Intermec CK61 User Manual page 65

CK61 Handheld Computer User's Manual With Windows CE
9 Tap Additional Settings to assign an inner PEAP authentication
and set options for server certificate validation and trust.
10 From the Inner PEAP Authentication list, choose EAP/MS-CHAP-
V2, EAT/Token Card, or EAP/MD5-Challenge.
11 Check Validate Server Certificate to verify the identity of the
authentication server based on its certificate when using PEAP.
12 Tap Root CA, select a root certificate, and then tap OK.
13 Enter the Common Names of trusted servers.
14 Tap OK.
Configuring TLS Security With Profile Wizard
EAP-TLS is a protocol based on the Transport Layer Security (TLS)
protocol widely used to secure web sites. This protocol requires both
the user and authentication server to have certificates for mutual
authentication.
To configure TLS security
1 In the Profile Wizard, select the Security page.
2 For 802.1x Security, choose TLS.
3 For Association, choose Open, WPA, WPA2, or Network EAP.
4 For Encryption, choose TKIP or AES if you selected WPA2 for
association, or WEP if you selected Network EAP for association.
5 For Subject Name, type a unique subject name for this protocol.
6 For User Name, type a unique user name for this protocol.
7 Tap Get Certificates to obtain or import server certificates. For
help with certificates, see
8 Tap Additional Settings to server certificate validation and trust.
9 Check Validate Server Certificate to verify the identity of the
authentication server based on its certificate when using TLS.
10 Tap Root CA, select a root certificate, and then tap OK.
11 Enter the Common Names of trusted servers.
12 Tap OK.
Chapter 2 — Connecting and Configuring the CK61
"Loading a Certificate" on page 59.
53