Filter
Top Products
3-15
Cisco Aironet 802.11a/b/g Wireless LAN Client Adapters (CB21AG and PI21AG) Installation and Configuration Guide for Windows Vista
OL-16534-01
Chapter 3 Configuring EAP Types
Configuring EAP-FAST
Table 3-3 Authentication Settings
Authentication Settings Description
Select an authentication
method
Select the inner tunnel EAP method from the drop-down list.
Available methods are EAP-GTC, EAP-MSCHAPv2, EAP-TLS, and
Any Method.
The Any Method option allows the EAP-FAST module to choose any
of the supported methods that the EAP server requests. The method
must also be appropriate to the user credentials that are used.
Default: Any Method
Note EAP-GTC is the only option available if you selected the Use
one-time password radio button in the User Credentials tab.
Note EAP-TLS is the only option available if you selected the Use
a certificate on this computer radio button in the User
Credentials tab.
Note The use of the Any Method value to allow all methods is
unsupported by Cisco or Microsoft and is not recommended.
This configuration is used “as-is”; Cisco makes no guarantee
that there will not be adverse performance to the system if
unsupported methods are used. Unsupported methods should
never be used in a production environment.
Configure Click the Configure button to configure EAP-TLS options. This
option is available only if EAP-TLS is the selected authentication
method. When you click this button, the standard Windows Vista
EAP-TLS Properties Screen appears.
Default: Disabled
Enable fast reconnect Check this box to allow session resumption.
The EAP-FAST module supports fast reconnect (also called session
resumption) by using the User Authorization PAC. When you enable
fast reconnect, you can roam or return from suspend mode without
re-entering your credentials. Fast reconnect can be used across
different network access servers.
Default: On
Note If you switch profiles, logs off, or reboot, fast reconnect is not
attempted. You must be reauthenticated.
Enable posture validation Check this box to allow the health information of the host machine to
be queried.