Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01 Manual page 92

NSM Infranet Controller Configuration Guide
74
NOTE: The default 802.1X protocol set is configured to work with either
EAP-TTLS or EAP-PEAP as the primary outer authentication protocol,
and EAP-JUAC or EAP-MSCHAP- V2 for inner authentication (if EAP-PEAP
is used) and EAP-JUAC, PAP, MSCHAP- V2, EAP-MS-CHAP-V2, or
EAP-GenericTokenCard (if EAP-TTLS is used).
Add or modify settings on the authentication protocol sets as specified in Table 18 on
4.
page 74.
Click one:
5.
OK—Saves the changes.
Cancel—Cancels the modifications.
Table 18: Authentication Protocol Sets Configuration Details
Option Function
Authentication Protocol
Name Specifies a unique name
for the authentication
protocol.
Description Describes the
authentication protocol.
Authentication Protocol > Authentication Protocol
New Specifies the main
Authentication authentication protocol.
Protocol
Authentication Protocol > PEAP
New PEAP Specifies the inner
authentication protocol.
Authentication Protocol > TTLS
New TTLS Specifies the inner
authentication protocol.
Your Action
Enter a name for the authentication protocol.
Enter a brief description for the authentication
protocol.
Select the authentication protocol from the list.
NOTE: If you are using inner RADIUS proxy, do
not select an inner protocol with EAP-PEAP or
EAP-TTLS. See "Using RADIUS Proxy."
If you select EAP-PEAP as the main
authentication protocol, under PEAP click Add
and select an inner authentication protocol from
the New PEAP list.
NOTE: If you are configuring a protocol set to
work with the Windows client and a Host
Checker Statement of Health policy, you must
choose the EAP-SOH protocol as the inner
authentication method within a PEAP tunnel.
If you select EAP-TTLS as the main
authentication protocol, under TTLS click Add
and select an inner authentication protocol from
the New TTLS list.
Copyright © 2010, Juniper Networks, Inc.