AMX Modero CV7 User Manual

Firmware Pages and Descriptions

127

7" Modero Touch Panels

Wireless Settings Page - Security Options - EAP-TLS

EAP (Extensible Authentication Protocol) is a Enterprise authentication protocol that can be used in
both a wired and wireless network environment. EAP requires the use of an 802.1x Authentication
Server, also known as a Radius server. Most of the configuration fields described below take variable
length strings as inputs. Whenever these fields are selected, an on-screen keyboard appears which allows
the string to then be entered.

TLS (Transport Layer Security) was the original standard wireless LAN EAP authentication protocol.
TLS requires additional work during the deployment phase but provides additional security since even a
compromised password is not enough to break into an EAP-TLS protected wireless network
environment.

An EAP-TLS security method is designed for wireless environments where its necessary to securely
transmit data over a wireless network by adding an additional level of security protocol via the use of a
private key. Refer to the EAP Authentication section on page 193 for further details on these security
options. Refer to the Using the Site Survey tool section on page 59 for more information on using this
feature. Pressing the EAP-TLS button opens the EAP-TLS Settings dialog (FIG. 110).

FIG. 110

Wireless Settings page - EAP-TLS security method

Wireless Security - EAP-TLS Settings

SSID (Service Set Identifier):

The SSID is the unique name used on the WAP and then assigned to all
panels in a wireless network that are communicating to the same target WAP.

• This is required by the WAP before the panel is permitted to join the

wireless network.

• It is case sensitive and must not exceed 32 characters, which may be any

keyboard character. Make sure this setting is the same for all points in your
wireless network.

• This unique string identifies the network and is the same string for all users

on the same network.

• Use the on-screen keyboard’s Clear button to completely erase any

previously stored SSID information.

• Note: In all cases, the SSID of the WAP must be entered. If it is left blank,

the panel will try to connect to the first access point which can be found that
supports EAP. In this situation however, a successful connection is not
guaranteed because the identified WAP may be connected to a RADIUS
server which does not support the specified EAP type and/or may not have
the proper user identities configured.

Required Information:

- SSID (Network Name used by the Target WAP)
- Identity (similar to the Username used for network access)
- Client Certificate file (validates client (panel))
- Private Key and Private Key Password