EAP modules
EAP modules are used in a wireless LAN to authenticate wireless devices and authentication servers.
Note that the network must support this feature.
Modifying the EAP-SIM settings
To use EAP-SIM authentication, the cover phone must be switched on, and the device must have a valid SIM card installed.
To modify EAP-SIM settings for the Internet access point, select
Connections
>
Internet setup
. Select a wireless LAN Internet
access point from the list, and
Edit
>
Advanced
. Select the
EAP
page. Select EAP-SIM from the list, and press
Configure
.
Define the following:
•
Use manual user name
— This setting overrides the user name in the initial identity response in a case when the server
requires that the user performs the initial identification with a predefined user name, for example, with a Windows user
name. If you select
Yes
but leave the
User name
field empty, a random user name is generated for initial identity response.
•
Use manual realm
— This setting overrides the realm of the initial identity response in a case when the server requires that
the user performs the initial identification with a predefined realm. If you select
No
, the realm is derived from the IMSI
(international mobile subscriber identity).
•
Use identity privacy
— The EAP-SIM can have the server send a pseudonym identity for future authentications. This identity
prevents the user's IMSI from being sent.
•
Max. reauthentic. count
— The EAP-SIM can have the server send the wireless device a reauthentication identity that can be
used to speed up the upcoming authentications. You can specify how many times a single reauthentication mechanism can
be used until full authentication must be performed. If the reauthentications mechanisms are used too many times, security
may be compromised because the SIM card is not used in reauthentication.