QTECH QSW-3400 Инструкция по настройке User Manual

+7(495) 797-3311 www.qtech.ru
Москва, Новозаводская ул., 18, стр. 1

327

authentication server to possess digital certificate to implement bidirectional authentication. It

is the earliest EAP authentication method used in wireless LAN. Since every user should have

a digital certificate, this method is rarely used practically considering the difficult maintenance.

However it is still one of the safest EAP standards, and enjoys prevailing supports from the

vendors of wireless LAN hardware and software.

The following figure illustrates the basic operation flow of the EAP-TLS authentication method.

the Authentication Flow of 802.1x EAP-TLS

3. EAP-TTLS Authentication Method

EAP-TTLS is a product of the cooperation of Funk Software and Certicom. It can provide an

authentication as strong as that provided by EAP-TLS, but without requiring users to have their

own digital certificate. The only request is that the Radius server should have a digital
certificate. The authentication of users’ identity is implemented with passwords transmitted in a