Configuring an MX6 Radio for WPA 279
E-EQ-MX6RG-E-ARC MX6 Reference Guide
Authentication Configuration EAP-TLS
EAP-TLS authentication uses a Public Key Infrastructure (PKI) to authenticate users. A PKI is a
system of certificates and keys that prove trusts in a network. A user will have a certificate with a
private key and public key.
When they encrypt data with the private key other entities with the user’s public key can de-crypt
that data.
To use TLS in an authentication environment the users must install certificates with the private
key into the client device that will authenticate to a server that has the user’s public key.
So the first thing to do is install a user certificate with the private key. See previous section titled
“Prerequisites” sub-section titled “Install Certificates on the MX6”.
As soon as Prerequisites are completed . . .then
• set up an authentication profile for a user
• configure the authentication profile to skip server validation
• set up the radio profile to connect to AP network
• configure radio profile WPA settings
• once user is authenticated add server authentication
Set Up User Authentication Profile
Open the Meetinghouse configuration tool by tapping the (A) icon on the bottom right corner of
the screen or navigate to Start | Programs | Meetinghouse AEGIS Client.
Figure 7-19 Open the Meetinghouse Configuration Tool for EAP/TLS
At the bottom of the screen tap Client and choose Configure
in the pop up menu. Fields are greyed
out if not relevant to the selected protocol.
