802.1x

In SGW Nodal and WiFi Offload Gateway Nodal test cases, when you select CAPWAP tunnel type and authentication as 802.1x, the 802.1x tab allows you add configure UE authentication support.

^ Back to Top


 

Version

Select the appropriate IEEE 802.1x version for CAPWAP Tunnel authentication.

Option: 1, 2

Default: 1

Tcl Parameter: Ieee8021xVersion

 

Encapsulation

Select the data channel encapsulation protocol.

Option: 802.3 (1); 802.11 (0)

Default:802.3 (1)

Tcl Parameter: Ieee8021xEncapsulation

 

Role

Indicates the role of the network port authentication entity used in IEEE 802.1X (Port Based Network Access Control) EAPOL (EAP authentication over LAN).

Select to indicate whether EAPOL is initiated by the Supplicant or Authenticator, which adds 802.1X support for CAPWAP varient.

  • Authenticator (1) (Port Authentication Entity that controls network access)
  • Supplicant (0) (Port Authentication Entity seeking access to network resources)

Default: Supplicant

Tcl Parameter: EapolAuthInitiation

EAP Settings

Select to set up 802.1x EAP authentication protocol.

 

^ Back to Top


EAPOL Key Exchange

Specify the EAPOL key negotiation to be included in EAPOL start message between AP and AC.

Enable EAPOL Key Exchange Select to enable EAPOL key exchange EapolExEn
PTK Cipher Suite

Select the PTK (Pairwise Transient Key – 64 bytes) obtained during handshake.

  • CCMP (4)
  • TKIP (2)

Tcl Parameter: EapolPtkSuite

GTK Cipher Suite

Select the GTK (Group Temporal Key), used to decrypt multicast and broadcast traffic.

  • CCMP (4)
  • TKIP (2)

Tcl Parameter: EapolGtkSuite

AKM Suite

Select the Authentication key Management Suite.

  • 802.1x (1 )
  • PSK (2)

Tcl Parameter: EapolAmkSuite

When you select PSK, EAP Settings are disabled and Pass Phrase is enabled.  Enter the pass phrase used in authentication management.

Range: 8 - 63 characters

Default: password.

Tcl Parameter: EapolPassPhrase.

Retry Time

Indicates the time to wait before attempting key negotiation again.

range is 0 - 65535, default is 5.

Tcl Parameter: EapolExRetryInterval

Retry Count

Indicates the number of times to rtry/attempt key exchange.

Range: 0 - 65535

Default: 3

Tcl Parameter: EapolExRetries

 

^ Back to Top