AMIGOPOD PowerConnect W Clearpass 100 Software Manual
Radius 802.1x/eap setup technote
Hide thumbs
Also See for PowerConnect W Clearpass 100 Software:
- Deployment manual (128 pages) ,
- Integration manual (52 pages) ,
- Release note (38 pages)
Advertisement
Quick Links
Download this manual
See also:
Manual
RADIUS 802.1X/EAP Setup
This is a draft guide until a full technote with a walkthrough is available.
Tested with amigopod RADIUS Services 2.0.16 which is the current 2.1 release
candidate.
802.1X/EAP Configuration
First navigate to RADIUS Services > EAP & 802.1X
Now create a self-signed digital certificate for this server by clicking the Create
Server Certificate link
Complete the Create RADIUS Server Certificate form – this certificate will be used
to identify the server in EAP-TLS protocol (and derived protocols i.e. PEAP)
Click the Continue button to proceed to the Sign RADIUS Server Certificate form.
This will be filled out with defaults based on the previous page.
Advertisement
Related Manuals for AMIGOPOD PowerConnect W Clearpass 100 Software
Summary of Contents for AMIGOPOD PowerConnect W Clearpass 100 Software
- Page 1 RADIUS 802.1X/EAP Setup This is a draft guide until a full technote with a walkthrough is available. Tested with amigopod RADIUS Services 2.0.16 which is the current 2.1 release candidate. 802.1X/EAP Configuration First navigate to RADIUS Services > EAP & 802.1X Now create a self-signed digital certificate for this server by clicking the Create Server Certificate link Complete the Create RADIUS Server Certificate form –...
- Page 2 Modify these parameters if appropriate – note that the default CA certificate expiration is set for 10 years. In particular, the “Common Name” of the certificate will be used to identify it to clients installing it as a trusted CA root, so choose a sensible name.
- Page 3 The details of the certificates are shown. To enable these certificates for use in EAP- TLS, EAP-TTLS and PEAP, select the Use this certificate to identify this RADIUS server checkbox and click Apply Settings.
- Page 4 RADIUS server will need to be restarted to complete these changes, but don’t do this just yet as some additional configuration options must be selected. Click the EAP Configuration command link. In the EAP Configuration form, select the EAP types that are to be supported. To enable the common case of PEAPv0/MS-CHAPv2 (broadly supported by all wireless clients that implement 802.1X), complete the form as shown below: Click the Save Changes button.
- Page 5 Click the Download File button and a file named amigopod Certificate Authority.p7b will be downloaded (the precise name depends on the common name for the CA certificate). This file must be imported as a trusted root certification authority on any client wishing to authenticate using this RADIUS Server.
- Page 6 Click the Install Certificate… button...
- Page 7 Click the Browse… button to select the Trusted Root Certification Authorities store:...
- Page 8 Make sure that the imported CA is specified as a Trusted Root Certification Authority for the wireless network connection that is using PEAP.
- Page 9 Successful PEAP Authentication Tue Nov 17 01:20:13 2009 : Auth: Login OK: [demo@example.com] (from client linksys port 21 cli 001c2603de08) Tue Nov 17 01:20:13 2009 : Auth: Login OK: [demo@example.com] (from client localhost port 0) Tue Nov 17 01:20:13 2009 : Info: rlm_eap_mschapv2: Issuing Challenge Tue Nov 17 01:20:13 2009 : Error: rlm_eap: SSL error error:00000000:lib(0):func(0):reason(0)
Need help?
Do you have a question about the PowerConnect W Clearpass 100 Software and is the answer not in the manual?
Questions and answers