Skip page navigation
The University of Edinburgh
Information Services Information Services logo

Configure Windows XP for secure wireless access

  • Double click on My Computer.
  • Go to My Network Places.
  • Select View Network Connections.
  • If your PC is wireless enabled it should show Wireless Network Connection.
  • Right click on the wireless icon and select View wireless networks. A box will then show which wireless networks are available.
  • Click Change the order of preferred networks.


Fig 1: Available Wireless Networks

  • In the "Preferred Networks" box, if the wireless network central-wpa already exists, select it and click Properties. If it does not appear click Add.


Fig 2: Wireless Network Connection Properties

  • Set Network name (SSID) to central-wpa.
  • Set Network Authentication to WPA2
    You may use WPA if WPA2 is not supported on your computer
    Do NOT use WPA-PSK.
  • Set Data encryption to AES
    You may use TKIP if AES is not supported on your computer
    If the combination of WPA+AES dies not work, try WPA+TKIP.
  • Do not click OK, but now select the Authentication tab.


Fig 3: SSID Winfow for Wireless network properties

  • Enable IEEE 802.1x authentication will be ticked but greyed out.
  • Select ProtectedEAP (PEAP) from the list of EAP types.
  • Deselect Authenticate as computer and Authenticate as guest.
  • Click Properties.


Fig 4: Authentication window for Wireless network properties

  • You should search the list of Trusted Root Certificate Authorities and select GTE CyberTrust Global Root which is about halfway down the list.
  • Select Secured password (EAP-MSCHAP v2) from the list of Authentication methods.
  • Deselect Enable Fast Reconnect.
  • Click Configure.


Fig 5: Protected EAP Properties window

  • Deselect Automatically use my Windows logon name.
  • Click OK for the EAP MSCHAPv2 Properties.
  • Click OK for the Protected EAP Properties.
  • Click OK for Local Area Connection Properties.


Fig 6: EAP MSCHAPv2 Properties window

The first time you attempt to connect to wireless network central-wpa, a "ballon-tip" will appear in the Windows systems tray prompting you to Select a certificate or other credentials.

  • Click in this balloon to display Figure 7.

NB: If Windows taskbar "balloon-tips" have been disabled, either by using the Windows XP TweakUI power toy or editing the registry, then you will not see the balloon. You will need to click on the wireless network icon in the taskbar to obtain the login window.

  • Enter your UUN and the password which you have registered to use when accessing the VPN/Wireless/LapLAN2 services.
  • Leave the domain field blank.
  • Click OK (Fig 7).


Fig 7: Enter Credentials window

Your computer should now authenticate and if successful, gain access to the wireless network. Your device should be assigned an IP address in the range 172.20.16.1 to 172.20.19.247. Once you have successfully authenticated, Windows will remember your credentials and automatically use them every time you connect to the wireless network central-wpa.

(Note: if an authentication failure occurs you may be asked to re-enter your credenttials.)


Fig 8: Successful Connection window

If your computer says that you are connected, but you have limited connectivity then right-click on the wireless network icon in your system tray and select Repair.


Fig 9: DHCP failure window