Dell Wyse ThinLinux 1.0.3 Administrator’s Guide

The following steps are involved with 802-1x authentication:

• When the thin client restarts, it remains in the Guest VLAN and downloads the INI configuration from the INI server.

• The INI file must have the configurations for 802-1x EAP-TLS with AuthMode set for Machine Authentication and SCEP.

• After the INI is downloaded to the thin client, SCEP client enrolls the client certificate with Machine hostname and Domain configured in the INI.

• 802-1x EAP-TLS machine authentication will then begin and the thin client will move to an Authorized VLAN

  • NOTE:

    You can view the network progress icon on the taskbar.

• If 802-1x authentication fails due to any wrong 802-1x configuration, the thin client will automatically fall back to the Guest VLAN, with a notification message Failed to connect to trusted network. Please contact your system administrator , in the right pane of the GNOME panel. The user receives the same notification in the case of an expired CA certificate.

• When a user restarts the device, the thin client will again move to the Guest VLAN by sending an EAPOL logoff to switch and disable the 802-1x configuration at the Network Connections applet.

Enable802=yes Authentication=TLS PromptPassword=no CACertificate=scep UserCertificate=scep PrivateKey=scep PrivateKeyPassword=ZG90MXg=
                                    AuthMode=Machine