3 Refer to the Authentication field to define the following Radius authentication information:
EAP and Auth Type
Auth Data Source
Cert Trustpoint
Summit WM3000 Series Controller System Reference Guide
Specify the EAP type for the Radius server.
PEAP
•
uses a TLS layer on top of EAP as a carrier for other EAP
modules. PEAP is an ideal choice for networks using legacy EAP
authentication methods.
TTLS
•
is similar to EAP-TLS, but the client authentication portion of
the protocol is not performed until after a secure transport tunnel has
been established. This allows EAP-TTLS to protect legacy
authentication methods used by some Radius servers.
Auth Data Source
Use
drop-down menu to select the data source for the
local Radius server.
Local
• If
is selected, the controller's internal user database serves as
the data source for user authentication. Refer to the
tabs to define user and group permissions for the controller's local
Radius server.
LDAP
• If
is selected, the controller uses the data within an LDAP
server.
View/Change
Click the
button to specify the trustpoint from which the
Radius server automatically grants certificate enrollment requests. A
trustpoint is a representation of a CA or identity pair. A trustpoint
contains the identity of the CA, CA-specific configuration parameters, and
an association with one enrolled identity certificate. If the server
certificate trustpoint is not used, the default trustpoint is used instead.
Users
Groups
and
403