AMX MVP-7500/8400 EAP Authentication

Appendix B - Wireless Technology

166 MVP-7500/8400 Modero Viewpoint Wireless Touch Panels

EAP Authentication

EAP (Extensible Authentication Protocol) is an Enterprise authentication protocol that can be used in both a wired and

wireless network environment. EAP requires the use of an 802.1x Authentication Server, also known as a RADIUS

server. Although over 40 different EAP methods are currently defined, the current internal Modero 802.11g wireless card

and accompanying firmware only support the following EAP methods (listed from simplest to most complex):

EAP-LEAP (Cisco Light EAP)

EAP-FAST (Cisco Flexible Authentication via Secure Tunneling, a.k.a. LEAPv2)

The following use certificates:

EAP-PEAP (Protected EAP)

EAP-TTLS (Tunneled Transport Layer Security)

EAP-TLS (Transport Layer Security)

EAP requires the use of an 802.1x authentication server (also known as a RADIUS server). Sophisticated Access Points

(such as Cisco) can use a built-in RADIUS server. The most common RADIUS servers used in wireless networks today

are:

Microsoft Sever 2003

Juniper Odyssey (once called Funk Odyssey)

Meetinghouse AEGIS Server

DeviceScape RADIUS Server

Cisco Secure ACS

EAP Characteristics

The following table outlines the differences among the various EAP Methods from most secure (at the top of the list) to

the least secure (at the bottom of the list):

EAP Method Characteristics

Method: Credential Type: Authentication: Pros: Cons:

EAP-TLS • Certificates • Certificate is based on a

two-way authentication • Highest

Security • Difficult to

deploy

EAP-TTLS • Certificates

• Fixed Passwords

• One-time passwords

(tokens)

• Client authentication is

done via password and

certificates

• Server authentication is

done via certificates

• High Security • Moderately

difficult to

deploy

EAP-PEAP • Certificates

• Fixed Passwords

• One-time passwords

(tokens)

• Client authentication is

done via password and

certificates

• Server authentication is

done via certificates

• High Security • Moderately

difficult to

deploy

EAP-LEAP • Certificates

• Fixed Passwords

• One-time passwords

(tokens)

• Authentication is based on

MS-CHAP and

MS-CHAPv2

authentication protocols

• Easy

deployment • Susceptible to

dictionary

attacks

EAP-FAST • Certificates

• Fixed Passwords

• One-time passwords

(tokens)

