Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.
Sign In Create an Account Dell Financial Services Premier Sign In Partner Program Sign In
Contact Us

Your Dell.com Carts

Dell Hybrid Client version 2403 Administrator's Guide

PDF

Configure the EAP-PEAP MSCHAPv2 machine mode authentication

Prerequisites

  • If you are using a SCEP certificate, ensure that you have enabled SCEP using Wyse Management Suite and the SCEP certificate is already enrolled. See, Configure SCEP.
  • If you are using a CA certificate, ensure that the CA certificate is available for authentication.

Steps

  1. Log in to Wyse Management Suite.
  2. Go to the Groups & Configs page, and select your preferred device policy group.
  3. Click Edit Policies > Dell Hybrid Client 2.x.
    The Configuration Control | Dell Hybrid Client 2.x page is displayed.
  4. Click the Advanced tab.
  5. Expand Network Configuration, and click 802-1x Authentication.
  6. Click the Enable 802-1x toggle key to enable the 802-1x authentication for wired connection on the Ethernet 0 port.
  7. From the Authentication Type drop-down list, select Protected EAP (PEAP).
  8. From the Authentication Mode drop-down list, select Machine.
    NOTE:Guest user along with Domain and Local user are supported for PEAP machine mode authentication.
  9. From the PEAP Version drop-down list, select the PEAP version for authentication—Automatic, Version 0, or Version 1.
  10. To use a SCEP certificate, enable the Use SCEP certificate toggle key and enter the SCEP certificate name. By default Use scep certificate is enabled.
  11. To use a CA certificate, enable the CA Certificate Required toggle key and enter the CA certificate name.
    If the CA certificate is added from the Privacy & Security > Certificate section, disable Use SCEP Certificate toggle key and enable CA Certificate required. Enter that particular CA certificate name.
  12. From the Inner Authentication drop-down list, select MSCHAPv2.
  13. Enter the machine password. This password is used to authenticate the device.
    Administrator has to set password for targeted computer objects registered in domain and the same password is recommended for single group.
    NOTE:If the device is not joined in domain, Administrator has to create computer object manually using the computer name of the machine.
  14. Click Save & Publish.

Next steps

Log in to the Dell Hybrid Client-powered device as a domain user or local user. The 802.1x launcher is triggered and the 802-1 authentication automatically starts.

If log in is successful, the device gets the IP address from the protected LAN. If log in is unsuccessful, the 802.1x authentication fails and the device remains in the guest LAN.

When you log out or restart, the device will move to guest LAN by sending an EAPOL logoff to switch and disable the 802.1x configuration.

Rate this content

Accurate
Useful
Easy to understand
Was this article helpful?
0/3000 characters
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please select whether the article was helpful or not.
  Comments cannot contain these special characters: <>()\