Choosing between microsoft and funk security, Configuring funk security – Intermec 751G User Manual

Chapter 5 — Network Support

120

751G Color Mobile Computer User’s Manual

The 751G provides three types of security for your wireless network: Wi-Fi
Protected Access 2 (WPA2/802.11i), WPA, and WEP. 802.1x should be
referred to as an authentication method used for WPA and WPA2. Another
authentication method for WPA and WPA2 would be the Pre-Shared Key
(PSK).

Choosing Between Microsoft and Funk Security

Before you can implement a security solution on the 751G, you need to
choose between Microsoft and Funk security:

• By default, Funk security is enabled. It provides everything you get with

Microsoft security plus the addition of Cisco Compatible Extensions
features. It also provides additional authentication types like EAP-TTLS,
LEAP, and EAP-FAST.

• Microsoft security, with its Microsoft Zero Config feature, is also

available. To switch to Microsoft security, go to

“Configuring Microsoft

Security” on page 126

to start.

Configuring Funk Security

You can define up to four profiles for your Funk Odyssey security.
Different profiles let your 751G communicate in different networks
without having to change all of your security settings. For example, you can
set up one profile for the manufacturing floor and one for the warehouse.

EAP-TLS
(Transport Layer
Security)

Based on the TLS (Transport Layer Security) protocol widely used to secure web sites. This requires
both the user and authentication server have certificates for mutual authentication. While cryptically
strong, this requires corporations that deploy this to maintain a certificate infrastructure for all users.

EAP-TTLS
(Tunneled
Transport Layer
Security)

This protocol provides authentication like EAP-TLS (see

page 120

) but does not require certificates

for every user. Instead, authentication servers are issued certificates. User authentication is done using
a password or other credentials that are transported in a securely encrypted “tunnel” established using
server certificates.
EAP-TTLS works by creating a secure, encrypted tunnel through which you present your credentials
to the authentication server. Thus, inside EAP-TTLS there is another inner authentication protocol that
you must configure via Additional TTLS Settings.

Note: Your security choice does not depend on your authentication server.
For example, you can choose Funk security if you use Microsoft Active
Directory® to issue certificates.

1

Select Start > Settings > Control Panel, then double-tap the Intermec
Settings icon.

2

Tap (+) to expand Communications > 802.11 Radio > Funk Security.

Authentication (continued)