Wi-Fi Settings, Wireless Client, Peap - Barco CX-50 Gen2 Installation Manual

password, but the password credentials are transported in a securely encrypted tunnel established based
upon the server certificates.
User authentication is performed against the same security database that is already in use on the corporate
LAN: for example, SQL or LDAP databases, or token systems. Since EAP-TTLS is usually implemented in
corporate environments without a client certificate we have not included support for this. If you prefer using
client certificates per user we suggest using EAP-TLS.
How to start up for EAP-TTLS
1. Select EAP-TTLS from the drop down list next to Authentication Mode.
Image 6–24 Wi-Fi Settings, Wireless Client, EAP-TTLS

6.15 Wi-Fi settings, Wireless Client, PEAP

About PEAP
PEAP (Protected Extensible Authentication Protocol) is an EAP implementation co-developed by Cisco
Systems, Microsoft and RSA Security. It sets up a secure TLS tunnel using the servers CA certificate after
which actual user authentication takes place within the tunnel. This way of working enables it to use the
security of TLS while authenticating the user but without the need for a PKI.
The standard does not mandate which method is to be used to authenticate within the tunnel. But in this
application note, with regard to PEAP, we are referring to PEAPv0 with EAP-MSCHAPv2 as the inner
authentication method. This is one of the two certified PEAP implementations in the WPA and WPA2
standards – and by far the most common and widespread implementation of PEAP.
How to start up for PEAP
1. Select PEAP from the drop down list next to Authentication Mode.
CX-50 Gen2 Configurator
R5900120 /01 CX-50 Gen2 87