8,907
edits
Changes
Template:Networking rutos manual 8021x (view source)
Revision as of 13:33, 27 June 2024
, Thursday at 13:33Created page with "{{Template: Networking_device_manual_fw_disclosure | series = {{{series}}} | name = {{{name}}} | fw_version ={{Template: Networking_device_manual_latest_fw | series = {{{se..."
{{Template: Networking_device_manual_fw_disclosure
| series = {{{series}}}
| name = {{{name}}}
| fw_version ={{Template: Networking_device_manual_latest_fw
| series = {{{series}}}
| name = {{{name}}}
}}
}}
{{#ifeq: {{{series}}} | RUT9 |<br><i><b>Note</b>: <b>[[{{{name}}} LAN (legacy WebUI)|click here]]</b> for the old style WebUI (FW version {{Template: Networking_device_manual_latest_fw | series = RUT9XX}} and earlier) user manual page.</i>|}}
{{#ifeq: {{{series}}} | RUT2 |<br><i><b>Note</b>: <b>[[{{{name}}} LAN (legacy WebUI)|click here]]</b> for the old style WebUI (FW version {{Template: Networking_device_manual_latest_fw | series = RUT2XX}} and earlier) user manual page.</i>|}}
==802.1X Client==
<b>802.1X</b> is a network authentication protocol that opens ports for network access when an organization authenticates a user's identity and authorizes them for access to the network. The user's identity is determined based on their credentials or certificate, which is confirmed by the authentication server.
[[File:Networking_rutos_manual_network_8021x_tap.png|border|class=tlt-border]]
<table class="nd-mantable">
<tr>
<th>Field</th>
<th>Value</th>
<th>Description</th>
</tr>
<tr>
<td>Status</td>
<td>Active {{!}} Disabled; default: <b>disabled</b></td>
<td>Status of service.</td>
</tr>
<tr>
<td>Enable</td>
<td>off {{!}} on; default: <b>off</b></td>
<td>Toggle 802.1x on or off.</td>
</tr>
<tr>
<td>Auth type</td>
<td>MD5 {{!}} <span style="color:red">TLS</span> {{!}} PWD {{!}} <span style="color:green">Tunneled TLS</span> {{!}} <span style="color:blue">Protected EAP (PEAP)</span>; default: <b>MD5</b></td>
<td>Authentication type.</td>
</tr>
<tr>
<td>Identity (Username)</td>
<td>string; default: <b>none</b></td>
<td>Used as the username for authentication.</td>
</tr>
<tr>
<td>MD5, PWD, <span style="color:green">Tunneled TLS</span>, <span style="color:blue">Protected EAP (PEAP)</span>: Password</td>
<td>string; default: <b>none</b></td>
<td>Used for authentication.</td>
</tr>
<tr>
<td><span style="color:red">TLS</span>: CA Certificate</td>
<td>.crt file; default: <b>none</b></td>
<td>Radius server CA certificate.</td>
</tr>
<tr>
<td><span style="color:red">TLS</span>: User certificate</td>
<td>.crt file; default: <b>none</b></td>
<td>TLS client certificate.</td>
</tr>
<tr>
<td><span style="color:red">TLS</span>: Private Key</td>
<td>.key file; default: <b>none</b></td>
<td>TLS Private Key.</td>
</tr>
<tr>
<td><span style="color:red">TLS</span>: Private Key Password</td>
<td>string; default: <b>none</b></td>
<td>TLS Private Key Password.</td>
</tr>
<tr>
<td><span style="color:green">Tunneled TLS</span>: Inner authentication</td>
<td>PAP {{!}} MSCHAP {{!}} MSCHAPv2 {{!}} MSCHAPv2 (no EAP) {{!}} CHAP {{!}} MD5 {{!}} GTC; default: <b>PAP</b></td>
<td>Inner authentication type.</td>
</tr>
<tr>
<td><span style="color:blue">Protected EAP (PEAP)</span>: Inner authentication</td>
<td>MSCHAPv2 {{!}} MD5 {{!}} GTC; default: <b>MSCHAPv2</b></td>
<td>Inner authentication type.</td>
</tr>
<tr>
<td><span style="color:blue">Protected EAP (PEAP)</span>: Peap version</td>
<td>auto {{!}} 0 {{!}} 1; default: <b>auto</b></td>
<td>Peap version.</td>
</tr>
<tr>
<td><span style="color:green">Tunneled TLS</span>, <span style="color:blue">Protected EAP (PEAP)</span>: Anonymous identity</td>
<td>string; default: <b>none</b></td>
<td>Shown as username outside the encrypted tunnel. Not used for authentication.</td>
</tr>
<tr>
<td><span style="color:green">Tunneled TLS</span>, <span style="color:blue">Protected EAP (PEAP)</span>: CA Certificate</td>
<td>.crt file; default: <b>none</b></td>
<td>Radius server CA certificate.</td>
</tr>
</table>
[[Category:{{{name}}} Network section]]
| series = {{{series}}}
| name = {{{name}}}
| fw_version ={{Template: Networking_device_manual_latest_fw
| series = {{{series}}}
| name = {{{name}}}
}}
}}
{{#ifeq: {{{series}}} | RUT9 |<br><i><b>Note</b>: <b>[[{{{name}}} LAN (legacy WebUI)|click here]]</b> for the old style WebUI (FW version {{Template: Networking_device_manual_latest_fw | series = RUT9XX}} and earlier) user manual page.</i>|}}
{{#ifeq: {{{series}}} | RUT2 |<br><i><b>Note</b>: <b>[[{{{name}}} LAN (legacy WebUI)|click here]]</b> for the old style WebUI (FW version {{Template: Networking_device_manual_latest_fw | series = RUT2XX}} and earlier) user manual page.</i>|}}
==802.1X Client==
<b>802.1X</b> is a network authentication protocol that opens ports for network access when an organization authenticates a user's identity and authorizes them for access to the network. The user's identity is determined based on their credentials or certificate, which is confirmed by the authentication server.
