I'm in the process of implementing 802.1x with the use of Aruba Clearpass as our radius server and I had a question regarding connecting Android devices to the wireless network. When connecting to the wireless network with my Android device I'm presented with the following questions from Android
EAP method
Phase 2 Authentication
CA Certificate
Identity
Anonymous Identity
Password
My curiosity is with the CA Certificate field and the use of it. The options I have to choose from are
Use system certificates
Do not validate
When I choose do not validate I connect to the network (assuming I provided the correct identity and password)
When I choose use system certificates I am prompted to enter a domain name. In which case I will enter the domain of my company (which matches the public certificate I put on my radius server) and i'm able to connect.
What exactly is happening under the covers between those two options? I'm looking to write up some
documentation/user guide and I just want to make sure I have an accurate understanding here.
No comments:
Post a Comment