New Wired Network Policy Properties - Security

  • Article

Applies To: Windows 7, Windows Server 2008 R2

Security configuration items include all of the settings on the Security tab. These settings specify whether to perform 802.1X authentication for connecting clients and which network authentication method to use.

Security - configuration items

Item Details

Enable use of IEEE 802.1X authentication for network access

Specifies that 802.1X authentication is performed for access requests to the wired network.

You must select Enable use of IEEEĀ 802.1X authentication for network access to expose Extensible Authentication Protocol (EAP) authentication method settings and the settings on the Advanced security settings tab.

Default = enabled

Select a network authentication method

Specifies the network authentication method that connecting clients use:

  • Microsoft: Smart Card or other certificate (EAP-TLS)

  • Microsoft: Protected EAP (PEAP)

Default = Microsoft: Protected EAP (PEAP)

Properties

Opens the properties page of the selected network authentication method.

For setting information specific to network authentication methods, see:

Network Authentication Methods Properties

Authentication Mode

Specifies how network authentication is performed:

  • User or Computer authentication. An 802.1X-compliant device always uses security credentials based on the current state of the computer. Authentication is performed by using the computer credentials when no users are logged on to the computer. When a user logs on to the computer, authentication is always performed by using the user credentials.

    This is the recommended setting.

  • Computer only. Authentication is always performed by using only the computer credentials.

  • User authentication. Specifies that when users are not logged on to the computer, authentication is performed by using the computer credentials. After a user logs on to the computer, authentication is still based on the computer credentials. Authentication is performed by using the user credentials if the moves the computer to a location on your network that is connected to a different 802.1X-capable switch.

  • Guest authentication. Allows connections to the network that are regulated by the restrictions and permissions set for the Guest user account.

Default = User or Computer authentication

Cache user information for subsequent connections to this network

Specifies that when the user logs off, the user credential data is saved in the registry. The next time the user logs on, the user is not prompted for their credentials (such as user name and password).

Default = enabled

Advanced

Provides access to advanced security settings.