Setting Security Parameters
Click Configure. The Configure EAP-TLS window appears (see
Step 2
Figure 5-15
Check the Use Machine Information for Domain Logon check box if you want the client to attempt to
Step 3
log into a domain using machine authentication with a machine certificate and machine credentials rather
than user authentication. Doing so enables your computer to connect to the network prior to user logon.
The default setting is unchecked.
Note
If you checked the Use Machine Information For Domain Logon check box in the previous step, the
Step 4
Always Do User Authentication check box at the bottom of the window becomes active. Perform one of
the following:
•
Check the Always Do User Authentication check box if you want the client to switch from using
machine authentication to using user authentication after you log on using your username and
password. This is the default setting.
Uncheck the Always Do User Authentication check box if you want the client to continue to use
•
machine authentication after your computer logs into the domain.
Check the Validate Server Identity check box to force the system to validate the identity of the server
Step 5
as an added level of security. If you uncheck this box, only user credentials will be validated.
Choose the certificate authority from which the server certificate was downloaded in the Trusted Root
Step 6
Certification Authorities drop-down box.
Choose your server certificate in the Select a Certificate drop-down box.
Step 7
Cisco Aironet 802.11a/b/g Wireless LAN Client Adapters (CB21AG and PI21AG) Installation and Configuration Guide
5-46
Configure EAP-TLS Window
If you do not check the Use Machine Information for Domain Logon check box, machine
authentication is not performed. Authentication does not occur until you log on.
Chapter 5
Configuring the Client Adapter
Figure
5-15).
OL-4211-05