDOWN @SOU @TKP TPAGEON TPAGEOFF @VKB Input Commands These Send Commands are case insensitive. Input Commands ^CAL ^KPS Embedded codes The following is a list of G4 compatible embedded codes: Embedded Codes Panel Setup Commands These commands are case insensitive. Panel Setup Commands ^MUT @PWD Page Battery Life and Replacement Overview Power Management Battery Replacement Appendix A: Text Formatting Text Formatting Codes for Bargraphs/Joysticks Bargraph Text Code Inputs Formatting Code Operations Example Text Area Input Masking Input mask character types Input mask ranges [0|255] This allows a user to enter a value from 0 to 255. Input mask next field characters Input mask literals Input mask output examples URL Resources Special escape sequences Appendix B: Wireless Technology Overview of Wireless Technology Terminology Page Page EAP Authentication EAP characteristics EAP communication overview 1. 2. 3. 4. 5. AMX Certificate Upload Utility How to Upload a Certificate File 1. 2. 3. Page Appendix C: Troubleshooting Panel Doesnt Respond To Touches Battery Will Not Hold Or Take A Charge 1. 2.