5 action for invalid certificate, Action for invalid certificate -134, Action for invalid certificate – Konica Minolta bizhub 601 User Manual

751/601

1-134

Setup items by operation

1

1.43.5

Action for Invalid Certificate

Configure the action of this machine that is taken when the certificate is invalid.

For details, refer to

"Action for Invalid Certificate" on page 1-134

.

User ID

Enter a user ID to be used for EAP-TTLS authentication (up
to 128 characters).
This item is available if "EAP-Type" is set to "EAP-TTLS" or
"Depend on Server".

Protocol

Select an EAP-TTLS inner authentication protocol.
This item is available if "EAP-Type" is set to "EAP-TTLS" or
"Depend on Server".

Encryption Strength

Select an encryption strength level for encrypted communi-
cation with TLS.
- Low: Keys of any length are used for communication.
- Mid: Keys that are more than 56 bits in length are used for
communication.
- High: Keys that are more than 128 bits in length are used
for communication.
This item is available if "EAP-Type" is set to anything other
than "OFF" or "EAP-MD5".

Validity Period

Select whether to check that the server certificate is within
the validity period.

CA Certificate

Select whether to check that the server certificate chain (cer-
tification path) is correct.
A checking of the chain is made by reference to the route CA
certificate registered on this machine. For details, refer to

"Installation of CA Certificate" on page 1-132

.

Server ID

Select whether to check that the CN of the server certificate
matches the server address.
To check the server ID, specify "Server ID".

Server ID

Enter a server ID (up to 64 characters).
This setting is required if you verify the CN of the server cer-
tificate.

Whether to verify the CN
of the server certificate

CA Certificates rote

An indication is made to see if the route CA certificate is in-
stalled.
When the CA reliability of the server certificate is checked,
this is required to be installed. For details of the method for
installation, refer to

"Installation of CA Certificate" on

page 1-132

.

Is the CA reliability of the
server certificate
checked?

Client Certificates

Use the client certificate of this machine to make a selection
to decide whether or not the authentication information is
encrypted. When the client certificate is installed in this ma-
chine, a setting can be made. When [EAP-TLS] is selected
for EAP-Type, the client certificate is indispensable. When
EAP-Type is [EAP-TTLS] or [PEAP], a setting can also be
made.

Network Stop Time

If an authentication process does not succeed within the
specified time, all network communication will stop. To
specify the delay between the start of an authentication
process and the stopping of network communication, select
this box.

Stop Time

Specify the delay (sec.) between the start of an authentica-
tion process and the stopping of network communication.
To restart the authentication process after network commu-
nication has stopped, turn the main power of this machine
off and on again.

Item

Definition

Prior confirmation