New Preferred Setting Properties - IEEE 802.1X
Applies To: Windows 7, Windows Server 2008 R2
IEEE 802.1X settings specify the behavior of wireless clients when connecting to an infrastructure wireless network that is configured for 802.1X authentication. Settings include authentication methods, such as Extensible Authentication Protocol (EAP), authentication mode, and 802.1X-specific parameters.
802.1X - configuration items
Item | Details |
---|---|
Enable network access control using IEEE 802.1X |
Specifies whether you want to use Institute of Electrical and Electronics Engineers (IEEE) 802.1X to perform authentication for your wireless network. If you clear this check box, all of the other settings on this tab become unavailable. |
EAP Type |
Specifies the network authentication method that connecting wireless clients use:
Default = Microsoft: Protected EAP (PEAP) |
Settings |
Opens the properties page of the selected network authentication method. For setting information for network authentication methods, see: |
Eapol-Start message |
EAPOL is the Extensible Authentication Protocol (EAP) over local area network (LAN) protocol. This setting specifies the transmission behavior of EAPOL-Start messages when authenticating. You can select from the following:
|
Authentication Mode |
Specifies how network authentication is performed:
Default = User or Computer authentication |
Authenticate as computer when computer information is available |
Specifies whether the computer will attempt to authenticate using computer credentials when the user is not logged on. Computer credentials are typically a computer certificate. Default = enabled |
Authenticate as guest when user or computer information is unavailable |
Specifies that client connection requests that cannot meet computer or user authentication requirements can connect to the network by using permissions configured for the Guest account. Default = not enabled |
Max Eapol-Start Msgs |
If no response is received to the initial EAPOL-Start message, this setting specifies the maximum number of subsequent EAPOL-Start messages sent. Default = 3 |
Held Period (seconds) |
After a client has received notification of authentication failure, this setting specifies the number of seconds an authenticating client waits before it performs another 802.1X authentication request. Default = 1 |
Start Period (seconds) |
If no response is received to the initial EAPOL-Start message, this setting specifies the number of seconds an authenticating client waits before it performs another 802.1X authentication request. Default = 5 |
Auth Period (seconds) |
After end-to-end 802.1X authentication is initiated, this setting specifies the number of seconds authenticating clients must wait before retransmitting any 802.1X requests. Default = 18 |