28 EasyLAN Wireless Interface Kit Installation Instructions
Chapter 4 — Setup in Fingerprint
• LEAP: Cisco proprietary EAP type, requiring a Cisco access point.
• PEAP: With EAP/MSCHAPv2, EAP/Token Card (static password),
or EAP/MD5-Challenge in the tunnel.
802.1x Settingsese 802.1x parameters can be configured:
• EAP type: TTLS (default), LEAP, or PEAP, and can also be set to
OFF to disable 802.1x. When selecting PEAP or TTLS, the inner
authentication type will be changed appropriately for the selected
EAP type. For example, if TTLS is selected with inner authentication
type MSCHAPv2, changing the EAP type to PEAP changes the inner
authentication type to EAP/MSCHAPv2.
Note: If you start the printer with EAP type set to OFF and
then change the EAP type to TTLS, LEAP, or PEAP, you need
to reboot the printer for your new settings to take effect. You
cannot set ACTIVE to “1” to enable 802.1x settings without
rebooting.
• User name and password for logging onto the network. e default is
“anonymous”/“anonymous”.
• Outer name (TTLS only): e EAP identity passed in the clear in
TTLS. e default is “anonymous”.
• Inner Authentication type (TTLS and PEAP only): MSCHAPv2
(default), PAP (TTLS only), EAP/MSCHAPv2, EAP/MD5, or
EAP/GTC. Because PEAP uses EAP in the tunnel, for PEAP
“MSCHAPv2” and “EAP/MSCHAPv2” are equivalent settings.
TTLS can use other authentication protocols directly, so you need to
specify whether EAP will be used or if the protocol will run directly in
the tunnel.
• CA Certificate (T TLS and PEAP only): A certificate which should
contain the public key corresponding to the private key that was used
to sign the server's certificate, or the top certificate in a chain leading
to the server's certificate. e default is /rom/intermec.cer, provided
by Intermec and delivered with firmware containing the supplicant
functionality. e default certificate can be overridden by loading
another certificate in PEM, DER (.der, .cer), or PKCS #12 (.p12,
.pfx) format.