Dell Powerconnect W-ClearPass Hardware Appliances W-ClearPass Policy Manager 6 - Page 112

Table 46: Policy Manager Supported Authentication Methods EAP Non-EAP Tunneled l EAP Protected EAP (EAP-PEAP) l EAP Flexible Authentication Secure Tunnel (EAP-FAST) l EAP Transport Layer Security (EAP-TLS) l EAP Tunneled TLS (EAP-TTLS) NonTunneled l EAP Message Digest 5 (EAP-MD5) l EAP Microsoft Challenge Handshake Authentication Protocol version 2 (EAP- MSCHAPv2) l EAP Generic Token Card (EAP-GTC) l Challenge Handshake Authentication Protocol (CHAP) l Password Authentication Protocol (PAP) l Microsoft CHAP version 1 and version 2 l MAC Authentication Method (MAC-AUTH) MAC-AUTH must be used exclusively in a MAC-based Authentication Service. When the MAC_AUTH method is selected, Policy Manager makes internal checks to verify that the request is indeed a MAC_ Authentication request (and not a spoofed request). NOTE: In tunneled EAP methods, authentication and posture credential exchanges occur inside of a protected outer tunnel. From the Services page (Configuration > Service), you can configure authentication for a new service (as part of the flow of the Add Service wizard), or modify an existing authentication method directly (Configuration > Authentication > Methods, then click on its name in the Authentication Methods listing). When you click Add New Authentication Method from any of these locations, Policy Manager displays the Add Authentication Method popup. Figure 54: Add Authentication Method (popup) 112 Dell Networking W-ClearPass Policy Manager 6.0 | User Guide