LXE hx3 参考指南
Summit Client Configuration
179
E-EQ-HX3RG-C
HX3 Reference Guide
by using the Browse button.
10. If using EAP-FAST and manual PAC provisioning, input the PAC filename and password.
11. Tap the OK button then the Commit button.
12. Verify the device is authenticated by reviewing the Status tab. When the device is properly
configured, the Status tab indicates the device is Authenticated and the method used.
Note:
More details are provided in the appropriate Summit Wireless Security section following
in this chapter. If invalid credentials are entered into the stored credentials, the
authentication will fail. No error message is displayed and the user is not prompted to
enter valid credentials.
in this chapter. If invalid credentials are entered into the stored credentials, the
authentication will fail. No error message is displayed and the user is not prompted to
enter valid credentials.
Verify the device is authenticated by reviewing the Status tab. When the device is properly
configured, the Status tab indicates the device is Authenticated and the method used.
configured, the Status tab indicates the device is Authenticated and the method used.
Windows Certificate Store vs. Certs Path
Note: It is important that all dates are correct on CE computers when using any type of
certificate. Certificates are date sensitive and if the date is not correct authentication will
fail.
fail.
User Certificates
EAP-TLS authentication requires a user certificate. The user certificate must be stored in the
Windows certificate store. To generate the user certificate, follow the instructions in Generating a
User Certificate for the Mobile Device, later in this chapter.
Windows certificate store. To generate the user certificate, follow the instructions in Generating a
User Certificate for the Mobile Device, later in this chapter.
Import the user certificate into the Windows certificate store by following the instructions in
Installing a User Certificate on the Mobile Device, later in this chapter. A Root CA certificate is
also needed for EAP-TLS. Refer to the section below.
Installing a User Certificate on the Mobile Device, later in this chapter. A Root CA certificate is
also needed for EAP-TLS. Refer to the section below.
Root CA Certificates
Root CA certificates are required for PEAP/MSCHAP, PEAP/GTC, and EAP-TLS. Two options
are offered for storing these certificates. They may be imported into the Windows certificate store
or copied into the Certs Path directory.
are offered for storing these certificates. They may be imported into the Windows certificate store
or copied into the Certs Path directory.
How To: Use Windows Certificate Store
1. Follow the instructions later in this chapter for Downloading a Root CA Certificate to a PC.
2. To import the certificate into the Windows store, follow the instructions for Installing a Root
CA Certificate on the Mobile Device later in this chapter.
3. When completing the Credentials screen for the desired authentication, be sure to check the
Use MS store checkbox after checking the Validate server checkbox.
4. The default is to use all certificates in the store. If this is OK, skip to Step #8.
5. Otherwise, to select a specific certificate tap the Browse (…) button.