Related Links
 Wireless Overview
 For faculty and staff: Network Services
 For students: Networks
 Departments
 ACT

 Blink Home > Technology > Configuring Windows XP to Use Encrypted (WPA-E) Wireless Services at UCSD
Configuring Windows XP to Use Encrypted (WPA-E) Wireless Services at UCSD  
 
Summary: Learn how to download the security certificate, and then configure your Windows XP machine to use Wi-Fi Protected Access-Enterprise (WPA-E) at UCSD.

Note:

  • For more information, see Wireless Overview.
  • You must have Administrator privileges on your PC to successfully complete these steps.
  • If you're using a third-party software program to control your wireless, see alternate instructions.
  • If your machine is normally connected to the Active Directory, skip to step 5.
What to do How to do it
1 Download the certificate.
  1. Connect to UCSD's unencrypted wireless network or a wired connection.
  2. Right click here to download the UCSD root certificate.
  3. When you are asked by your browser to save the file, select the save to disk or save file option. The certificate will download to your default location (usually your desktop).
2 Install the certificate.
  1. Double-click the UCSDCA-ROOT certificate file icon on your desktop (or default save directory) to install the certificate. Certificate will open. Click Install Certificate.
  2. Certificate Import Wizard will open automatically. Click Next.

    Task screenshot
3 Select the certificate store.
  1. Select Automatically select the certificate store based on the type of certificate.
  2. Click Next.

    Task screenshot
4 Complete installation.
  1. Click Finish, OK, OK to complete installation. If asked whether you wish to install the certificate, click Yes.
5 Check for encrypted wireless service on campus.
  1. Right-click the wireless network icon next to your clock and choose View available wireless networks. (The Windows Network Connection Status window will open.)
  2. Click View Wireless Networks. Look for "UCSD-PROTECTED," but do not select it yet.
  3. If you see this option, you can use encrypted wireless in this area.

    Task screenshot
6 Configure your PC to use the encrypted wireless.
  1. In View Wireless Networks, click the UCSD (not encrypted) entry, and disconnect from this network.
  2. In the left column under Related tasks, click Change the order of preferred networks. The Wireless Network Connection Properties window will open to the Wireless Networks tab.
  3. Click Add located under Preferred networks.

    Task screenshot
7 Configure the Association tab.
  1. The Wireless network properties window opens to the Association tab.
  2. In the network name field (SSID), enter UCSD-PROTECTED.
  3. Set the Network Authentication to WPA2. If WPA2 is not available on your computer, select WPA.
  4. Set the Data Encryption to AES. If AES is not available on your computer, select TKIP.

    Task screenshot
8 Configure the Authentication tab.
  1. Click the Authentication tab.
  2. Select the EAP Type drop-down menu and select Protected EAP (PEAP).
  3. Uncheck Authenticate as computer when computer information is available. (Note: The Enable IEEE 802.1x authentication for this network checkbox should be selected and grayed out.)

    Task screenshot
9 Configure PEAP properties.
  1. Click Properties.
  2. Check Validate server certificate.
  3. Under the list of Trusted Root Certification Authorities, locate and check UC San Diego Certificate Service.
  4. Select Authentication Method should be set to Secured password (EAP-MSCHAP-v2).
  5. Check Enable Fast Reconnect.
  6. Do not click OK without following directions in Step 10 below.

    Task screenshot
10 Complete the configuration of your PC.
  1. Click Configure.
  2. Uncheck Automatically use my Windows logon name and password.
  3. Click OK.
  4. Click OK on all remaining windows.

    Note: If you see a Validate Server Certificate window, click OK.



    Task screenshot
11 Connect to the protected wireless network.
  1. When you are within range of a wireless network access point, a message balloon will appear next to your clock asking you to provide additional information to authenticate to the network. Click inside the balloon and supply your Active Directory username and password (no domain is needed).
  2. Note: If you see a Validate Server Certificate window, click OK.

    Task screenshot


Questions? Contact the ACT Help Desk, (858) 534-1853.


  Print
Print this page		   Email
Share this page		   Add to MyBlink
Save this link		   Get notified when this page is updated
Notify on change		   Add a sticky note to this page
Add a note		  
Get what you wanted?    yes   no   Comments.
Last reviewed/updated on Jan. 28, 2008 (see more info)
Blink A-Z Index:   0-9  A B C D E F G H  I  J K L M N O P Q R S T U V W X Y Z 


Blink Home  Site Map  Help  Accessibility Tips  Privacy Statement  Content Manager  RSS Feed 


Copyright ©2009 Regents of the University of California. All rights reserved.
Official Web Page of the University of California, San Diego

Blink version 1.7 12-17/2007 Blink Usability Group