Filter
Top Products
Viewing and Configuring Wireless Services 239
For Windows domain clients using Protected EAP (PEAP), the user glob
is in the format Windows_domain_name\username. The Windows
domain name is the NetBIOS domain name and must be specified in
capital letters. For example, EXAMPLE\sydney, or EXAMPLE\*.*, which
specifies all usernames whose usernames contain periods.
For EAP with Transport Layer Security (EAP-TLS) clients, the format is
username@domain_name. For example, sydney@example.com
specifies the user sydney in the domain name example.com. The
*@marketing.example.com glob specifies all users in the marketing
department at example.com. The user glob
sydney@engineering.example.com specifies the user sydney in the
engineering department at example.com.
For a MAC address glob, type a full or partial username to be matched
during authentication. MAC addresses must be specified with colons as
the delimiters (for example, 00:11:22:33:44:55). You can use wildcards
by specifying an asterisk (*) in MAC addresses. The following lists
examples of using wildcards in MAC addresses:
* (all MAC addresses)
00:*
00:01:*
00:01:02*
00:01:02:03:*
00:01:02:03:04:*
00:01:02:03:04:0*
To view a service profile’s access rules, see “Viewing SSID Encryption
Settings and Access Rules” on page 258. To edit or create access rules for
a service profile, see “Modifying SSID Encryption Settings and Access
Rules” on page 260.
EAP Type (802.1X Only) 802.1X access rules include information
about the Extensible Authentication Protocol (EAP) type to use for AAA
communication between the client and the AAA server. The EAP type can
be one of the following:
EAP-MD5 Offload—Extensible Authentication Protocol (EAP) with
message-digest algorithm 5. Select this protocol for wired
authentication clients.