Honeywell 7900 PDAs & Smartphones User Manual


 
9 - 12 Dolphin® 7900 Series Mobile Computer User’s Guide
802.11b Wireless Security Supplement
AEGIS Client
®
offers the most comprehensive IEEE 802.1X supplicant for securing wired and wireless networks. The Client is a
standards-based implementation of IEEE 802.1X and can be configured to work with almost any network equipment - wired or
wireless - that supports the 802.1X authentication standard. The Client is interoperable with 802.1X-capable wireless APs and
authentication servers including Microsoft's IAS and Cisco's ACS.
The Client solves the problem of key distribution in wireless LANs by using public key authentication and encryption between
Wireless APs (WAP) and roaming stations to exchange dynamic Wired Equivalent Privacy (WEP) keys. In addition, network
managers can control 802.1X user profiles from a centralized RADIUS server or, in the case of TTLS, from a RADIUS Diameter
or other AAA servers. The Client supports both wireless (802.11a/b/g) and Ethernet interfaces.
Platforms Supported
There are several versions of AEGIS Client software for computers using a wide variety of operating systems. Specific
capabilities of a particular version of AEGIS Client may vary according to the operating system. This is due to varying levels of
support for different EAP types by manufacturers. Drivers for some types of network hardware and operating system
combinations don’t support as many EAP types as others combinations.
The following platforms are supported:
Microsoft Windows Mobile Software 2003 [OS version "Pocket PC Version 4.20.1081 (Build 13100)" or later]
Microsoft Windows Mobile Second Edition Software
Pocket PC 2002 [OS version "Pocket PC Version 3.0.11171 (Build 11178)" or later]
CE.NET 4.1 [OS version "CE .NET Version 4.10 (Build 908)" or later]
CE.NET 4.2 [OS version "CE .NET Version 4.20 (Build 1088)" or later]
Note: Verify the operating system version by tapping
Start
>
Settings
>
System
tab >
About
.
802.1X Supplicant Protocol Support
Support for the Extensible Authentication Protocol (EAP) - RFC 2284
Supported authentication methods are as follows:
CHAP/MD5 - RFC 1994
EAP TLS Authentication Protocol - RFC 2716
EAP Tunneled TLS (TTLS) - Internet Draft February 2002
Cisco LEAP and PEAP
Microsoft PEAP
Tested against the following servers:
Funk Odyssey 3.2 using TLS, LEAP and TTLS
AEGIS Server 1.1.4 using MD5, TLS, TTLS, LEAP and PEAP
Cisco ACS 3.2 using MD5, TLS, LEAP and PEAP
If you are using one of these authentication methodologies, you need to configure your 802.11b connection here, NOT
through 802.11b Settings. However, if you want to set the AP Search Threshold above the default setting of Low
Density, you do need to change that setting in 802.11b Settings; for details,
see Network Profile Tab on page 9-7.
Required Network Configuration Information Worksheets
Because AEGIS Client enables your terminal to access a network that is protected by the IEEE 802.1X protocol, you must
configure EAP data communication to match your network server parameters. If the EAP configuration doesn’t match your
network configuration, you can’t access the network.
Installing and configuring the Client usually takes less than 15 minutes, provided you have the required equipment, software, and
configuration information. You need clear information from the network administrator about how the network’s authentication
works.
!