Hi All,
I have a JarJar WM 5 phone and I can't seem to get PEAP working on the phone with my work network.. My laptop is configured with PEAP and MSCHAPv2 authentication. The client in WM5 allowed you to select PEAP but if click on _Properties_ in the configuration it complains that the network requires a personal certificate to positively identify me although that is not the case with the laptop or any other wireless pc in the building. If I just leave it on PEAP I get a login and password prompt when it connects to the access point. I enter the correct username and password and it attemps to connect for a few minutes and fails. Anyone have it sucessfully working on this type of network?
Thanks!
Eric
Related
Hey Guys,
I have a 8125 from Cingular and when, when i try to log in to my work wireless network, after typying in my username, password and domain, it gets connected and as soon as it does message pops out saying: "cannot log on to the wirells network. This network requires a personal certificate to positively identify you."
so pretty much i can't get connected, what should i do to resolve that?
Here are the network card settings for my work access:
Authentication: WPA
Data Encription: TKIP
802.1x
EAP type: PEAP
thanks
I have the exact same problem as you. I haven't been able to figure it out either. I believe my connection is LEAP though, not PEAP.
ive just set up my home network. I got everything working on the setup, main puter, 3 laptops, XDA mini s and XDA2i. I then added wpa psk with tkip. The laptops and the main puter all work fine but both the XDA's with the password entered just sit there either saying connecting or netwok available. They will not connect. Very very frustrating.
Pete
For some reason using PEAP on a Windows Mobile device requires you to have a Client Certificate installed on the device as well as the server certificate. Luckily the Wizard has a certificate enrollment utility built in (Settings, Connections, Wireless LAN). Make sure the certificate template 'ClientAuth' is enabled on the CA Server.
Obviously you need to enroll whilst the Wizard is connected to your PC and on the network.....
HTH
Andy
I am trying to get a secure wireless connection going on HTC P3600 device.
The AP's are Cisco 1131AG who are controlled by a Cisco WLC 2006. We are running 802.1x with PEAP authentication. Several co-workers have HTC devices who are able to get their credentials verified. My device does prompt me for the credentials but this request never seems to make it to Radius server. The logs on the controller simply say the authentication failed with unknow reason code 1. I have the necessary server certificates installed. I have tried several ROM's in order to get this problem fixed.
SSID: hidden /broadcasted, WPA/TKIP, IEEE with PEAP. Can any one suggest me if I should use a 3rd party vendor for MSCHAPV2 to function well?
Solved the problem. The WLC controller didnt wait long enough for the PDA to respond. After setting the config advanced eap identity-request-timeout 5 on the WLC system the PDA was able to authenticate itself. Hope this helps anyone out there struggling with the same problem
I've been struggling with this for a week now. Looking at my laptop as a guide, I've got the connection on my phone set up as follows:
Authentication: Open
Data Encryption: WEP
Key is automatically provided: yes
Uses IEEE 802.1x network access control: yes
EAP type: PEAP
I was given a certificate by the IT guys and it installs fine on my phone under root certificates.
When I attempt to connect to the network, it keeps coming back with an error saying the I need to have a personal certificate to positively identify me. Hmmm...
I do have a certificate! Is there a difference between the root and personal certificates? Do I need a personal certificate for some reason or should the root certificate that I was given suffice?
Any suggestions? This is driving me crazy!
Thanks!
Same here...
I am having the same exact problem!
Me too! Except with WPA2 AES (and WPA TKIP, our AP supports both).
Did you try disabling proxy ?
I have that problem too at my work. The problem is that you will need a username and certificate so that the server will accept you as a user. Now you can only connect but you can't do anything without the username, u see
Hi, I recently got my first WM device with Wi-fi (T-Mobile Vario III). I've been trying to get Wi-fi working with my network, but it doesn't seem to want to play!
I'm using WPA with AES, and using 802.1X authentication (my access point connects to my FreeRADIUS server). The same Linux box that runs the RADIUS server also runs the DHCP server for the network.
I'm using EAP-TLS authentication for the network (I based the setup for the network on this http://wiki.freeradius.org/WPA_HOWTO).
I've installed my root CA cert and intermediate CA cert (not covered in the howto, but I prefer to use and intermediate 'working' CA "just in case" ) on the Vario III. I also generated a client certificate/key for the Vario and installed it successfully on the device.
I then went on to Settings->Connections->Wi-fi and chose to add a new connection and did the following:
1) Entered the network name (SSID) and selected the "This is a hidden network" checkbox (also set it to be connecting to "The Internet" - I had to go to the network adapters tab as well and set the wi-fi adapter to be "The Internet" from "Work")
2) Selected authentication to be WPA and Data Encryption to be AES.
