Dascom 7010 PrintServer Manual User Manual

Print Server Network Authentication

Print Server User Manual

92

authentication. This makes sure that the print server gets access to
protected networks.

Basic Functions

EAP-TTLS consists of two phases:

• In phase 1, a TLS-encrypted channel between the print server

and the RADIUS server will be established. Only the RADIUS
server authenticates itself using a certificate that was signed by
a CA. This process is also referred to as ’outer authentication’.

• In phase 2, an additional authentication method is used for the

communication within the TLS channel. EAP-defined methods
and older methods (CHAP, PAP, MS-CHAP und MS-CHAPv2) are
supported. This process is also referred to as ’inner
authentication’.

The advantage of this procedure is that only the RADIUS server
needs a certificate. Therefore no PKI is needed. Moreover, TTLS
supports most authentication protocols.

To make the connection more secure, you can install the root
certificate of the RADIUS server on the print server. (Phase 1) The
print server validates the identity of the RADIUS server by means of
the certificate.

Requirements

;

The print server is defined as user (with user name and password)
on a RADIUS server.

What do you want

to do?

†

’Enabling EAP-TTLS via the PRINTSERVER Homepage’

Ö

93

†

’Enabling EAP-TTLS via the PRINTSERVER-NetTool’

Ö

93

The authentication of print server models with WLAN support is
configured via the menu item Configuration - WLAN.