196 Summit Client Configuration
HX2 Reference Guide E-EQ-HX2RG-B
Verify the device is authenticated by reviewing the Status tab. When the device is properly
configured, the Status tab indicates the device is Authenticated and the method used.
The sign-on screen is displayed after a reboot for each of the listed protocols.
Note: Complete details are provided in the appropriate Summit Wireless Security section
following in this chapter.
If a user enters invalid credentials and taps OK, the device associates but does not
authenticate. The user is again prompted to enter credentials.
If the user taps the Cancel button, the device does not associate. The user is not
prompted again for credentials until the device is rebooted, the radio is disabled then
enabled, the Reconnect button on the Diags tag is tapped or the profile is modified and
the Commit button is tapped.
Windows Certificate Store vs. Certs Path
Note: It is important that all dates are correct on CE computers when using any type of
certificate. Certificates are date sensitive and if the date is not correct authentication will
fail.
User Certificates
EAP-TLS authentication requires a user certificate. The user certificate must be stored in the
Windows certificate store. To generate the user certificate, follow the instructions in Generating a
User Certificate for the Mobile Device, later in this chapter.
Import the user certificate into the Windows certificate store by following the instructions in
Installing a User Certificate on the Mobile Device, later in this chapter. A Root CA certificate is
also needed for EAP-TLS. Refer to the section below.
Root CA Certificates
Root CA certificates are required for PEAP/MSCHAP, PEAP/GTC, and EAP-TLS. Two options
are offered for storing these certificates. They may be imported into the Windows certificate store
or copied into the Certs Path directory.
How To: Use Windows Certificate Store
1. Follow the instructions later in this chapter for Downloading a Root CA Certificate to a PC.
2. To import the certificate into the Windows store, follow the instructions for Installing a Root
CA Certificate on the Mobile Device later in this chapter.
3. When completing the Credentials screen for the desired authentication, be sure to check the
Use MS store checkbox after checking the Validate server checkbox.
4. The default is to use all certificates in the store. If this is OK, skip to Step #8.
5. Otherwise, to select a specific certificate tap the Browse (…) button.
