Line 604: |
Line 604: |
| <tr> | | <tr> |
| <td><span style="color:red;">EAP-Method</span></td> | | <td><span style="color:red;">EAP-Method</span></td> |
− | <td><span style="color:brown;">TLS</span> {{!}} TTLS {{!}} PEAP {{!}} FAST; default: <b>TLS</b> </td> | + | <td><span style="color:brown;">TLS</span> {{!}} <span style="color:blue;">TTLS</span> {{!}} <span style="color:blue;">PEAP</span> {{!}} <span style="color:blue;">FAST</span>; default: <b><span style="color:brown;">TLS</span></b> </td> |
| <td>Network access server identifier.</td> | | <td>Network access server identifier.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
| <td><span style="color:brown;">Use PKCS#12 format</span></td> | | <td><span style="color:brown;">Use PKCS#12 format</span></td> |
− | <td>off {{!}} <span style="color:brown;">on</span>; default: <b>off</b> </td> | + | <td>off {{!}} <span style="color:green;">on</span>; default: <b>off</b> </td> |
| <td>Use PKCS#12 file format for client certificate.</td> | | <td>Use PKCS#12 file format for client certificate.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
− | <td><span style="color:brown;">PKCS#12 client certificate file</span></td> | + | <td><span style="color:green;">PKCS#12 client certificate file</span></td> |
| <td>- (interactive button)</td> | | <td>- (interactive button)</td> |
| <td>Use PKCS#12 file format for client certificate.</td> | | <td>Use PKCS#12 file format for client certificate.</td> |
| </tr> | | </tr> |
| <tr> | | <tr> |
− | <td><span style="color:brown;">PKCS#12 passphrase</span></td> | + | <td><span style="color:green;">PKCS#12 passphrase</span></td> |
| <td>string; default: <b>none</b></td> | | <td>string; default: <b>none</b></td> |
| <td>Passphrase used to decrypt PKCS #12 certificates..</td> | | <td>Passphrase used to decrypt PKCS #12 certificates..</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Certificate files from device</td> |
| + | <td>off {{!}} on; default: <b>off</b></td> |
| + | <td>Choose this option if you want to select certificate files from device.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>CA-Certificate</td> |
| + | <td>.crt file; default: <b>none</b></td> |
| + | <td>This file can have one or more trusted CA certificates. If CA-Certificate is not included, server certificate will not be verified. This is insecure and a trusted CA-Certificate should always be configured when using EAP-TLS/TTLS/PEAP/FAST.</td> |
| + | </tr> |
| + | <tr> |
| + | <td><span style="color:brown;">Client-Certificate</span></td> |
| + | <td>.crt file; default: <b>none</b></td> |
| + | <td>Client certificate is a type of digital certificate that is used by client systems to make authenticated requests to a remote server. Client certificates play a key role in many mutual authentication designs, providing strong assurances of a requester's identity..</td> |
| + | </tr> |
| + | <tr> |
| + | <td><span style="color:brown;">Private Key</span></td> |
| + | <td>.key file; default: <b>none</b></td> |
| + | <td>TLS client key file.</td> |
| + | </tr> |
| + | <tr> |
| + | <td><span style="color:brown;">Password of Private Key</span></td> |
| + | <td>string; default: <b>none</b></td> |
| + | <td>Password of Private Key.</td> |
| + | </tr> |
| + | <tr> |
| + | <td><span style="color:blue;">Authentication</span></td> |
| + | <td>EAP-GTC {{!}} EAP-MD5 {{!}} EAP-MSCHAPv2 {{!}} <span style="color:olive;">EAP-TLS</span> {{!}} PAP {{!}} CHAP {{!}} MSCHAP {{!}} MSCHAPv2; default: <b>EAP-GTC</b> </td> |
| + | <td>Used as the username for authentication.</td> |
| + | </tr> |
| + | <tr> |
| + | <td><span style="color:olive;">Inner certificate files from device</span></td> |
| + | <td>off {{!}} on; default: <b>off</b></td> |
| + | <td>Choose this option if you want to select certificate files from device.</td> |
| + | </tr> |
| + | <tr> |
| + | <td><span style="color:olive;">Inner CA-Certificate</span></td> |
| + | <td>.crt file; default: <b>none</b></td> |
| + | <td>Inner CA-Certificate.</td> |
| + | </tr> |
| + | <tr> |
| + | <td><span style="color:olive;">Inner Client-Certificate</span></td> |
| + | <td>.crt file; default: <b>none</b></td> |
| + | <td>Inner Client-Certificate.</td> |
| + | </tr> |
| + | <tr> |
| + | <td><span style="color:olive;">Inner Private Key</span></td> |
| + | <td>.key file; default: <b>none</b></td> |
| + | <td>Inner Private Key.</td> |
| + | </tr> |
| + | <tr> |
| + | <td><span style="color:olive;">Password of inner Private Key</span></td> |
| + | <td>string; default: <b>none</b></td> |
| + | <td>Password of inner Private Key.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Identity</td> |
| + | <td>string; default: <b>none</b> </td> |
| + | <td>Used as the username for authentication.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Anonymous Identity</td> |
| + | <td>string; default: <b>none</b> </td> |
| + | <td>Shown as username outside the encrypted tunnel. Not used for authentication.</td> |
| + | </tr> |
| + | <tr> |
| + | <td><span style="color:blue;">Password</span></td> |
| + | <td>string; default: <b>none</b> </td> |
| + | <td>Used for authentication.</td> |
| </tr> | | </tr> |
| </table>}} | | </table>}} |