Connection Guide for Microsoft
Connection Guide for
Microsoft
1
Getting Started
The Janet Roaming Service (JRS) at University College London is advertised via the
eduroam wireless network and secured using IEEE 802.1x/ EAP-PEAP authentication.
2
SSID
Encryption Cipher
Authentication Method
eduroam
WPA2 Enterprise/ AES
IEEE 802.1x
Authentication Protocol
EAP-PEAP (Extensible Authentication Protocol –
Protected EAP)
Requirements
The following is required to connect to the eduroam service at UCL.
3

A UCL User ID and password.

A
certified Wireless Network Connection adapter. The Wi-Fi Alliance can be used
to check to see if your product is certified.
Configuring eduroam
By default Windows 7 has a built-in wireless configuration service (WLAN AutoConfig), this
guide is written specifically for this service. To check if this service is enabled, follow the
instructions below:
Start > Control Panel > Network and Sharing Centre (icon) > Manage
Wireless Networks (under tasks on the left pane). If a list of Wireless Networks is
displayed (including eduroam) the WLAN AutoConfig service is enabled.
If the WLAN AutoConfig service is enabled you need to refer to the Configuring eduroam
with WLAN AutoConfig section.
If the Wi-Fi connection is managed by other software you need to identify which client is
managing the wireless. This can typically be done by identifying the applications running in
the taskbar. Once identified you need to refer to the manufacturer for information on 802.1X
EAP PEAP support and configuration instructions. In this instance, the remainder of this
document should be used for reference only!
1. Open the properties window of your Wireless Adapter. Select (Windows) Start >
Control Panel > Network and Internet (icon) > Network and Sharing
Centre (icon) > Manage Wireless Networks (under tasks on the left pane).
2. If the eduroam Network is displayed in the list of available Networks, highlight and
select the - Remove button.
3. Select the + Add and Manually create a network profile.
Page 1 of 6
The manually connect to a wireless network configuration Window is displayed.
Network name (SSID)
Security Type
Encryption Type
Security Key Passphase
Start this connection automatically
Connect even if the network is not broadcasting
eduroam
WPA2-Enterprise
AES
Field disabled
Enabled
Disabled
Click Next to add the eduroam Network.
Select the Change connection settings option. This displays the properties window
for the eduroam Wireless Network
eduroam – Microsoft Windows 7 User Guide
Page 2 of 6
Select the Security tab. From the Choose a network authentication method: select the
entry Microsoft: Protected EAP (PEAP). Select the Settings button. A User
Account Control window may be displayed. Select Allow to proceed.
Configure PEAP
… the PEAP Properties window is displayed.
eduroam – Microsoft Windows 7 User Guide
Page 3 of 6
Set the options as follows:
Validate server
certificate
Connect to these
servers:
Trusted Root
Certification
Authorities
Do not prompt user
to authorize new
servers or trusted
certification
authorities.
Select
Authentication
Method:
Select the
Configure…
button
IMPORTANT
Enable Fast
Reconnect
Enforce Network
Access Protection
Disconnect if the
server does not
present
cryptobinding TLV
Enable Identity
Privacy
Ticked 
Ticked 
orps.jrs.ucl.ac.uk
 QuoVadis Root CA 2
Un-ticked
Secured password (EAP-MSCHAP
v2)
Un-tick Automatically use my
Windows logon name and
password (and domain if any)
Ticked 
Un-ticked
Un-ticked
Un-ticked
Repeatedly click the OK button to complete the configuration…
Connect to eduroam
When within wireless range of the eduroam service, a Windows Security box will appear
asking for Network Authentication. Click on this bubble to display the authentication
window. If this doesn’t happen, when in range of the eduroam service, click on the wireless
icon in the Windows task bar and select eduroam from the list of networks. Then click the
connect button.
eduroam – Microsoft Windows 7 User Guide
Page 4 of 6
Set User name to your UCL userid and password.
Your UCL userid must be appended with
@ucl.ac.uk.
e.g. [email protected]
Set Password to your UCL password.
Click OK. You will now be connected to the
eduroam service, from where you can access UCL
Network Resources (e.g. Email) and the Internet.
You will not be prompted for your UCL userid and
password again unless you change your password
(or as informed by UCL ISD Service Desk.
4
802.1X Cached Credentials Workaround
An automatic update to Windows 7 introduced an advanced setting. As a result of the
update you may be constantly prompted for your credentials (i.e. ULC userid & password)
when attempting to join eduroam.
The following is a known workaround to this issue. Please note; we are currently unaware
of when the automatic update was introduced and the behaviour of the update when your
UCL password is changed. If you encounter problems when changing your password,
please check for an update to this documentation.
Open the Network and Sharing Center.
Click on Manage Wireless Networks from the
left-hand pane.
A list of configured wireless Networks will be
displayed. Highlight eduroam and right-click. Select
Properties from the context menu.
Select the Security tab. A window similar to the
illustrated is displayed.
Select the Advanced settings button.
eduroam – Microsoft Windows 7 User Guide
Page 5 of 6
Ensure the Specify
option is ticked.
authentication
From
the
drop-down
select
authentication.
Next
select
the
credentials button.
mode
User
Save
Set User name to your UCL userid and password.
Your UCL userid must be appended with
@ucl.ac.uk.
e.g. [email protected]
Set Password to your UCL password.
Click OK to all windows to save the settings.
eduroam – Microsoft Windows 7 User Guide
Page 6 of 6
Was this manual useful for you? yes no
Thank you for your participation!

* Your assessment is very important for improving the work of artificial intelligence, which forms the content of this project

Download PDF

advertisement