Ultra Secure Mode

Enabling 802.1X Authentication can result in the RMX being disconnected from the network and a warning message is displayed:

System Flags

The following system flags are used to manage the 802.1X Authentication process. They must be manually added to system.cfg if their default values need to be modified.

802.1X Authentication System Flags

Flag name

Description

 

 

802_1X_CERTIFICATE_MODE

Determines whether one TLS certificate is retrieved from the

 

Certificate Repository for all IP services or if multiple certificates will be

 

retrieved, one for each IP service.

 

Range: ONE_CERTIFICATE, MULTIPLE_CERTIFICATE

 

Default: ONE_CERTIFICATE.

 

 

802_1X_SKIP_CERTIFICATE_VALIDATI

If the flag value is:

ON

• YES - The retrieved certificate is not validated against the CA

 

certificate.

 

• NO - The retrieved certificate is validated against the CA certificate.

 

Validation failure raises an Active Alarm and is reported in the

 

Ethernet Monitoring dialog box.

 

Range: YES, NO.

 

Default: YES.

 

 

802_1X_CRL_MODE

If the flag value is:

 

• ENABLED - Forces CRL checking. The system fails the connection

 

request if the certificate has been revoked or if there is no CRL.

 

• OPTIONAL - The system fails the connection request if the

 

certificate is revoked but does not fail the connection request if there

 

is no CRL.

 

• DISABLED - Does not check the CRL and does not fail the

 

connection request based on the CRL content.

 

Range: ENABLED, OPTIONAL, DISABLED

 

Default: DISABLED.

 

 

802_FIPS_MODE

If the flag value is YES, the availability of the MD5 Authentication

 

Protocol will neither be displayed as selectable option nor supported.

 

Range: YES/NO.

 

Default: NO

 

 

Polycom®, Inc.

864

Page 895
Image 895
Polycom 1500/1800/2000/4000 manual 802.1X Authentication System Flags Flag name Description, Default Disabled, Range YES/NO