Configuring Windows XP to Use Encrypted (WPA-E) Wireless Services at UCSD
Last updated
November 10, 2009 1:44:34 PM PST
Learn how to download the security certificate, and then configure your Windows XP machine to use Wi-Fi Protected Access-Enterprise (WPA-E) at UCSD.
Note:
- You must have Administrator privileges on your PC to successfully complete these steps.
- If you're using the wireless card manufacturer's software program to control your wireless, see alternate instructions.
- If your machine is normally connected to the Active Directory, skip to step 5.
Expand all
- Connect to the old "UCSD" wireless network, UCSD-GUEST, or a wired connection.
- Right click here to download the UCSD root certificate.
- When you are asked by your browser to save the file, select the save to disk or save file option. The certificate will download to your default location (usually your desktop).
- Double-click the UCSDCA-ROOT certificate file icon on your desktop (or default save directory) to install the certificate. Certificate will open. Click Install Certificate.
- Certificate Import Wizard will open automatically. Click Next.
- Select Automatically select the certificate store based on the type of certificate.
- Click Next.
- Click Finish, OK, OK to complete installation. If asked whether you wish to install the certificate, click Yes.
- Right-click the wireless network icon next to your clock and choose View available wireless networks. (The Windows Network Connection Status window will open.)
- Click View Wireless Networks. Look for "UCSD-PROTECTED," but do not select it yet.
- If you see this option, you can use encrypted wireless in this area.
- In View Wireless Networks, click the UCSD (not encrypted) entry, and disconnect from this network.
- In the left column under Related tasks, click Change the order of preferred networks. The Wireless Network Connection Properties window will open to the Wireless Networks tab.
- Click Add located under Preferred networks.
- The Wireless network properties window opens to the Association tab.
- In the network name field (SSID), enter UCSD-PROTECTED.
- Set the Network Authentication to WPA2. If WPA2 is not available on your computer, select WPA.
- Set the Data Encryption to AES. If AES is not available on your computer, select TKIP.
- Click the Authentication tab.
- Select the EAP Type drop-down menu and select Protected EAP (PEAP).
- Uncheck Authenticate as computer when computer information is available. (Note: The Enable IEEE 802.1x authentication for this network checkbox should be selected and grayed out.)
- Click Properties.
- Check Validate server certificate.
- Under the list of Trusted Root Certification Authorities, locate and check UC San Diego Certificate Service.
- Select Authentication Method should be set to Secured password (EAP-MSCHAP-v2).
- Check Enable Fast Reconnect.
- Do not click OK without following directions in Step 10 below.
- When you are within range of a wireless network access point, a message balloon will appear next to your clock asking you to provide additional information to authenticate to the network. Click inside the balloon and supply your Active Directory username and password (no domain is needed).
- Note: If you see a Validate Server Certificate window, click OK.
- It may be necessary to turn your wireless off and back on again in order to detect UCSD-PROTECTED.
- If you continue to have problems, make sure you have installed all available patches for your wireless card (check the manufacturer's web site).
Expand all
