Configuring VPN to use EAP

Infineon Security Platform

Infineon Security Platform Solution

Configuring a VPN to use EAP

The certificate authentication method is used by Infineon Security Platform Solution, which provides the authentication of the client. Before proceeding with the configuration the client must have a certificate approved by a Certificate Authority. Both the client and the server must have a same Certificate Authority or a Certificate Authority in trusted hierarchy. The client must also have a Trusted Platform Module.

information While requesting a certificate you must choose one of the Cryptographic Service Providers delivered with the Security Platform Solution. The certificate's intended purpose must be Client Authentication. In large enterprises the administrator might have already set up certificates for that purpose.

To learn more about VPN refer to the Microsoft TechNet or the Microsoft VPN Help pages. To obtain the required information in Microsoft Help, minimize all currently open windows to view the Windows Desktop. Then press F1 and search for the appropriate keyword.

The Virtual Private Network uses internet or intranet to function. Before making the VPN connection the user should have an internet or intranet facility to connect to the VPN server.

In order to use EAP the client should make a connection initially. You can use your operating system's Network Connections to set up VPN connections. In case you need detailed help regarding the required steps for your operating system, refer to the Microsoft Windows Help or the Microsoft TechNet.

After you have made the connection this has to be configured to use EAP. To do this, follow these steps:

  • Right-click the new VPN connection and view its properties.

  • Configure the authentication settings on the security tab to use Extensible Authentication Protocol (EAP) with the option to use a SmartCard or other certificate.

  • Configure the EAP properties to use a certificate on your computer.

information If you have more than one certificate for client authentication and encryption, then make sure the correct certificate is used for the VPN connection. When starting the VPN connection, select a certificate associated with one of the Cryptographic Service Providers delivered with the Security Platform Solution.

The user must be logged on to the computer to use EAP with a user certificate.

footer line icon©Infineon Technologies AG