Menu path: Setup > Network > LAN Interfaces > [Interface] > Authentication
Here, you can enable and configure network port authentication.
Enable IEEE-802.1x authentication:
Network port authentication is enabled.
Network port authentication is not enabled. (default)
If you enable authentication, further options are available:
EAP Type: Here, you can select the authentication procedure
Auth Method: For the EAP type PEAP, the following phase 2 authentication methods are available to choose from under Auth Method:
Validate Server Certificate
The server’s certificate is checked cryptographically. (default)
CA Root Certificate: The path to the CA root certificate file. This can be in PEM or DER format.
Identity: User name for RADIUS
Password: Password for network access
If you leave the user name and password fields empty, an entry mask for authentication purposes will be shown. However, this does not apply to the methods with a client certificate (TLS and PEAP-TLS) where these details are mandatory.
The following settings are relevant if you have selected TLS as EAP type:
Manage certificates with SCEP (NDES)
Client certificates will automatically be managed with SCEP.
Client certificates will not be managed with SCEP. (default)
Client Certificate: Path to the file with the certificate for client authentication in the PEM (base64) or DER format.
If a private key in the PKCS#12 format is used, leave this field empty.
Private key: Path to the file with the private key for the client certificate. The file can be in the PEM (base64), DER or PFX format. The private key passwordmay be required for access.