4 certificate validation, Ieee802.1x authentication setting, Certificate validation – Konica Minolta BIZHUB 223 User Manual

bizhub 423/363/283/223

8-31

8.10

Using IEEE802.1X authentication

8

8.10.4

Certificate validation

[IEEE802.1x Authentication Setting]

In the administrator mode of PageScope Web Connection, select [Network] ö [IEEE802.1x Authentication
Setting] ö [IEEE802.1x Authentication Setting].

[EAP-Type]

Select an EAP authentication method.
If you select [Depend on Server], the EAP-Type provided
by the authentication server will be used for authentica-
tion. Configure the supplicant settings as required for this
machine according to the EAP-Type provided by the au-
thentication server.
Do not set this item to [OFF].

EAP authentication
method

[EAP-TTLS]

Configure settings for EAP-TTLS.

[anonymous]

Enter an anonymous name to be used for EAP-TTLS au-
thentication (up to 128 characters).
This item is available if [EAP-Type] is set to [EAP-TTLS] or
[Depend on Server].

[Inner Authentica-
tion Protocol]

Select an EAP-TTLS inner authentication protocol.
This item is available if [EAP-Type] is set to [EAP-TTLS] or
[Depend on Server].

[Server ID]

Enter a server ID (up to 64 characters).
This setting is required if you verify the CN of the server
certificate.

Whether to verify the
CN of the server cer-
tificate

[Client Certificate]

Select whether to encrypt authentication information us-
ing client certificates of this machine. You can configure
this setting when client certificates are registered in this
machine.
If [EAP-Type] is [EAP-TLS], the client certificates are al-
ways required.
This setting can be configured even if [EAP-Type] is set to
[EAP-TTLS] or [PEAP].

[Encryption
Strength]

Select an encryption strength level for encrypted commu-
nication with TLS.
•

[Low]: Keys of any length are used for communication.

•

[Mid]: Keys that are more than 56 bits in length are
used for communication.

•

[High]: Keys that are more than 128 bits in length are
used for communication.

This item is available if [EAP-Type] is set to anything other
than [OFF] or [EAP-MD5].

[Network Stop
Time]

If an authentication process does not succeed within the
specified time, all network communication will stop. To
specify the delay between the start of an authentication
process and the stop of network communication, select
this box.

[Stop Time]

Specify the delay (sec.) between the start of an authenti-
cation process and the stop of network communication.
To restart the authentication process after network com-
munication has stopped, turn the main power of this ma-
chine off and on again.

Item

Description

Prior check

Item

Description

Prior check

[Certificate Verifi-
cation Level Set-
tings]

To verify the server certificate, configure settings to verify
the certificate.

[Validity Period]

Select whether to check that the server certificate is within
the validity period.