Eap-Ttls - AMX MVP-9000i-GB Instruction Manual

EAP-PEAP
SSID
(Service Set Identifier):
Identity:
Password:
Certificate Authority:
PEAP Version:
Inner Authentication
Type:
Key Mgmt:
Cancel/Save:
Refer to the EAP Authentication section on page 146 and the Using the Wireless Site Survey Tool section on page 34 for further
details on these security options.

EAP-TTLS

From the Security Modes options, press the Enterprise button to open the Wireless Security: Enterprise Mode page. Scroll through
the Security Type options to select EAP-TTLS (FIG. 83).
Wireless Security: Enterprise Mode - EAP-TTLS
FIG. 83
MVP-9000i - Instruction Manual
Opens an on-screen keyboard to enter the SSID name used on the target AP. The SSID is a unique name used by
the AP, and is assigned to all panels on that network. An SSID is required by the AP before the panel is permitted
to join the network.
• The SSID is case sensitive and must not exceed 32 characters.
• Make sure this setting is the same for all points in the wireless network.
• With EAP security, the SSID of the AP must be entered. If it is left blank, the panel will try to connect to the first
access point detected that supports EAP. However, a successful connection is not guaranteed because the
detected AP may be connected to a RADIUS server, which may not support this EAP type and/or have the
proper user identities configured.
Opens an on-screen keyboard to enter an EAP Identity string (used by the panel to identify itself to an
Authentication (RADIUS) Server).
Note: This information is similar to a username used to login to a secured server or workstation. This works in
tandem with the Password string, which is similar to the password entered to gain access to a secured workstation.
Typically, this is in the form of a username such as jdoe@amx.com.
Opens an on-screen keyboard to enter the network password string specified for the user entered within the
Identity field (used by the panel to identify itself to an Authentication (RADIUS) Server)
Note: This information is similar to the password entered to gain access to a secured workstation.
When pressed, the panel displays an on-screen Certificate Authority (CA) File Location keyboard, which allows
you to enter the name of the certificate authority file which is used to validate the server certificate.This field is
optional. If a server certificate is used, it should first be downloaded into the panel and the Certif icate Authority
field should then be set to the name of that certificate file. No file path should be used for this setting as all
certificates are stored in a specific directory that the user cannot control or change.
Use the on-screen keyboard's Clear button to erase completely any previously stored network path information.
When pressed, this field cycles through the choices of available PEAP: PEAPv0, PEAPv1, or PEAPv1 w/
peaplabel=1.
When pressed, this field cycles through the choices of available Inner Authentication mechanisms supported by
the Devicescape Secure Wireless Client. The most commonly used are: MSCHAPv2 and GTC.
• MSCHAPv2 (used with PEAPv0)
• GTC (used with PEAPv1)
• OTP
• MD5
This button has 4 options:
• WPA-EAP: The default and most common setting for EAP authentication methods. Accepts WPA, WPA2 & TKIP,
or AES.
• 8021X: Used to specify IEEE 802.1x port authentication only.
• CCKM-WPA: Cisco key management option. Used with CCKM and WPA (TKIP encryption only) authentication.
• CCKM-WPA2: Cisco key management option. Used with CCKM and WPA2 (AES encryption only)
authentication.
Note: The Key Mgmt selection must match the security settings on the AP in order for the connection to be
successful.
• Cancel - discard changes and return to the previous page.
• Save - store the new security information, apply changes, and return to the previous page.
Protected Setup Pages
68