2 how to configure eap-tls, How to configure eap-tls – Dascom 7010 PrintServer Manual User Manual
Page 90
Print Server Network Authentication
Print Server User Manual
90
9.2
How to Configure EAP-TLS
Benefits and
Purpose
EAP-TLS (Transport Layer Security) validates the identity of devices
or users before they gain access to network resources. You can
configure the print server for the EAP-TLS network authentication.
This makes sure that the print server gets access to protected
networks.
Basic Functions
EAP-TLS describes a certificate-based authentication method via a
RADIUS server. For this purpose, certificates are exchanged between
the print server and the RADIUS server. An encrypted TLS connection
between the print server and the RADIUS server is established in this
process. Both RADIUS server and print server need a valid, digital
certificate signed by a CA. The RADIUS server and the print server
must validate the certificate. After the mutual authentication was
successful, the access to the network will be freed.
Since each device needs a certificate, a PKI (Public Key
Infrastructure) must be available. User passwords are not necessary.
If you want to use the EAP-TLS authentication, you must observe
the following instructions in the indicated order. Otherwise the print
server cannot be addressed in the network. In this case you have to
reset the print server parameters; see:
Procedure
Create a certificate request on the print server; see:
102.
Create a CA certificate using the certificate request and the
RADIUS server.
Install the CA certificate on the print server; see: ’How to Save
CA Certificates in the Print Server’
Install the root certificate of the RADIUS server on the print
server; see ’How to Save Root Certificates in the Print Server’
Enable the authentication method 'EAP-TLS' on the print server.