Set up a client with peap network authentication, Peap – Intel 3945ABG User Manual
Page 70
NOTE: This option is unavailable if Pre-Logon Connect is not selected during installation of the Intel
PROSet/Wireless software. Refer to
Install or Uninstall the Single Sign On Feature
●
Prompt each time I connect: Select to prompt for user name and password before you
connect to the wireless network. The user name and password must be first set in the
authentication server by the administrator.
●
Use the following: The user name and password are securely (encrypted) saved in the
profile.
❍
User Name: This user name must match the user name that is set in the
authentication server.
❍
Domain: Name of the domain on the authentication server. The server name identifies
a domain or one of its subdomains (for example, zeelans.com, where the server is
blueberry.zeelans.com). NOTE: Contact your administrator to obtain the domain name.
❍
Password: This password must match the password that is set in the authentication
server. The entered password characters display as asterisks.
❍
Confirm Password: Reenter the user password.
2. Roaming Identity: If the Roaming Identity is cleared, %domain%\%username% is the default.
When 802.1x MS RADIUS is used as an authentication server, the server authenticates the device
that uses the Roaming Identity user name from Intel PROSet/Wireless software, and ignores the
Authentication Protocol MS-CHAP-V2 user name. This feature is the 802.1x identity supplied to
the authenticator. Microsoft IAS RADIUS accepts only a valid user name (dotNet user) for EAP
clients. When 802.1x MS RADIUS is used, enter a valid user name. For all other servers, this is
optional. Therefore, it is recommended to use the desired realm (for example,
anonymous@myrealm) instead of a true identity.
Step 2 of 2: TTLS Server
●
Validate Server Certificate: Selected.
●
Certificate Issuer: The server certificate received during the TTLS message exchange must have been
issued by this certificate authority (CA). Trusted intermediate certificate authorities and root authorities
whose certificates exist in the system store are available for selection. If Any Trusted CA is selected, any
CA in the list is acceptable.
●
Specify Server or Certificate Name: The server name or domain to which the server belongs, whichever
of the following has been selected.
●
Server name must match exactly: When selected, the server name entered must match exactly
the server name found on the certificate. The server name should include the complete domain
name (for example, Servername.Domain name).
●
Domain name must end in specified name: When selected, the server name identifies a domain
and the certificate must have a server name belonging to this domain or to one of its subdomains
(for example, zeelans.com, where the server is blueberry.zeelans.com)
NOTE: These parameters should be obtained from the administrator.
3. Click OK to save the setting and close the page.
Set up a Client with PEAP Network Authentication
PEAP authentication: PEAP settings are required for the authentication of the client to the authentication
server. The client uses EAP-TLS to validate the server and create a TLS-encrypted channel between client and
server. The client can use another EAP mechanism (for example, Microsoft Challenge Authentication Protocol (MS-