Eap-phase1 – Quatech WLNG-ET-DP500 Series User Manual

Quatech, Inc.

Company Confidential

100-8081-100

Airborne CLI Reference Manual

71

eap-phase1

Command

eap-phase1

Arguments

peaplabel=0 | peaplabel=1| peapver=0 | peapver=1 | peap_outer_success=0 | include_tls_length=1|
result_ind=1 | crypto_binding=0 | crypto_binding=1 | crypto_binding=2 |

Device Type All

Default

[blank]

Description

Phase1 (outer authentication, i.e., TLS tunnel) parameters.

peaplable=0

Forces a new label to be used during key derivation when PEAPv1 or newer is
being utilized. Most server PEAPv1 implementations use this value.

peaplabel=1

Forces a new label to be used during key derivation when PEAPv1 or newer is
being utilized. Some servers may require this setting for use with PEAPv1.

peapver=0

Forces use of PEAPv0.

peapver=1

Forces use of PEAPv1.

peap_outer_succes
s=0

Terminates PEAP authentication on tunneled EAP-Success.

This is required with some RADIUS servers that implement draft-josefsson-
pppext-eap-tls-eap-05.txt (e.g., Lucent NavisRadius v4.4.0 with PEAP in
"IETF Draft 5" mode)

include_tls_lengt
h=1

Used to force supplicant to include TLS message length field in all TLS

messages even if they are not fragmented,

result_ind=1

Used to enable EAP-SIM and EAP-AKA to use protected result indication.

crypto_binding=0

Do not use Crypto Binding for PEAPv0.

crypto_binding=1

Use Crypto Binding for PEAPv0, if the server supports it (default).

crypto_binding=2

Require Crypto Binding for PEAPv0.