1 method and authentication, Method and authentication – Rosewill RNX-N150PCX User Manual

Page 34

Advertising
background image

Wireless N Adapter

RNX-N150PCx User Manual

- 34 -

6.2.1 Method and Authentication

Definition of Each Fields in 802.1X Method and Authentication:

Figure 6-3

EAP Method:

PEAP: Protect Extensible Authentication Protocol. PEAP

transport securely authenticates data by using tunneling

between PEAP clients and an authentication server. PEAP

can authenticate wireless LAN clients using only server-side

certificates, thus simplifying the implementation and

administration of a secure wireless LAN.

TLS/Smart Card: Transport Layer Security. This provides for

certificate-based and mutual authentication of the client and

the network. It relies on client-side and server side

certificates to perform authentication and can be used to

dynamically generate user-based and session-based WEP

keys to secure subsequent communications between the

WLAN client and the access point.

TTLS: Tunneled Transport Layer Security. This security method

provides for certificate-based, mutual authentication of the

client and network through an encrypted channel. Unlike

EAP-TLS, EAP-TTLS requires only server-side certificates.

EAP-FAST: Flexible Authentication via Secure Tunneling. It was

developed by Cisco. Instead of using a certificate, mutual

authentication is achieved by means of a PAC (Protected

Access Credential) which can be managed dynamically by

the authentication server. The PAC can be supplied

(distributed one time) to the client either manually or

automatically. Manually, it is delivered to the client via disk or

a secured network distribution method. Automatically, it is

supplied as an in-band, over the air, distribution. For tunnel

authentication, only support "Generic Token Card"

authentication.

LEAP: Light Extensible Authentication Protocol is an EAP

authentication type used primarily by Cisco Aironet WLANs.

It encrypts data transmissions using dynamically generated

WEP keys, and supports mutual authentication.

MD5-Challenge: Message Digest Challenge. Challenge is an

EAP authentication type that provides base-level EAP

support. It provides for only one-way authentication - there is

no mutual authentication of wireless client and the network.

Tunnel Authentication:

Protocol: Tunnel protocol, List information include

Advertising
Popular Brands
Popular manuals