Jump to content - Jump to section navigation
You will need a wireless card that supports WPA2 enterprise. This compatibility tool lists a great deal of compatible wireless cards, but is not a definitive listing. You can get more information by contacting your computer's manufacturer.
Ensure that you have the latest drivers from your wireless card vendor. You may need to visit their website or call them to determine this information. If you do not have the most recent drivers, you will need to install them.
Check that you are running Windows XP Service Pack 2:
You will also need the WPA2 hotfix from Microsoft (KB893357). You can download and install the WPA2 hotfix here. Please note that this page will require you to go through the Microsoft Genuine Advantage process before being able to download the hotfix. For more information about Genuine Advantage, see the LTS page on Genuine Advantage.
After installing the WPA2 hotfix, double click on the wireless icon in your system tray (next to the clock on the lower right side of the screen)
If everything has installed correctly, you should now see brandeis_unet_secure as one of the wireless networks available:
Click "change the order of preferred networks" (on the left side of the wireless network connection window. Click the add button in the preferred networks section.
Enter brandeis_unet_secure in the Network Name (SSID) box (case matters!). Choose WPA2 from the Network Authentication drop down list. Note that if you don't see WPA2 as an option, either your wireless card does not support WPA2 or you do not have the most up-to-date driver installed. Leave data encryption set to AES.
Select the authentication tab and choose Protected EAP (PEAP) from the EAP Type drop down box, then hit OK.
In the preferred networks window, you may want to move brandeis_unet_secure to the top of your preferred networks list, so that you will connect to it automatically rather than another network.
Windows XP will now attempt to authenticate and will ask you to accept the certificate for radius1.brandeis.edu or radius.brandeis.edu. Click OK if and only if there are no errors reported.
If you do not get the certificate acceptance box:
If you know that you are part of the users domain, you may skip this step. Otherwise, you will be prompted to enter a username and password. Use your UNet ID and password, and enter USERS for the domain.
If you are having problems with your username and password, you may need to resync your UNet password with your domain password. You can do this here.
You will now need to go through the standard UNet registration pages to register your wireless card on the network. Open a web browser and point it to any page. You will be asked to register your computer on the network. Follow the instructions, and restart your computer.
You must be running an up-to-date OSX 10.3.9, with an airport extreme card. To check these features:
Click on the wireless icon in the menu bar. Choose brandeis_unet_secure after ensuring that your airport is turned on.
You will be asked for your username and password - use your UNet ID and password. You may wish to save these to your keychain.
A box will pop up asking you to accept a certificate. You may wish to add this to your trusted certificates list:
You will now need to go through the standard UNet registration pages to register your wireless card on the network. Open a web browser and point it to any page. You will be asked to register your computer on the network. Follow the instructions, and restart your computer.
To connect, click on the wireless icon in the menu bar, and select brandeis_unet_secure.
Just as in Windows XP, you will need a wireless card that supports WPA2 enterprise. This compatibility tool lists a great deal of compatible wireless cards, but is not a definitive listing. You can get more information by contacting your computer's manufacturer.
Click on the wireless network icon in your system tray. Mousing over it will display your current connection status and the message "Wireless networks are available" if there are any wireless networks within your range.
Click on "Connect to a network"
From the "Connect to a network" screen, click and highlight brandeis_unet_secure. Then click "Connect."
Another "Connect to a network" window will now open, informing you that the network you're trying to connect to requires additional information. You will be given the option to either enter this information or connect to a different network. Click on "Enter/select additional log on information"
At this point you will be prompted for your UNet credentials. Enter your UNet ID and password and USERS for the logon domain and click OK
\
You will again be prompted with a screen identical to the one in Step 5 that there is additional information needed to log on to the network. Click "Enter/select additional log on information." This will display the Validate Server Certificate window, as shown below. Click OK to accept the certificate.
Windows Vista will now display confirmation that you are connected to brandeis_unet_secure. You will now need to go through the standard UNet registration pages to register your wireless card on the network. Open a web browser and point it to any page. You will be asked to register your computer on the network. Follow the instructions, and restart your computer.
LTS does not officially support Linux, but you may find the following information helpful in setting up your Linux computer to use the Brandeis WPA2 network. If you continue to have trouble, try asking for help on the myBrandeis Tech Support bulletin board.
First make sure that your wireless card is working on the insecure network. If it doesn't, it won't work with WPA2 either.
You will need a program called wpa_supplicant. Most Linux distributions have a package for this program, including Ubuntu, Gentoo, Debian and Fedora. Here is a sample config file that should work with the Brandeis network. You may need to modify the "ca_cert" line to match where your distribution keeps its root CA certificate bundle, and/or the "ctrl_interface" line to match where your distribution keeps program state information.
Please do not save your UNet username and password in your wpa_supplicant config file! Instead, use the wpa_gui program to prompt you for the password each time you bring up the interface.
