Справочник Пользователя для Honeywell International Inc. 950009
Dolphin® 9500/9550 Mobile Computer User’s Guide - GSM Draft
7 - 19
User Settings Tab
The User settings tab defines the protocol and the credentials used to authenticate a user.
Identity
The 802.1X identity supplied to the authenticator. The identity value can be up to 63 ASCII characters
and is case-sensitive. In TTLS and PEAP, it is recommended that this field not contain a true identity,
but instead the identity “anonymous”, and any desired realm (e.g. anonymous@myrealm.com).
and is case-sensitive. In TTLS and PEAP, it is recommended that this field not contain a true identity,
but instead the identity “anonymous”, and any desired realm (e.g. anonymous@myrealm.com).
Password
The password used for MD5-Challenge or LEAP authentication. It may contain up to 63 ASCII
characters and is case sensitive.
characters and is case sensitive.
Authentication
Valid entries are MD5-Challenge, LEAP, PEAP, TLS, or TTLS authentication.
Certificate
The client certificate used with TLS or if TTLS or PEAP is selected and optional client authentication
is activated. When specifying a client certificate, do not enable strong private key protection. If you
enable strong private key protection for a certificate, an access password must be entered for the
certificate each time it is used. This means the 802.1X service will fail authentication because it is
invoked by the computer before a user is logged on, which means that a password won’t be provided.
is activated. When specifying a client certificate, do not enable strong private key protection. If you
enable strong private key protection for a certificate, an access password must be entered for the
certificate each time it is used. This means the 802.1X service will fail authentication because it is
invoked by the computer before a user is logged on, which means that a password won’t be provided.
Use certificate area
This box is an option for TTLS and PEAP. It causes the AEGIS Client to make the client certificate
specified in the “Client Certificate” box available to the RADIUS server for an optional verification.
specified in the “Client Certificate” box available to the RADIUS server for an optional verification.
Tunneled authentication area
The following Tunneled Authentication parameters are used by only by TTLS and PEAP protocols, in phase 2 of authentication,
and after the secure tunnel has been established.
and after the secure tunnel has been established.
Identity
The user identity used in phase 2 authentication. The identity specified may contain up to 63 ASCII
characters, is case-sensitive and takes the form of a Network Access Identifier, consisting of <name
of the user>@<user’s home realm>. The user’s home realm is optional and indicates the domain to
which the tunneled transaction is to be routed.
characters, is case-sensitive and takes the form of a Network Access Identifier, consisting of <name
of the user>@<user’s home realm>. The user’s home realm is optional and indicates the domain to
which the tunneled transaction is to be routed.
Password
The password used for the tunneled authentication protocol specified. It may contain up to 63 ASCII
characters and is case sensitive.
characters and is case sensitive.
Protocol
This parameter specifies the authentication protocol operating within the secure tunnel. The following
protocols are presently supported for TTLS: EAP-MD5, CHAP, PAP, MS-CHAP and MS-CHAP-V2.
For PEAP the supported protocols are EAP-TLS, EAP-MS-CHAP-V2, and GTC.
protocols are presently supported for TTLS: EAP-MD5, CHAP, PAP, MS-CHAP and MS-CHAP-V2.
For PEAP the supported protocols are EAP-TLS, EAP-MS-CHAP-V2, and GTC.