5Install a root certificate. A root certificate must be issued by the Certificate Authority (CA) who signed the authentication server’s certificate and be in the form of Base64 Encoded X.509 with a .cer extension. It must also be less than 3,072 bytes.

6Install a client certificate. A client certificate must be issued by the trusted Certificate Authority (CA) and is used for the RADIUS server to validate print server's identity. It must be in the form of PKCS #12 / Personal Information Exchange with a .pfx extension and be less than 3,072 bytes. You also need to enter the same private key password used when a client certificate is issued by CA.

Using EAP-TTLS

1Set Security Mode to Enhanced Security.

2Set WPA Authentication to IEEE802.1x.

3Set 802.1x Authentication to EAP-TLS.

4Choose TKIP, AES, 64-bit WEP, or 128-bit WEP for encryption. The same encryption algorithm must be configured on the access point.

5Choose EAP-MD5,CHAP, MS-CHAP, or MS-CHAPv2 for inner authentication protocol. The selected inner authentication protocol must be supported by the RADIUS server.

6Set an Identity name of up to 31 characters as another identity name.

7Set a user name of up to 31 characters. This account name must also be set up on the RADIUS server.

8Set a user password of up to 15 characters. This account password must also be set up on the RADIUS server.

9Select or deselect Enable Server Certificate Validation. If this option is deselected, the print server always regards the RADIUS server as a valid authentication server without a root certificate.

10Install a root certificate. A root certificate must be issued by the Certificate Authority (CA) who signed the authentication server’s certificate and be in the form of Base64 Encoded X.509 with a .cer extension. It must also be less than 3,072 bytes. If you deselect Enable Server Certificate Validation, you don't need to install a root certificate.

Using PEAP

4Choose TKIP, AES, 64-bit WEP, or 128-bit WEP for encryption. The same encryption algorithm must be configured on the access point.

5Choose EAP-MD5or MS-CHAPv2for inner authentication protocol. The selected inner authentication protocol must be supported by the RADIUS server.

6Set a user name of up to 31 characters. This account name must also be set up on the RADIUS server.

7Set a user password of up to 15 characters. This account password must also be set up on the RADIUS server.

8Select or deselect Enable Server Certificate Validation. If this option is deselected, the print server always regards the RADIUS server as a valid authentication server without a root certificate.

9Install a root certificate. A root certificate must be issued by the Certificate Authority (CA) who signed the authentication server’s certificate and be in the form of Base64 Encoded X.509 with a .cer extension. It must also be less than 3,072 bytes. If you deselect Enable Server Certificate Validation, you don't need to install a root certificate.

NOTE: Your wireless basic setting changes will be applied after the print server restarts. In order to restart the print server, from SyncThru Web Service, select Network Settings Æ Reset and click Restart, or turn the print server off and then back on.

1

2

3

Set Security Mode to Enhanced Security.

Set WPA Authentication to IEEE802.1x.

Set 802.1x Authentication to EAP-TLS.

6.7

Wireless network environment

Page 28 Page 30
Page 29
Image 29
Samsung Network Printer manual Using EAP-TTLS
Page 28 Page 30
Top Page Image Contents