Ttls (eap-tunneled tls) – Intermec 700 User Manual

Configurable Settings

Appendix

—

A

385

700 Series Color Mobile Computer User’s Manual

TTLS (EAP-Tunneled TLS)

This protocol provides authentication like EAP-TLS (see page 382) but
does not require certificates for every user. Instead, authentication servers
are issued certificates. User authentication is done using a password or oth-
er credentials that are transported in a securely encrypted “tunnel” estab-
lished using server certificates.

EAP-TTLS works by creating a secure, encrypted tunnel through which
you present your credentials to the authentication server. Thus, inside
EAP-TTLS there is another inner authentication protocol that you must
configure via Additional Settings.

Use “TTLS” to configure the use of EAP-TTLS as an authentication pro-
tocol, and select either “Open” or “WPA” as an association mode.

To Enable TTLS with an Open Association (default configuration)

1

Set 8021x Security as “TTLS.”

2

Set Association to “Open.”

3

Skip Encryption as it is automatically set to “WEP.” See page 372 for
information about WEP encryption.

4

Enter your unique user name and password to use this protocol. Select
Prompt for password to have the user enter this password each time to
access the protocol, or leave Use following password as selected to auto-
matically use the protocol without entering a password.

5

Tap Get Certificates to obtain or import server certificates. See page
388 for more information.

6

Tap Additional Settings to assign an inner TTLS authentication and an
inner EAP, and set options for server certificate validation and trust. See
page 387 for more information.