Windows Vista and WPA2 Wireless

Show all images | Hide all images

Requirements

In order to connect to the UIwpa2 wireless network with a Windows Vista computer, your system must:

• Have a WPA2-compatible wireless card

If your system doesn't meet the requirements for WPA2, you can continue to use UIUCnet Wireless instead.

Initial configuration

1. In the Start menu, click Connect To. The Connect to a network window appears.

Connect to a network window

2. Select the Set up a connection or network link to the lower left.

3. The window will present you with several choices. Select Manually connect to a wireless network and click Next.

Choosing a connection option

4. Enter the following configuration information:

• Network name: UIwpa2
• Security type: WPA2-Enterprise
• Encryption type: AES
• Check "Start this connection automatically"
• Don't check "Connect even if the network is not broadcasting"

Click Next.

Manually connect to a wireless network window

5. When you're informed that you've successfully added a connection profile for UIwpa2, select Change connection settings to add further configuration details.

Change connection settings window

6. The UIwpa2 Wireless Network Properties window will open. Select the Security tab.

7. Enter the following settings:

• Choose a network authentication method: Protected EAP (PEAP)
• Uncheck Cache user information for subsequent connections to the network

The UIwpa2 Wireless Network Properties window

8. Click the Settings button next to the Choose a network authentication method list.

9. In the Protected EAP Properties window, enter the following information:

• Check "Validate server certificate"
• Check "Connect to these servers"
• In the servers text box, enter the following (without spaces): neauth1.cites.uiuc.edu;neauth2.cites.uiuc.edu
• Trusted Root Certification Authorities: Check "Thawte Premium Server CA"
• Check "Do not prompt user to authorize new servers or trusted certificate authorities"
• Authentication method: Secured password (EAP-MSCHAPv2)
• Check "Enable fast reconnect"
• Don't check "Enable quarantine checks"
• Don't check "Disconnect if server does not present cryptobinding TLV"

The Protected EAP Properties window

10. Click the Configure button by the Select Authentication Method list.

11. In the EAP MSCHAPv2 Properties window that appears, the "Automatically use my Windows logon name and password (and domain if any)" item should not be checked.

EAP MSCHAPv2 Properties window

• Note for campus Active Directory users: If you always log on to the UIUC Active Directory domain rather than to your computer as a local system, you could change this configuration step to use your campus AD information for UIwpa2. See Active Directory and the UIwpa2 Network for more information.

Getting connected

When you click OK or Close to complete the various open windows, a prompt bubble will appear over your wireless adapter icon in the task bar indicating that more information is needed.

Additional information is required prompt bubble

1. Click the bubble to open the Enter Credentials window.

2. Enter the following information:

• User name: Your NetID
• Password: Your Active Directory password

(Not sure what your Active Directory password is? Try your Express Email or NetFiles password, or reset your AD password at the Password Home Page.)

• Logon domain: (Leave this line blank)

Enter credentials window

3. Click OK in order to connect and authenticate yourself to the UIwpa2 network.

(Note: You'll only need to enter this information once.)

Trouble connecting?

If you have trouble getting connected to UIwpa2, or if your computer shows a connection but doesn't allow Internet access, remember: you can always use UIUCnet Wireless instead. Switch your selected network to UIUCnet and open a browser window to log in through QuickConnect, and you'll be ready to go.

Disconnecting when finished

When you're finished using the UIwpa2 wireless network:

1. Click the Connect To option in your Start Menu.

2. Select a different network from the list of available networks.