Intermec CK61 User Manual page 66

Chapter 2 — Connecting and Configuring the CK61
54
Configuring TTLS Security With Profile Wizard
TTLS protocol provides authentication like EAP-TLS but does not
require user certificates. User authentication is done using a password
or other credentials that are transported in a securely encrypted
"tunnel" established using server certificates.
To configure TTLS security
1 In the Profile Wizard, select the Security page.
2 For 802.1x Security, choose TTLS.
3 For Association, choose Open, WPA, WPA2, or Network EAP.
4 For Encryption, choose TKIP or AES if you selected WPA2 for
association, or WEP if you selected Network EAP for association.
5 For Username, type a unique username for this protocol.
6 In the Password field, type a unique password for this protocol.
7 Select Prompt for password to have the user enter this password
each time to access the protocol, or select Use following password
to use the protocol without entering a password each time you use
the CK61.
8 (Optional) Tap Get Certificates to obtain or import server
certificates. For help with certificates, see
on page 59.
9 Tap Additional Settings to assign an inner TTLS authentication,
inner EAP, and set options for server certificate validation and
trust.
10 From the Inner TTLS Authentication list, choose PAP, CHAP, MS-
CHAP, MS-CHAP-V2, PAP/Token Card, or EAP.
11 If you select EAP for the inner authentication protocol, select an
inner EAP protocol from the Inner EAP list.
12 Check Validate Server Certificate to verify the identity of the
authentication server based on its certificate when using TTLS.
13 Tap Root CA, select a root certificate, and then tap OK.
14 Enter the Common Names of trusted servers.
15 For Anonymous EAP-TTLS Name, type an outer identity to protect
your login name or identity.
CK61 Handheld Computer User's Manual With Windows CE
"Loading a Certificate"