•N/A •N/A •N/A

Contents

Main AMX Limited Warranty and Disclaimer AMX Software License and Warranty Agreement Page Table of Contents MVP Modero Viewpoint Wireless Touch Panels .................................................1 Page Page Page Page Page Page Page Page Page MVP Modero Viewpoint Wireless Touch Panels MVP Specifications MVP Specifications Page MVP Specifications (Cont.) MVP-BP Power Pack MVP-BP Specifications Installing MVP-BP Batteries 1. 2. 3. 4. NXA-CFSP Compact Flash Compact Flash Card - Security Installing the NXA-CFSP Compact Flash Card Accessing the MVPs Internal Components 1. 2. 3. 4. Page 2. 3. 4. 5. 6. Page Wireless Interface Cards 802.11b Wireless Interface Card Specifications NXA-WC80211GCF 802.11g Wireless Interface Card Specifications NXA-WC80211GCF Specifications NXA-WC80211GCF Specifications (Cont.) Installing the 802.11g Card and Antenna Page 6. 7. 8. Page Configuring Communications Modero Setup and System Settings Accessing the Setup and Protected Setup Pages 1. 2. Setting the Panels Device Number Wireless Settings Page - Wireless Access Overview Hot Swapping Configuring a Wireless Network Access Step 1: Configure the Panels Wireless IP Settings Page 3. 4. 5. Step 2: Configure the Cards Wireless Security Settings Configuring the Moderos wireless card for unsecured access to a WAP200G 1. 2. Page Page 3. 4. 5. 6. 7. 9. 10. 11. 12. 13. 14. Step 3: Choose a Master Connection Mode 1. 2. Page 8. 9. Configure a Virtual NetLinx Master using NetLinx Studio 1. 2. Page Page Page Using G4 Web Control to Interact with a G4 Panel Page Using your NetLinx Master to control the G4 panel 1. 2. 3. 4. 5. 6. 7. 8. 9. 10. 11. Upgrading MVP Firmware 1. Upgrading the Modero Firmware via the USB port Page Page Upgrading the Docking Station Firmware via USB Step 1: Prepare the Docking Station for firmware transfer via USB 3. 1. 2. Page Page Page Setup Pages Setup Pages Setup Page (Cont.) Navigation Buttons Custom Logo Protected Setup Pages Features on the Protected Setup page include: Protected Setup Page Protected Setup Navigation Buttons BUTTON Security Settings System Settings Page The elements of this page include: System Settings Page Elements System Settings Page Elements (Cont.) Wireless Settings Page Features on this page include: Wireless Settings Page Wireless Settings Page (Cont.) Wireless Settings Page (Cont.) Wireless Security: Simple Mode Wireless Security: Enterprise Mode Wireless Settings Open Settings options. WEP Settings Open Settings (Cont.) WEP Settings WPA-PSK Settings EAP-LEAP Settings EAP-FAST Settings EAP-LEAP Settings (Cont.) EAP-FAST Settings EAP-FAST Settings (Cont.) EAP-PEAP Settings EAP-TTLS Settings EAP-TTLS Settings (Cont.) EAP-TLS Settings EAP-TLS Settings Client certificate configuration Calibration Page G4 Web Control Settings/G4 Web Control Page Other Settings Cache Settings/Cache Setup Page The elements of this page include: Cache Settings/Cache Setup Page Elements Page SIP Settings Page (MVP-8400 only) Tools SIP Settings Page Panel Connection Logs/Panel Logs Page Features on this page include: Panel Logs Page Page Features on this page include: Panel Statistics Page Page Connection Utility Page (Cont.) Information Features on this page include: Project Information Page Panel Information Page The Panel Information page (FIG.78 and FIG. 79) provides detailed panel information. Project Information Page (Cont.) IR receivers and transmitters on G4 panels share the device address number of the panel. Features on this page include: Panel Information Page Time & Date Setup Features on this page include: Time & Date Setup Page Audio Settings Features on these pages include: Volume Page WAV files - Supported sample rates Custom Sounds Battery Settings/Batteries Features on this page include: Batteries Page EAP Security & Server Certificates - Overview LAN Client - Panel (supplicant) 802.1x (EAP over Wireless) Authenticator (Wireless Access Point) Authentication Server (RADIUS Server) Page Page Programming Button Assignments Page Commands Page Page Page Page Programming Numbers RGB triplets and names for basic 88 colors RGB Values for all 88 Basic Colors Page RGB Values for all 88 Basic Colors (Cont.) Font styles and ID numbers Border styles and Programming numbers TPD4 Border Styles by Name (Cont.) TPD4 Border Styles by Name (Cont.) "^" Button Commands "^" Button Commands Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Page Miscellaneous MVP Strings back to the Master The following two strings are sent by the MVP panel back to the communicating Master: MVP Strings to Master MVP Panel Lock Passcode commands Text Effects Names Button Query Commands All custom events have the following 6 fields: Custom Event Fields Page Page Page Page Page Page Page Page Page Panel Runtime Operations Panel Runtime Operation Commands Page Page Page Input Commands These Send Commands are case insensitive. Input Commands Embedded codes The following is a list of G4 compatible embedded codes: Embedded Codes Panel Setup Commands These commands are case insensitive. Panel Setup Commands Dynamic Image Commands The following table describes Dynamic Image Commands. Dynamic Image Commands ^RAF, ^RMF - Embedded Codes The <data> variable uses the embedded codes described in the following table: Dynamic Image Commands (Cont.) ^RAF, ^RMF - Embedded Codes Escape Sequences ^RAF, ^RMF - Embedded Codes (Cont.) Escape Sequences Intercom Commands The following is a list of Intercom Commands: Intercom Commands SIP Commands The following table lists and describes SIP commands that are generated from the touch panel. Intercom Commands (Cont.) SIP Commands SIP Commands Page SIP Setup Commands Page Panel Calibration Calibrating the MVP Panels 1. 2. 3. Testing your Calibration 1. 2. 3. 4. If Calibration Is Not Working Appendix A: Text Formatting Text Formatting Codes for Bargraphs/Joysticks Text Area Input Masking Input mask character types Input Mask Ranges Input mask next field characters Input mask operations Input mask literals Input mask output examples URL Resources Special Escape Sequences Other used escape sequences include: Escape Sequences Page Appendix B - Wireless Technology Overview of Wireless Technology Terminology 802.1x AES CERTIFICATES (CA) MIC WPA2 EAP Authentication EAP Characteristics Configuring Modero Firmware via the USB Port 6. 7. 8. Step 2: Prepare NetLinx Studio For Communication Via the USB Port 1. 2. AMX Certificate Upload Utility Uploading a Certificate File Page Appendix C: Troubleshooting Panel Doesnt Respond To Touches Battery Will Not Hold Or Take A Charge 1. 2. 3.