To use the server, you will need a Wi-Fi access point with WPA Enterprise security support. Most access points manufactured today meet this requirement. It means that an access point supports WPA and can send authentication requests to a RADIUS server.
Client Wi-Fi hardware should support WPA, too.
Software support for WPA is built-in in Windows, Android and iOS. There are also commercial and open source desktop clients available.
Running EAP-TLS authentication on a client requires installing an X.509 client certificate. You may use certificates obtained from your own existing certificate authority (CA), purchase from a commercial CA or create them through your self-signed root certificate.
You must configure ClearBox Server with an X.509 server certificate in order to perform EAP-TLS or PEAP authentication. You may use a certificate obtained from your own existing certificate authority (CA), purchase from a commercial CA or create your own self-signed root certificate and the server certificate. In the latter case the root certificate should be spread among clients in order to include it in trusted CAs.