Windows XP 802.1x

From ITwiki

Revision as of 17:39, 21 February 2014 by Rbenson (Talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Contents

Setting up 802.1x Wired

Notice: Windows XP Service Pack 3 includes important changes to 802.1x configuration. Please Read Windows XP Service Pack 3.

  1. Open up Start -> Settings -> Control Panel -> Network Connections
  2. Right click on your Local Area Connection and select Properties. Follow the Wireless section from Step 4 - Set up Authentication Settings onwards.

If your start menu is not in the classic view, go to "Control Panel" Directly and follow the directions above.

Setting up 802.1x Wireless

Step 1 - Find Network Device

To set up 802.1x with PEAP, double-click My Computer, then right-click My Network Places. Select Properties from the drop down menu that appears. This will bring you to a screen showing you what network connections are currently available on your system.

Step 2 - Open Properties

Select and right click the Wireless connection. Select Properties from the drop down menu that appears. This will bring up another window. From this window, select the Wireless Networks tab. This will bring you to the screen below.

  • Note: If there is no Wireless Networks tab, you need to do a "software uninstall" of your network card, then let Windows redetect the card. See NOTE at beginning of this document.

Step 3 - Add a Network

Click Add which will bring up the Wireless network properties dialog. Enter the appropriate Network name (SSID) in the field, depending on your role at Stevens. The currently available network names are as follows:

  • If you are a Stevens Student then enter/locate the wireless network named Stevens Student.
  • Faculty, and Staff should enter/locate the wireless network named Stevens.

From the Network Authentication select WPA2. Then proceed to select AES from the Data encryption drop down.

Note: If WPA2 is not available to select, this could mean one of the following:
  • Your network card does not support the protocols needed to use 802.1x, or you need updated drivers. Please visit the manufacturer of your network card (or of your laptop) and obtain the newest drivers for your network card. If WPA2 still does not appear after a reboot, you will not be able to use 802.1x with this card.
  • You do not have Windows XP SP 3 installed. It is the latest Service Pack and is required for accessing the wireless network.

Step 4 - Set up Authentication Settings

Next, click on the Authentication tab and match the settings below. Make sure to select Protected EAP from the drop down menu and uncheck the boxes at the bottom of the dialog box.

Step 5 - Disable Fast Reconnect

Next click on the Properties tab. Make sure Enable Fast Reconnect is unchecked. (NOTE: During Step 9, you will be prompted about and should accept the "Secure Server Certification Authority".)

Step 6 - Disable Auto-Login Name

Click Configure and uncheck the box in the popup window, as shown below.

Step 7 - Close Properties

Click on OK to all the windows, and then you should see the wireless profile as shown below.

Step 8 - Enter Username and Password

A popup will come up on the task bar. Click it. Enter your credentials. Put your Stevens Username as your username and your Stevens Password as your password. For the logon domain, type CAMPUS. Then click OK.

Popup on Task Bar

Credentials Window

Step 9 - Accept Certificate

Another popup may come up informing you that Windows is ready to process your logon credentials, as shown below. Click it and a certificate validation window will come up (also shown below). Click OK.

Popup After Entering Credentials

Validate Certificate

After the authentication process is done, your wireless connections should show the network name you just configured. It should look like the illustration below.

Step 10 - Prevent Automatic Connection to Stevens Guest

By default, Windows XP will attempt to connect to wireless networks that it hears being broadcast, but that you might not neccessarily want to connect to at that time, or ever. You may notice that when connected to Stevens or Stevens Student networks, your Windows machine makes the decision to switch networks and connect to Stevens Guest. If you want to prevent Windows from automatically connecting to Stevens Guest you can follow these directions. Note that you still will be able to connect to Stevens Guest in the future, you will just have to manually initiate the connection by choosing to connect to that network.

Open up wireless network connection properties

Open up the wireless network connection properties windows. You can follow steps 1 and 2 of this document for directions.

Open Properties of Stevens Guest

Select 'Stevens Guest' from the list of networks and click the 'Properties' button.

Disable automatic connection

Select the connection tab and UNCHECK the box that says 'Connect when this network is in range'

Click the 'OK' button to save changes.

Removing Cached Credentials

Windows XP's Wireless Zero Configuration automatically stores in the registry the username and password entered when connecting to a wireless network. If a machine is being used by multiple people, it is recommended that the user delete their credentials from the computer when they are done using it. To remove cached credentials follow this link Removing Cached 802.1x Credentials

Personal tools