Managed Authentication Service - Middleware Specification
The objective of the middleware, or automated script, is to help Windows users to automate the configuration step on using 802.1x authentication with
wireless connection.
General Requirements:
· Run on
Windows XP, and Windows Vista operation platform;
· Automatically executed upon connection of the USB key to the PC with or without administrator rights;
(Windows service agent is needed to simulate auto-run for USB flash drive.)
· Securely import and store X.509 digital certificates in USB key;
(X.509 digital certificate should not be human readable on USB key)
· Protect stored certificates from unauthorized access
· Allow EAP-TLS authentication for
wireless 802.1x network through stored X.509 certificates within the USB key
· Automatically disconnect PC from the authenticated network upon disconnection of the USB key
Wireless Connection Requirements:
The middleware, when auto executed from an USB drive upon insert, should be able to:
· Detect and configure Windows to use Windows wireless client connection
· Detect network profile with predefined SSID and configure its setting to run with IEEE 802.1x authentication.
· Move the network profile as the preferred network and connect the client to the wireless access point.
· Allow import of pre-configure network profile
- Enable Windows to use windows wireless network settings.
|
 |
- Configure and move the predefined network profile (eg 3Com 0) to the top of the preferred network list.
|
 |
- Properties of the network profile setting is set with WAP as Network Authentication in the “Wireless network key” setting.
|
 |
- IEEE 802.1X enabled with Smart Card or other Certificate being selected in the EAP type field.
|
 |
- Certificate Properties are set to with the option “Use a certificate on this computer” and “Validate server certificate”.
|
 |
扫一扫
3625
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
