I've been struggling with this for a week now. Looking at my laptop as a guide, I've got the connection on my phone set up as follows:
Authentication: Open
Data Encryption: WEP
Key is automatically provided: yes
Uses IEEE 802.1x network access control: yes
EAP type: PEAP
I was given a certificate by the IT guys and it installs fine on my phone under root certificates.
When I attempt to connect to the network, it keeps coming back with an error saying the I need to have a personal certificate to positively identify me. Hmmm...
I do have a certificate! Is there a difference between the root and personal certificates? Do I need a personal certificate for some reason or should the root certificate that I was given suffice?
Any suggestions? This is driving me crazy!
Thanks!
Same here...
I am having the same exact problem!
Me too! Except with WPA2 AES (and WPA TKIP, our AP supports both).
Did you try disabling proxy ?
I have that problem too at my work. The problem is that you will need a username and certificate so that the server will accept you as a user. Now you can only connect but you can't do anything without the username, u see
Related
Hi All,
I have a JarJar WM 5 phone and I can't seem to get PEAP working on the phone with my work network.. My laptop is configured with PEAP and MSCHAPv2 authentication. The client in WM5 allowed you to select PEAP but if click on _Properties_ in the configuration it complains that the network requires a personal certificate to positively identify me although that is not the case with the laptop or any other wireless pc in the building. If I just leave it on PEAP I get a login and password prompt when it connects to the access point. I enter the correct username and password and it attemps to connect for a few minutes and fails. Anyone have it sucessfully working on this type of network?
Thanks!
Eric
Hey Guys,
I have a 8125 from Cingular and when, when i try to log in to my work wireless network, after typying in my username, password and domain, it gets connected and as soon as it does message pops out saying: "cannot log on to the wirells network. This network requires a personal certificate to positively identify you."
so pretty much i can't get connected, what should i do to resolve that?
Here are the network card settings for my work access:
Authentication: WPA
Data Encription: TKIP
802.1x
EAP type: PEAP
thanks
I have the exact same problem as you. I haven't been able to figure it out either. I believe my connection is LEAP though, not PEAP.
ive just set up my home network. I got everything working on the setup, main puter, 3 laptops, XDA mini s and XDA2i. I then added wpa psk with tkip. The laptops and the main puter all work fine but both the XDA's with the password entered just sit there either saying connecting or netwok available. They will not connect. Very very frustrating.
Pete
For some reason using PEAP on a Windows Mobile device requires you to have a Client Certificate installed on the device as well as the server certificate. Luckily the Wizard has a certificate enrollment utility built in (Settings, Connections, Wireless LAN). Make sure the certificate template 'ClientAuth' is enabled on the CA Server.
Obviously you need to enroll whilst the Wizard is connected to your PC and on the network.....
HTH
Andy
I am trying to get a secure wireless connection going on HTC P3600 device.
The AP's are Cisco 1131AG who are controlled by a Cisco WLC 2006. We are running 802.1x with PEAP authentication. Several co-workers have HTC devices who are able to get their credentials verified. My device does prompt me for the credentials but this request never seems to make it to Radius server. The logs on the controller simply say the authentication failed with unknow reason code 1. I have the necessary server certificates installed. I have tried several ROM's in order to get this problem fixed.
SSID: hidden /broadcasted, WPA/TKIP, IEEE with PEAP. Can any one suggest me if I should use a 3rd party vendor for MSCHAPV2 to function well?
Solved the problem. The WLC controller didnt wait long enough for the PDA to respond. After setting the config advanced eap identity-request-timeout 5 on the WLC system the PDA was able to authenticate itself. Hope this helps anyone out there struggling with the same problem
Hi
I'm using a T-Mobile MDA Vario III. I would like to be able to connect to my home network via the wifi/wlan (what's the difference).
On my router I use WPA/WPA2 with PSK authentication - not 802.1x.
I ave never been able to configure the VIII to connect, it always wants use this 802.1x thing and it's greyed out.
Is there some way of getting rid of it? If I use open network it connects ok.
Please help I am heading for a breakdown!
thanks
Mike
I think you are missing how these things work.....
WPA is either PSK or Enterprise - PSK you enter a key (Pre-Shared-Key), Enterprise the key is dynamically assigned. This is the same for WPA2. The reason it is greyed out when you select WPA or WPA2 is it isn't an option, with WPA-PSK & WPA2-PSK a manual key is mandatory.
If you use WPA or WPA2 (Enterprise) then you MUST have a centralised Authentication mechanism in place (RADIUS).
