Secure Wireless :: How to Connect :: Windows 7/Vista

Printer-friendly versionSend by emailPDF version

Before You Start

To connect to the HSUWireless-Secure network, your computer must support the WPA2 security standard, and you must have the latest Windows updates installed. To update your Windows installation, do one of the following:

  • Go to http://update.microsoft.com and follow the on-screen instructions OR
  • Open the Control Panel, select Update Windows, and follow the on-screen instructions

The instructions provided here are intended for configuring a personally-owned device; if you need to configure an HSU-owned device for the secure wireless network, please contact your ITC or the Technology Help Desk at (707) 826-HELP (4357), as the process is slightly different.

Note also that these instructions were prepared using a computer running Windows 7; if you are running Windows Vista, your experience may be slightly different.

Configuring Your Computer Automatically (Recommended)

Download the profile installation package to your desktop and run it as an administrator.

Configuring Your Computer Manually

Step 1: Click on the Wireless Network icon in the System Tray and then on Open Network and Sharing Center.

Click Wireless Network Icon in system tray
 
 Click Open Network and Sharing Center

Step 2: Click Manage Wireless Networks under the heading Control Panel Home on the left of the screen.

Click Manage wireless networks

Step 3: Click Add.

Click Add

Step 4: Select Manually create a network profile.

Select Manually create a network profile

Step 5: Enter the network name HSUWireless-Secure exactly as shown below and then:

  • Select WPA2-Enterprise for Security type.
  • Select AES for Encryption type.
  • Check Start this connection automatically.
  • Check Connect even if the network is not broadcasting

Click Next to continue.

Enter HSUWireless-Secure (VERY important - this name is CASE SENSITIVE) into the Network name field. - Select WPA2-Enterprise for Security type. - Select AES for Encryption type. - Check the Start this connection automatically box & connect even if the network is not broadcasting. - Click Next to continue.

Step 6: A new window will open, confirming that you have successfully added HSUWireless-Secure to your network options. To continue configuring your device, click Change connection settings.

Click on Change connection settings.

Step 7: On the Connection tab, check the following options:

  • Connect automatically when this network is in range.
  • Connect even if the network is not broadcasting its name (SSID).

Under the Connection tab make sure: - Check Connect automatically when this network is in range is checked. - Check Connect even if the network is not broadcasting its name (SSID).

Step 8: Select the Security tab and then

  • Select WPA2-Enterprise for Security type.
  • Select AES for Encryption type.
  • Select Microsoft: Protected EAP (PEAP) as the network authentication method.
  • Ensure Remember my credentials for this connections each time I'm logged on is checked.

Select the Security tab. - Select WPA2-Enterprise for Security type. - Select AES for Encryption type. - Choose a network authentication method Microsoft: Protected EAP (PEAP). - Ensure Remember my credentials for this connections each time I'm logged on is checked.

Step 9: Click on the Settings button next to Microsoft: Protected EAP (PEAP).

Click on the Settings button next to Microsoft: Protected EAP (PEAP).

Step 10: Ensure Validate server certificate is checked and then

  • Check Connect to these servers and enter wireless.humboldt.edu
  • Under Trusted Root Certification Authorities, check the box alongside Verisign Class 3 Public Primary Certification Authority - G5.
IMPORTANT
If you do not see Verisign Class 3 Public Primary Certification Authority - G5 in the list, you will need to install this certificate.

  Ensure Validate Server Certificate is checked. - Check the box next to "Connect to these servers" and enter wireless.humboldt.edu

Step 11: Click the Configure button.

Click the Configure button.

Step 12: Ensure that Automatically use my Windows logon name and password (and domain if any) is unchecked.

Step 13: Click OK twice to return to the HSUWireless-Secure Wireless Network Properties Security tab and click on the Advanced settings button.

Then click OK twice to return to the HSUWireless-Secure Wireless Network Properties Security tab.

Step 14: On the 802.1x settings tab

  • Check Specify authentication mode
  • Select User authentication from the drop down menu.

Click on the Advanced settings radio button, then select the 802.1x settings tab. - Place a check in Specify authentication mode:, then select User authentication in the drop down menu.

Step 15: Click the Save Credentials button. In the box that appears:

Click OK.

Click the Save Credentials button. - Enter your HSU User Name and Password, then click OK.

Step 16: Select the 802.11 settings tab and

  • Check Enable Pairwise Master Key (PMK) caching

Click OK.

Select the 802.11 settings tab, place a check for Enable Pairwise Master Key (PMK) caching, then click OK.

Step 17: Click OK, then Close. Your device will begin connecting immediately to HSUWireless-Secure network.

If you have never used wireless before at HSU, there are a couple more one-time steps you need to take.

  1. When you open your browser, you may be required to agree to the CSU Responsible Use Policy. To do this, simply digitally sign the document with your HSU User Name and Password.
  2. You may be asked to install PolicyKey software for Windows after you open your browser. Follow the on-screen instructions to download and install the software.

 

Installing the Verisign Root Certificate under Windows 7/Vista

If you did not see the Verisign Class 3 Public Primary Certification Authority - G5 certificate in the Trusted Root Cerification Authorities window, you must install it following the instructions below:

Step 1: To download the required root certificate, right-click on this link and select Save Link As, or Save Target As. For simplicity, we recommend you save it to your desktop.

Step 2: Click Close after the software has finished downloading.

To avoid seeing any certificate trust errors, you must also install the Verisign Secondary Intermediate Certificate into your Certificate store. Here's how:

Step 3: To download the required intermediate certificate, right-click on this link and select Save Link As, or Save Target As. For simplicity, we recommend you save it to your desktop.

Step 4: Click Close after the software has finished downloading.

Step 5: Right-click on the certificate icon(s) one at a time and choose Install Certificate. The Certificate Import Wizard window will pop up. Click Next

Once you have downloaded the certificates, right-click on the icon(s) one at a time and choose Install Certificate.  The Certificate Import Wizard window will pop up, click Next

Step 6: Click the radio button labelled Automatically select the certificate store based on the type of certificate, then click Next.

Now, click the radio button titled Automatically select the certificate store based on the type of certificate, then click Next.

Step 7: Click Finish to complete the installation.

IMPORTANT NOTE:
You may need to close and reopen the Protected EAP Properties window when you return to the configuration instructions before you see the Verisign Class 3 Public Primary Certification Authority - G5 certificate listed. To do this, just click Cancel in the Protected EAP Properties window and repeat Steps 9 through 13 of the configuration instructions.

 

Related Topics

Secure Wireless
feedback