3) Selected the EAP type to be "Smart Card or Certificate" and went to properties. In the properties box I was shown the only personal certificate I have (i.e. the client certificate that I just installed for network authentication)
I then connect to the network, and get a User Name/Domain dialog (I don't really understand why). This is pre-populated with my name, but I've tried the following in this box (the only way to get it back after having entered something appears to be a hard reset - but there must be another way?):
1) The default provided (i.e. my name)
2) The CN for the personal certificate
3) Nothing
In each case I leave the 'Domain' field empty. With all three of the above the FreeRADIUS server reports successful authentication and the Vario III appears to be connected to the network. If I go to Settings->Connections->Wireless LAN, on the Advanced tab it says that it is 'Associated to network'
The problem is that even though I'm connected to the network and have been allocated an IP address (I have my DHCP server assign a specific IP address to specific MAC addresses), I cannot connect to any websites - I don't have anything over than Pocket IE installed on the device yet. I can't even connect to the management page for the AP that the Vario III is connected to.
This setup works perfectly from a WinXP box.
Has anyone got any ideas on what could be going wrong, or advise on how I can troubleshoot? Anyone know if there are logs stored on the device for wireless connectivity (either a log file or something like the event viewer in XP)?
Any help appreciated.
Thanks
Hi,
I have WiFi setup and running on my device, XDA Orbit, using WPA and AES.
First of all, whilst inside the Network Adapters tab, make sure that:
'My network card connects to': WORK
Secondly, in 'tap adapter to modify settings' you'll need to click on a particular network adapter card inorder to configure it.
In my case, I chose the SDIO WLAN Wireless Adapter. I then clicked the radio button 'Use specific IP address' and configured the IP address of my device, exactly as it is assigned in my Netgear wireless router.
If you haven't assigned a specific IP address to your device, just click the radio button next to 'Use server-assigned IP address'.
On the 'Advanced' tab of Wireless LAN, mine also reads 'Associated to network' as the status. It also has the MAC address of my device, followed by its IP address. The three fields were all filled up automatically, by the router. I never filled this up. However, I configured the router with the necessary details.
Troubleshooting:
1. Ping your device from your PC or notebook.
The idea is to be able to see if there is communication between your router and the device.
Example: at c:\>ping ......... (.....being the name or IP address of your device as entered in the router)
2. If you have a firewall, disable it now and ping again. This step is necessary because the firewall could be stopping your device from connecting to the router if it is not configured in the firewall's access list.
3. Go to your PC/notebook and type: ipconfig /all at the command prompt.
Hopefully, you should see the device's name come up as well as other parameters, including its MAC address.
4. Ensure that the device is allowed access to your internal network and configured as such, inside the router, using MAC address filtering. This means that you MUST ensure that the correct MAC address of the device has been entered.
Summary:
1. Configure your device inside the router - name/mac address or name/IP address
2. Configure your firewall to accept connections from the device
3. Ping the device as well as the router
4. If you have another computer, try and see if you can connect to the router from there.
5. Ensure that the router, PC or PPC are all on the same subnet. This is crucially important for communication amongst the devices.
By typing ipconfig /all, you will be able to determine as to whether all the computers as well as the PPC on your network are on the same subnet.
Many a network have failed through this problem.
Hope this helps.
kiwi992.
Hello everyone
Last school year, when I still had the original WM5 ROM on my Uni, I could connect to my school's wifi network that requires:
- WPA-Enterprise (Not WPA2!)
- AES encryption (AES on WPA - not 2 - looks a bit strange, but it«s the way it is setup on Windows 7 that can connect)
- PEAP for the EAP
- The routers are Cisco gear so I suppose they use Cisco LEAP
- No certificate (do not validate server cert)
On WM5, I could connect: I could select WPA on the first dropdown of the network settings, then on the box below that one I selected AES. Next step, I selected PEAP for the EAP type, and Finished. then I added a registry key somewhere so it wouldn't try to validate the server certificate. It asked for my credentials when I tried to connect to the network, and it connected fine and worked well.
Now I use a WM6 ROM, Tomal 8.9. I can select WPA but there is no AES option, only TKIP. I already added the registry key for it not to validate the server certificate, but it isn't even trying to validate the cert - doesn't get to that step, the furthest I could go was having it asking my network credentials in an infinite loop.
Should I try another ROM? (oh, and BTW, I'm sure that the network doesn't use WPA2, but WPA with AES encryption)
Any help is greatly appreciated. Even because I don't have a 3G data plan and the wifi at school was very useful.
Regards
Nevermind. After inputing my network credentials enough times, I could connect using TKIP. But somehow Windows computers are still configured for WPA AES instead of TKIP, which is strange. Anyways, it works now, and that's what matters.