Client certificate configuration, Client Certificate

	Firmware Pages and Descriptions

EAP-TLS Settings (Cont.)

Certificate Authority:	When pressed, the panel displays an on-screen Certificate Authority (CA)
	File Location keyboard which allows you to enter the name of the certificate
	authority file which is used to validate the server certificate.
	This field is optional.
	If a server certificate is used, it should first be downloaded into the panel and
	the Certificate Authority field should then be set to the name of that certificate
	file. No file path should be used for this setting as all certificates are stored in
	a specific directory that the user cannot control or change.
	• Use the on-screen keyboard’s Clear button to completely erase any
	previously stored network path information.

Client Certificate:	Opens an on-screen keyboard. Enter the name of the file containing the client
	(panel) certificate for use in certifying the identity of the client (panel).
	• Refer to the Client certificate configuration section for information regarding
	Client Certificates and their parameters.

Private Key:	When pressed, the panel displays an on-screen Client Private Key File Loca-
	tion keyboard which allows you to enter the name of the file containing the
	private key.
	• Use the on-screen keyboard’s Clear button to completely erase any
	previously stored network path information.

Private Key password:	This field should only be used if the Private Key is protected with a password.
	If there is no password protection associated with the Private Key, then this
	field should be left blank.
	• When pressed, the panel displays an on-screen Private Key Password
	keyboard which allows you to enter an alpha-numeric password string.
	• Use the on-screen keyboard’s Clear button to completely erase any
	previously stored network path information.

Save/Cancel:	• Save - store the new security information, apply changes, and return to the
	previous page.
	• Cancel - discard changes and return to the previous page.

Refer to the EAP Authentication section on page 195 for further details on these security options.

Refer to the Using the Site Survey tool section on page 34 for more information on using this feature.

Client certificate configuration

There are several ways in which a client certificate can be configured by an IT department. The client certificate and private key can both be incorporated into one file or split into two separate files. In addition, the file format used by these files could be PEM, DER, or PKCS12. These formats are described later in this section. The following table describes how to fill in the fields for each possible case.

Client Certificate Configuration

Certificate Configuration	Client Certificate Field	Private Key Field

Single file contains both the client certificate and	Enter the file name	Enter the same file name
the private key. Format is: PEM or DER.

First file contains the client certificate, second file	Enter the first file name	Enter the second file name
contains the private key. Format is: PEM or DER.

Single file contains both the client certificate and	Leave this field blank	Enter the file name
the private key. Format is: PKCS12

First file contains the client certificate, second file	not supported	not supported
contains the private key. Format is: PKCS12

7" Modero Widescreen Touch Panels	97

AMX NXD-700Vi Client certificate configuration, Client Certificate Configuration, Private Key

Models: NXD-700Vi

EAP-TLS Settings (Cont.)

Certificate Authority:

This field is optional.

Client Certificate:

Private Key:

Private Key password:

Save/Cancel:

Client certificate configuration

Client Certificate Configuration