Set Up IEEE802.1X / EAP (WPA / WPA2 / WPA3 Enterprise) - GX4020
Article ID: ART181032
|
Date published: 12/01/2022
|
Date last updated: 02/24/2023
Description
This article provides information on setting up IEEE802.1X / EAP on the MAXIFY GX4020.
Solution
If you are using a switch / access point (authenticator) with IEEE802.1X / EAP, you can connect this printer to a wired LAN or Wi-Fi.
Prepare the equipment.
IEEE802.1X / EAP compliant switch / access point (Authenticator)
Authentication (Radius) server
Configure settings for the authentication (Radius) server and authenticator.
Set up the authentication (Radius) server and authenticator in advance.
For
the settings of the authentication (Radius) server and IEEE802.1X / EAP switch / access point (Authenticator), refer to the respective instruction manuals.
When
setting using the wired LAN or infrastructure (wireless connection), configure the network settings so that you can temporarily connect to the network in the respective mode.
There
bis IEEE802.1X / EAP settings in the security item of the Remote UI menu.
In the Remote UI, select Security > IEEE802.1X / EAP settings.
Select Authentication.
Login name (up to 96 characters)
The login name to connect to the authentication server.
If
you select Verify Authentication Server Name, you must set the authentication server name.
If
you select Verify authentication server certificates, you must register the certificate authority (CA) certificate in advance.
Select Authentication.
Select PEAP, EAP-TTLS or EAP-TLS.
Set Authentication.
Set the data required for PEAP, EAP-TTLS, or EAP-TLS authentication.
You must have a certificate authority (CA) certificate registered to verify certificates sent from the authentication server (server certificates).
PEAP:
Set the user name and password that will be used for client authentication.
Normally, select Verify authentication server certificates.
EAP-TLS:
You must have a client authentication certificate registered.
Normally, select Verify authentication server certificates.
EAP-TTLS:
Select MSCHAPv2 or PAP as the authentication protocol.
Set the user name and password that will be used for client authentication.
Save your settings.
Select OK to save the IEEE802.1X / EAP settings.
Register the certificate authority (CA) certificate.
Select CA certificate > Upload CA certificate and upload (register) the CA certificate (X.509 DER format).
A maximum of five certificates can be registered.
Register the key and certificate.
When EAP-TLS is selected:
Select Key and certificate settings > Upload key and certificate and upload (register) the client
certificate (X.509 DER format).
If
you choose PEAP or EAP-TTLS, you do not need to do this.
Select OK and save the settings to enable IEEE802.1X / EAP.
You
can enable or disable IEEE802.1X / EAP on the operation panel.
Note that the advanced IEEE802.1X / EAP settings are not available on the operation panel.
Connect to IEEE802.1X / EAP switch (Authenticator) or IEEE802.1X / EAP access point.
When IEEE802.1X / EAP is enabled, it is possible to search for SSIDs of IEEE802.1X / EAP access points in Manual setup on
the operation panel.
Select the SSID of the IEEE802.1X / EAP access point to connect.
For a wired LAN, connect the LAN cable to the IEEE802.1X / EAP switch.
If you are unable to connect to the IEEE802.1X / EAP switch (Authenticator) or access point, please redo the settings from step 3 in Setup Flow.
Wireless Direct is disabled when you connect to an IEEE802.1X / EAP
access point.When using the Remote UI, enable Wireless Direct from the operation panel settings and connect again using Wireless Direct.
Select (Setup)
on HOME screen and select Printer settings > LAN settings > Wi-Fi > Manual
setup > IEEE802.1X / EAP settings > Last authentication result to help troubleshoot.
If User management settings is enabled, the user selection screen is displayed before the HOME screen is displayed.
Check that the wireless router is turned on is displayed when the switch / access point may not be turned on.
If the error cannot be identified, such as multiple problems occurring, An unexpected error has occurred. is displayed.
If a connection processing problem or encryption-authentication mismatch is detected, Failed to connect to the wireless router <See manual> is displayed.
If you see a message other than the above, follow the instructions.
If your product issue was not resolved after following the steps above, or if you require additional help, please create or log in to your Canon Account to see your technical support options.
Or if you still need help, visit our Canon Community by clicking the button below to get answers: