Configure EAP for the Site

To get to the pages letting you configure EAP for a site, perform the following steps:

  1. In the Administration section, click Sites.
  2. In the View Sites list, select the site that you want to configure.
  3. Under Site Actions, select Configure EAP for selected site.

    The Configure Behavior page opens.

Configure Behavior

  1. Select one of the EAP types. For information on each of these types, see Extensible Authentication Protocol.

    Either Password or Certificate is automatically selected in the Type section, depending on what EAP type you selected.

    If Certificate is selected, Honeywell strongly recommends using PEM or base 64 formatted certificates.

  2. Select the manner in which the devices connect to the network in the Association section. For more information on association types, see Extensible Authentication Protocol.
  3. Specify whether you want to use PINs in addition to a username and password. This is recommended if you are setting up an operator-based configuration.
  4. Specify whether you want to force the device to log off of the network when it is placed in the charger. It then logs onto the network as the restricted user.
  5. If you opt to force a logoff, you should provide restricted user credentials for the device to use while in the charger. You may proceed without providing valid restricted user credentials; but if you choose to do so, the devices must be serially loaded every time they are removed from the charger.
  6. Click Next.

    The Configure LDAP page opens.

Configure LDAP

  1. Select whether to enable LDAP.

    2. If you selected operator-based association, LDAP settings are required. 

  2. If an LDAP configuration already exists, you can select it. Otherwise, select Create New Configuration.
  3. Specify whether you want to use SSL. If so, you can view trusted certificate sites and add to them by clicking the View Trusted Certificates action.
  4. Enter the server host and port.
  5. Specify your desired parameters in the Search User Distinguished Name and Search User Password fields.
  6. Enter the search base (where to look) and searchable attribute (what to look for) on the LDAP server.
  7. Enter the password that it is to change once it is located.
  8. If you want to test the Directory Server that you entered, enter the test user name, and click the Directory Server Connection Information button.
  9. Click Next.

    The Configure Credentials page opens.

Configure Credentials

  1. Enter or change the server credentials by selecting a certificate, if desired.

    You may choose to not use a certificate, but Honeywell strongly recommends that you do use one for added security.

  2. Specify whether to use the same SSID and EAP type for the restricted user as entered in the Configure LDAP page. If you do not want to use the same EAP type and SSID, enter the EAP type and SSID for the restricted user. If you want the restricted user to have only access to a portion of the network, this is where you would enter that information.
  3. Enter information for the users.
  4. Click Next.

    The Summary page opens.

Summary

  1. Review the summary of the selections that you made in the previous steps.
  2. Click Done.

If you created an operator-based association, Honeywell recommends that you create a shortcut to the Operator Login page, and place the shortcut on the desktop of the computer on which operators use to change credentials.