2 - 50 MT2070/MT2090 User Guide
To select a tunneled authentication type:
1. Select a tunneled authentication type from the drop-down list. See Table 2-9 for the Tunnel Authentication
options for each authentication type.
2. Select the User Certificate check box if a certificate is required. If the TLS tunnel ty pe that requires a user
certificate is selected, the check box is already selected.
3. Tab t o Next > and press ENT. The Installed User Certificates dialog displays.
Table 2-9
Tunneled Authentication Options
Tunneled
Authentication
Authentication Type
DescriptionPEAP TTLS EAP-FAST
CHAP X Challenge Handshake Authentication Protocol (CHAP) is one of the two
main authentication protocols used to verify the user name and
password for PPP Internet connections. CHAP is more secure than
PAP because it performs a three way handshake during the initial link
establishment between the home and remote machines. It can also
repeat the authentication anytime after the link is established.
EAP-GTC X X EAP-GTC is used during phase 2 of the authentication process. This
method uses a time-synchronized hardware or software token
generator, often in conjunction with a user PIN, to create a one-time
password.
MD5 X Message Digest-5 (MD5) is an authentication algorithm developed by
RSA. MD5 generates a 128-bit message digest using a 128-bit key,
IPSec truncates the message digest to 96 bits.
MS CHAP X Microsoft Challenge Handshake Authentication Protocol (MS CHAP) is
an implementation of the CHAP protocol that Microsoft created to
authenticate remote Windows workstations. MS CHAP is identical to
CHAP, except that MS CHAP is based on the encryption and hashing
algorithms used by Windows networks and the MS CHAP response to
a challenge is in a format optimized for compatibility with Windows
operating systems.