Does this help?
Andy
Ummm... not really, sorry.
I've attached a couple of screen shots if that helps.
On my router (it's a Belkin) the ieee 802.1x is off when I select wpa2 and psk (i don't have anything for tkip, and have no idea about what the other settings mean when it's not psk).
It seems incredibly complicated this wifi caper. I've never manged to get to connect to any other network except mine with no security.
dinny66 said:
Ummm... not really, sorry.
I've attached a couple of screen shots if that helps.
On my router (it's a Belkin) the ieee 802.1x is off when I select wpa2 and psk (i don't have anything for tkip, and have no idea about what the other settings mean when it's not psk).
It seems incredibly complicated this wifi caper. I've never manged to get to connect to any other network except mine with no security.
Click to expand...
Click to collapse
No, the reason the options on the 802.1x page are not available is because they don't apply when using Pre-Shared-Keys.
TKIP & AES are the encryption methods used, WPA/WPA2 is the authentication method, they are independant of each other but reliant on each other as part of the standard. i.e. if you want to use WPA-PSK authentication then you have to use TKIP or AES encryption.
I am still confused over your question? I have a HTC Kaiser and it is configured to access multiple networks - one uses WPA2-Enterprise/AES, a couple use WPA-PSK/TKIP, another one uses WPA2-PSK/AES and a few are just Open with no encryption. They all work though.....
Andy
OK, let's approach it a different way round then. How do I configure my VIII to connect to my router, using a secure method?
Thanks
dinny66 said:
OK, let's approach it a different way round then. How do I configure my VIII to connect to my router, using a secure method?
Thanks
Click to expand...
Click to collapse
On your Wireless router or Access Point you enable WPA-PSK or WPA2-PSK for your WiFi network (SSID) and enter a Pre-Shared-Key, depending on the device you may or may not get options for the Encryption type, if you do it will either be TKIP or AES. My access point allows me to use either, however older equipment may only support TKIP, even older equipment may only support WPA-PSK as well and not WPA2-PSK.
Lets pretend you use the WiFi SSID 'MY-WIRELESS' and use WPA-PSK Authentication with TKIP Encryption and a PSK of 'My-H0m3-W1F1'. Lets also assume you aren't making this a hidden network (Broadcast SSID).
On you VIII device you then enable the WiFi (or Wireless its the same thing) when you see the 'MY-WIRELESS' SSID you select it which should open the 1st page of the configuration. Select 'Connects to: The Internet' and click next, then select 'Authentication: WPA-PSK' and 'Data Encryption: TKIP' and enter ''My-H0m3-W1F1' in the 'Network key:' box. Click next, ignore the next page and click finish. That's it.
Andy
That's it! Just like that. I don't believe it.
Thanks muchly!
The Belkin router uses wpa or wpa2 and aes( according to belkin site). Authentication is via 802.1x or PSK, not both.
I did have the VIII set for tkip originally, and wpa2-psk. Set at WPA-psk aes and it went straight on.
Thanks so much Andy. Ur a diamond.
Hello everyone
Last school year, when I still had the original WM5 ROM on my Uni, I could connect to my school's wifi network that requires:
- WPA-Enterprise (Not WPA2!)
- AES encryption (AES on WPA - not 2 - looks a bit strange, but it«s the way it is setup on Windows 7 that can connect)
- PEAP for the EAP
- The routers are Cisco gear so I suppose they use Cisco LEAP
- No certificate (do not validate server cert)
On WM5, I could connect: I could select WPA on the first dropdown of the network settings, then on the box below that one I selected AES. Next step, I selected PEAP for the EAP type, and Finished. then I added a registry key somewhere so it wouldn't try to validate the server certificate. It asked for my credentials when I tried to connect to the network, and it connected fine and worked well.
Now I use a WM6 ROM, Tomal 8.9. I can select WPA but there is no AES option, only TKIP. I already added the registry key for it not to validate the server certificate, but it isn't even trying to validate the cert - doesn't get to that step, the furthest I could go was having it asking my network credentials in an infinite loop.
Should I try another ROM? (oh, and BTW, I'm sure that the network doesn't use WPA2, but WPA with AES encryption)
Any help is greatly appreciated. Even because I don't have a 3G data plan and the wifi at school was very useful.
Regards
Nevermind. After inputing my network credentials enough times, I could connect using TKIP. But somehow Windows computers are still configured for WPA AES instead of TKIP, which is strange. Anyways, it works now, and that's what matters.