LXE mx6 Verweisanleitung
Configuring an MX6 Radio for WPA
273
E-EQ-MX6RG-E
MX6 Reference Guide
Skip Server Validation Step
At the bottom of the screen choose the Server tab. The Server identity page allows you to set the
credentials used for validating the authentication server during TLS and PEAP message exchange.
The Client will use this information to verify that the authentication server with which the Client
is communicating is a trusted server.
credentials used for validating the authentication server during TLS and PEAP message exchange.
The Client will use this information to verify that the authentication server with which the Client
is communicating is a trusted server.
Figure 7-13 Server Tab
Note: For ease of troubleshooting configure the Meetinghouse supplicant so it does not validate
the server certificate until the user authentication is working properly.
1. Check the Do not validate server certificate chain box when first configuring the device.
2. Tap the OK box at the bottom of the screen.
The fields in the Server identity dialog have the following meaning:
Do not validate server certificate chain – If enabled, the server certificate will not be validated.
Security is significantly reduced if the server certificate is not validated.
Security is significantly reduced if the server certificate is not validated.
Certificate issuer must be – Select the Certificate Authority which signed the server certificate,
or select "Any Trusted CA" (the default). If the certificate authority that issued the server
certificate is not listed, the CA certificate must be installed.
or select "Any Trusted CA" (the default). If the certificate authority that issued the server
certificate is not listed, the CA certificate must be installed.
Allow intermediate certificates – (default) Allow unspecified certificates to be in the server
certificate chain between the server certificate and the specified “Certificate issuer”.
certificate chain between the server certificate and the specified “Certificate issuer”.
Server name must be – The server name, or a domain to which the server belongs, depending on
which of the two fields below has been checked. This will be compared to the server certificate's
“Subject: CN” field.
which of the two fields below has been checked. This will be compared to the server certificate's
“Subject: CN” field.
•
Server name must match exactly – When selected, the server name entered must match
exactly the server name found on the certificate.
exactly the server name found on the certificate.
•
Domain name must end in specified name – When selected, the server name field identifies
a domain and the certificate must have a server name belonging to this domain or to one of its
sub-domains.
a domain and the certificate must have a server name belonging to this domain or to one of its
sub-domains.