Motorola MC3090G Integration Guide - Page 133
Wireless Applications, PEAP Tunneled, Authentication, Description, TTLS Tunneled
View all Motorola MC3090G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 133 highlights
Wireless Applications 6 - 11 2. Select the User Certificate check box if a certificate is required. The TLS tunnel type requires a user certificate, so the check box is automatically selected. 3. Tap Next. The Installed User Certs dialog box appears. Table 6-8 lists the PEAP tunneled authentication options. Table 6-8 PEAP Tunneled Authentication Options PEAP Tunneled Authentication Description MS CHAP v2 Microsoft Challenge Handshake Authentication Protocol version 2 (MS CHAP v2) is a password-based, challenge-response, mutual authentication protocol that uses the industry-standard Message Digest 4 (MD4) and Data Encryption Standard (DES) algorithms to encrypt responses. The authenticating server challenges the access client and the access client challenges the authenticating server. If either challenge is not correctly answered, the connection is rejected. MS CHAP v2 was originally designed by Microsoft as a PPP authentication protocol to provide better protection for dial-up and virtual private network (VPN) connections. With Windows XP SP1, Windows XP SP2, Windows Server 2003, and Windows 2000 SP4, MS CHAP v2 is also an EAP type. TLS EAP TLS is used during the phase 2 of the authentication process. This method uses a user certificate to authenticate. Table 6-9 lists the TTLS tunneled authentication options. Table 6-9 TTLS Tunneled Authentication Options TTLS Tunneled Authentication Description CHAP Challenge Handshake Authentication Protocol (CHAP) is one of the two main authentication protocols used to verify the user name and password for PPP Internet connections. CHAP is more secure than PAP because it performs a three way handshake during the initial link establishment between the home and remote machines. It can also repeat the authentication anytime after the link has been established. MS CHAP Microsoft Challenge Handshake Authentication Protocol (MS CHAP) is an implementation of the CHAP protocol that Microsoft created to authenticate remote Windows workstations. In most respects, MS CHAP is identical to CHAP, but there are a few differences. MS CHAP is based on the encryption and hashing algorithms used by Windows networks, and the MS CHAP response to a challenge is in a format optimized for compatibility with Windows operating systems.