| What to do |
How to do it |
| 1 |
Download the certificate.
|
- Connect to UCSD's unencrypted wireless network or a wired connection.
- Right click here to download the UCSD root certificate.
- Click Save to Disk and then OK to complete installation.
|
| 2 |
Install the certificate.
|
- Double-click the UCSDCA-ROOT certificate file icon on your desktop (or default save directory) to install the certificate.
- When the Certificate window opens, click Install Certificate.
- Certificate Import Wizard will open. Click Next.
|
| 3 |
Specify a location for the certificate.
|
- Select Place all certificates in the following store.
- Click Browse.
|
| 4 |
Select the certificate store. |
- Select Trusted Root Certification Authorities.
- Click OK.
|
| 5 |
Place the certificate in the store. |
- Click Next to continue.
|
| 6 |
Complete installation.
|
- Click Finish, OK, OK to complete installation. If asked whether you wish to install the certificate, click Yes.
|
| 7 |
Create a network profile for the encrypted wireless service. |
- From the Start menu, open the Control Panel, select Classic View and double-click Network and Sharing Center.
- Select Manage Wireless Networks in the left menu.
- Click Add and select Manually create a network profile.
- Enter UCSD-PROTECTED for the Network name.
- Select WPA2-ENTERPRISE for the Security type. If WPA2-ENTERPRISE is not available on your computer, select WPA-ENTERPRISE.
- Select AES for Encryption type. If AES is not available on your computer, select TKIP.
- Leave the Security Key/Passphrase field blank.
- If you want your computer to automatically select UCSD encrypted networking whenever it is available, check Start this connection automatically (recommended).
- Check Connect even if the network is not broadcasting.
- Click Next.
- When the Manually connect to a wireless network window opens, you've successfully added UCSD-PROTECTED.
|
| 8 |
Configure your PC to use the encrypted wireless. |
- Select Change connection settings.
- Select the Security tab.
- Select Protected EAP (PEAP) for the Authentication method.
- To prevent having to re-enter your password in future, check Cache user information for subsequent connections to this network.
|
| 9 |
Continue to configure your PC. |
- Click Settings to open the Protected EAP Properties window.
- Check Validate server certificate.
- Under the list of Trusted Root Certification Authorities, locate and check UC San Diego Certificate Service.
- Select Authentication Method should be set to Secured password (EAP-MSCHAP v2).
- Check Enable Fast Reconnect.
- Click Configure.
- Do not click OK without following the directions for Step 10 below.
|
| 10 |
Complete the configuration of your PC. |
- Uncheck Automatically use my Windows logon name and password (and domain if any) and click OK.
- Click OK on all remaining windows and Close to finish the Connection Setup Wizard.
|
| 11 |
Connect to the protected wireless network. |
- When you are within range of a wireless network access point, a message balloon will appear next to your clock asking you to provide additional information to authenticate to the network. Click inside the balloon and supply your Active Directory username and password (no domain is needed).
Note: If you see a Validate Server Certificate window, click OK.
|
