4.Click EAP-FAST Configuration from the Global Authentication Setup (Figure 7-24 on page 241).

Figure 7-25 EAP-FAST Configuration screen

5.The EAP-FAST configuration, as shown in Figure 7-25,requires you to enter a lot of fields. Table 7-1lists all fields and their respective values.

Table 7-1 EAP-FAST Configuration values

EAP-FAST configuration

Condition

 

 

Allow EAP-FAST

Checked

 

 

Active Master Key TTL

One month

 

 

Retired Master Key TTL

Three months

 

 

Tunnel PAC TTL

One week

 

 

Client Initial Message

<nil>

 

 

Authority ID Info

cisco

 

 

Allow anonymous in-band PAC provisioning

Checked

 

 

Accept client on authenticated provisioning

Checked

 

 

242Building a Network Access Control Solution with IBM Tivoli and Cisco Systems

Page 259 Page 261
Page 260
Image 260
IBM Tivoli and Cisco manual EAP-FAST configuration Condition
Page 259 Page 261
Top Page Image Contents