Tunneled authentication, Tunneled authentication -8, Tunneled authentication -7 – Symbol Technologies MC3000 User Manual

MC3000 Integrator Guide

7-8

Tunneled Authentication

Use the Tunneled Authentication dialog box to select the tunneled authentication options. There are different selections available for
PEAP or TTLS authentication. To select a tunneled authentication type

Figure 7-7. Tunneled Auth Dialog Box

1.

Tap a tunneled authentication type from the drop-down list.

2.

Select the User Certificate check box if a certificate is required. The TLS tunnel type requires a user certificate, so the check
box is automatically selected.

3.

Tap Next. The Installed User Certs dialog box appears.

Table 7-7

lists the PEAP tunneled authentication options.

Table 7-7. PEAP Tunneled Authentication Options

PEAP Tunneled

Authentication

Description

MS CHAP v2

Microsoft Challenge Handshake Authentication Protocol version 2 (MS CHAP v2) is a password-based, challenge-response,
mutual authentication protocol that uses the industry-standard Message Digest 4 (MD4) and Data Encryption Standard (DES)
algorithms to encrypt responses. The authenticating server challenges the access client and the access client challenges
the authenticating server. If either challenge is not correctly answered, the connection is rejected. MS CHAP v2 was
originally designed by Microsoft as a PPP authentication protocol to provide better protection for dial-up and virtual private
network (VPN) connections. With Windows XP SP1, Windows XP SP2, Windows Server 2003, and Windows 2000 SP4, MS
CHAP v2 is also an EAP type.

TLS

EAP TLS is used during the phase 2 of the authentication process. This method uses a user certificate to authenticate.