MicroNet Technology SP906GK User Manual

- 16 -

3.2.1.3 802.1x Setting-Certification

Parameter Description

Authentication Type

The EAP authentication protocols this card supports
are listed below. This setting has to be consistent
with the wireless APs or Routers that SP906GK
intends to connect.

PEAP &TTLS – PEAP and TTLS are similar and easier
than TLS in that they specify a stand-alone
authentication protocol to be used within an encrypted
tunnel. TTLS supports any protocol within its tunnel,
including CHAP, MS-CHAP, MS-CHAPv2, PAP and
EAP-MD5. PEAP specifies that an EAP-compliant
authentication protocol must be used; this card
supports EAP-MSCHAP v2, EAP-TLS/Smart card and
Generic Token Card. The client certificate is optional
for authentication needs.

TLS/Smart Card –TLS is the most secure of the EAP
protocols but is not easy to use. It requires exchanging
digital certificates in the authentication phase. The
server presents a certificate to the client. After
validating the server’s certificate, the client will then
present a client certificate to the server for validation.

MD5-Challenge – MD5-Challenge is the easiest EAP
Type. It requires the wireless station to enter a set of
user name and password as the identity to RADIUS
Server.