[[File:Networking_rutos_manual_network_8021x_tap.png|border|class=tlt-border]]
<table class="nd-mantable">
<tr>
<th>Field</th>
<th>Value</th>
<th>Description</th>
</tr>
<tr>
<td>Status</td>
<td>Active {{!}} Disabled; default: <b>disabled</b></td>
<td>Status of service.</td>
</tr>
<tr>
<td>Enable</td>
<td>off {{!}} on; default: <b>off</b></td>
<td>Toggle 802.1x on or off.</td>
</tr>
<tr>
<td>Auth type</td>
<td>MD5 {{!}} <span style="color:red">TLS</span> {{!}} PWD {{!}} <span style="color:green">Tunneled TLS</span> {{!}} <span style="color:blue">Protected EAP (PEAP)</span>; default: <b>MD5</b></td>
<td>Authentication type.</td>
</tr>
<tr>
<td>Identity (Username)</td>
<td>string; default: <b>none</b></td>
<td>Used as the username for authentication.</td>
</tr>
<tr>
<td>MD5, PWD, <span style="color:green">Tunneled TLS</span>, <span style="color:blue">Protected EAP (PEAP)</span>: Password</td>
<td>string; default: <b>none</b></td>
<td>Used for authentication.</td>
</tr>
<tr>
<td><span style="color:red">TLS</span>: CA Certificate</td>
<td>.crt file; default: <b>none</b></td>
<td>Radius server CA certificate.</td>
</tr>
<tr>
<td><span style="color:red">TLS</span>: User certificate</td>
<td>.crt file; default: <b>none</b></td>
<td>TLS client certificate.</td>
</tr>
<tr>
<td><span style="color:red">TLS</span>: Private Key</td>
<td>.key file; default: <b>none</b></td>
<td>TLS Private Key.</td>
</tr>
<tr>
<td><span style="color:red">TLS</span>: Private Key Password</td>
<td>string; default: <b>none</b></td>
<td>TLS Private Key Password.</td>
</tr>
<tr>
<td><span style="color:green">Tunneled TLS</span>: Inner authentication</td>
<td>PAP {{!}} MSCHAP {{!}} MSCHAPv2 {{!}} MSCHAPv2 (no EAP) {{!}} CHAP {{!}} MD5 {{!}} GTC; default: <b>PAP</b></td>
<td>Inner authentication type.</td>
</tr>
<tr>
<td><span style="color:blue">Protected EAP (PEAP)</span>: Inner authentication</td>
<td>MSCHAPv2 {{!}} MD5 {{!}} GTC; default: <b>MSCHAPv2</b></td>
<td>Inner authentication type.</td>
</tr>
<tr>
<td><span style="color:blue">Protected EAP (PEAP)</span>: Peap version</td>
<td>auto {{!}} 0 {{!}} 1; default: <b>auto</b></td>
<td>Peap version.</td>
</tr>
<tr>
<td><span style="color:green">Tunneled TLS</span>, <span style="color:blue">Protected EAP (PEAP)</span>: Anonymous identity</td>
<td>string; default: <b>none</b></td>
<td>Shown as username outside the encrypted tunnel. Not used for authentication.</td>
</tr>
<tr>
<td><span style="color:green">Tunneled TLS</span>, <span style="color:blue">Protected EAP (PEAP)</span>: CA Certificate</td>
<td>.crt file; default: <b>none</b></td>
<td>Radius server CA certificate.</td>
</tr>
</table>
[[Category:{{{name}}} Network section]]
