8 - 27
EAP-TLS
To use EAP-TLS, make sure the following profile options are used.
1. Enter the SSID of the Access Point assigned to this profile
2. Set EAP Type to EAP-TLS
3. Set Encryption to WPA TKIP
4. Set Auth Type to Open
To use another encryption type, select WPA CCKM, WPA2 AES or WPA2 CCKM for encryption and complete other entries
as detailed in this section.
See Sign-On vs. Stored Credentials (page 8-14) for information on entering credentials.
Click the Credentials button.
• No entries except the User Certificate Filename and the CA Certificate Filename are necessary for Sign-On Credentials
as the user will be prompted for the User Name when connecting to the network.
• For Stored Credentials, User Certificate Filename and the CA Certificate Filename must be entered.
Enter these items as directed below.
1. Enter the Domain\Username (if the Domain is required), otherwise enter the Username.
2. Select a user certificate from the Windows certificate store. Use the Browse button to locate the User Cert from the
certificate store. Highlight the desired certificate and press the Select button. The name of the certificate is displayed
in the User Cert box.
3. Some versions of the SCU require a User Cert password. If this entry field is present, enter the password for the user
certificate in the User Cert pwd box.
4. If there are no user certificates in the Windows certificate store, follow these instructions to Generate a User Certificate
(page 8-33) and Install a User Certificate (page 8-37).
5. See Windows Certificate Store vs. Certs Path (page 8-15) for more information on CA certificate storage.
6. Check the Validate server checkbox.