Configuring your Windows XP computer for UI Wireless - Windows Wireless Client

Note: UI-Wireless-WEP will be turned off June 30th of 2008. If your computer supports WPA2 configurations we encourage you to use UI-Wireless-WPA2 as that network is more secure and will be the primary wireless network supported by ITS. Instructions for UI-Wireless-WPA2 can be found here.

These instructions are for your assistance only. We do not support the Windows Wireless Client any further than the instructions below.

IMPORTANT: Using the Windows Wireless Client stores your user credentials (Hawk ID and password) in the system registry. When your Hawk ID password changes, a change to the registry will be required to access the UI Wireless network.

  1. Open up the Wireless Network Connections.
    -Select UI-Wireless-WEP (must be within range of a UI Wireless hot spot).
    -Click Change advanced settings under related tasks.

    Wireless Network Connection

  2. The wireless Network Connection Properties window will appear. Deselect any AEGIS Protocols that appear in the This connection uses the following items: section.

    Properties

  3. Select the Wireless Networks tab. Highlight UI-Wireless-WEP in the Preferred networks list and select the Properties button. If UI-Wireless-WEP does not appear in the Preferred networks list, click the Add button.

    Wireless Networks tab

  4. In the Wireless network properties window, on the Association tab:
    -Make sure the Network name (SSID) is UI-Wireless-WEP.
    -Make sure that Network Authentication is Open.
    -Make sure Data encryption is set to WEP.
    -Check the box next to The key is provided for me automatically.

    Association tab

  5. Select the Authentication tab.
    - Make sure the Enable IEEE 802.1x authentication for this network box is checked.
    - Select Protected EAP (PEAP) in the EAP type drop-down box.
    - Click the Properties button.

    .Authentication tab

  6. On the Protected EAP Properties window:
    - Check the boxes next to Validate server certificate and Connect to these servers.
    - Enter net-auth-1.its.uiowa.edu in the Connect to these servers field.
    - Select Thawte Premium Server CA from the Trusted Root Certificate Authorities list.
    - Make sure that Secured password (EAP-MSCHAP v2) is selected in the Select Authentication Method list.
    - Click the Configure button.

    Protected EAP Properties

  7. In the EAP MSCHAP v2 Properties window, remove the check from the Automatically use my... box.

    Properties window

  8. Click OK until you are back to the Wireless Network Connection window. The button in the bottom right hand corner of the window will either say Disconnect or Connect. If it says Disconnect, you are already connected to the network. If it says Connect, click the button to connect to the network.

  9. A notification will appear in the bottom right hand corner of your screen informing you that you need to select a certificate or input credentials. Click within the notification.

    Notification

  10. Enter your User name (Hawk ID) and Password. You do not need to fill in the Logon domain.

    Credentials window

  11. Many computers contain an expired version of the Thawte Premium Server CA certificate that will cause you to lose your connection to the UI Wireless network, due to a conflict. Remove the expired certificate to avoid this conflict. The ITS Help Desk has provided a program to automatically remove the expired certificates for you.
    - Click on the icon below to download the certificate removal program.
    - Save the file to your desktop.
    - Double-click the remcert.exe file on your desktop to run the expired certificate removal program.

    Remove Certificate icon

    See the Certificate Removal instructions for more information or if you need instructions for removing the certificate manually.


IMPORTANT: Microsoft saves your user credentials (Hawk ID and password) in the system registry. When your Hawk ID password changes, you will have to remove the registry file that contains your password.

Change the Registry Key that Contains Your Old Password

Before editing your registry you should always back it up. This article from Microsoft provides instructions to backup the registry: http://support.microsoft.com/kb/322756/. This article provides additional information about the registry http://www.microsoft.com/windowsxp/using/setup/expert/honeycutt_03march17.mspx.

The ITS Help Desk has provided a file to make the registry change simple.

  1. After backing up your registry, click on the clear_EAPOL.reg file below and save it to your desktop.
  2. The file will download in a compressed folder. Open the folder and double click the clear_EAPOL.reg file on your desktop to launch it. (Note: If you receive an "Unknown Publisher" security message, click Run to proceed.) A message will ask if you want to add the information to your registry. Even though the question indicates that you are adding information, the program is set up to remove the registry key. Click Yes.

    Add info note

  3. The next message indicates that your registry has been successfully edited. Click OK.

The next time you use the Microsoft Wireless Client to connect to the UI-Wireless-WPA2 network, you will be prompted for your user name and password. Enter your Hawk ID and password to connect to the University's wireless network.

Contact the ITS Help Desk if you have questions.

Return to Wireless Support Center

Last Updated: 08/07/2008

Copyright © 2008, The University of Iowa, all rights reserved.