In order to use stored certificated you will need to enable the option at plugin level:
When using the stored
certificate option you can authenticate:
- the emulated host (per each
MAC address the Ixia port emulates)
- the user that is trying to
authenticate (also emulated per each MAC address)
- or both
These settings can be changed on
each 802.1x range, like in the picture below:
None is equivalent to User
only authentication
Host only authenticates the
host
Host user-both authenticates
both the host and the user
In stored certificate scenario, regardless of the authentication type, the root.pem certificate is needed on the local IxLoad client machine and as the test gets configured, it will be copied to the port.
Additionally, that means that
depending on the ‘Host authentication mode’ you need:
- 1 more certificate
for each user that you try to authenticate
- 1 more certificate
for each host that you try to authenticate
- 2 more certificates
for each host + user pair
Notes :
The Send CA certificate only checkbox makes IxLoad look only for the root.pem
certificate in the path you provide in Certificate location and copy it only (without any
additional user certificates) on the port.
The Obtain CA certificate only checkbox only has relevance and works when used with
Run-Time Certificate Generation
The Send CA certificate only checkbox makes IxLoad look only for the root.pem
certificate in the path you provide in Certificate location and copy it only (without any
additional user certificates) on the port.
The Obtain CA certificate only checkbox only has relevance and works when used with
Run-Time Certificate Generation
