Does any one know if there is a way to use your WM6 device on a secured WPA, TKIP, PEAP network when you have your own user name and password to access regular pc.
I'm trying to use my TILT at work and everytime i try to log in it tells me that i need "personal certificate" to positively identify me.
Would it possible to retreive my personal certificate from my work loptop and transfering it somehow to my Tilt?
I really need some help with that, i've been trying this forever.
THanks in advnace
marcini said:
Does any one know if there is a way to use your WM6 device on a secured WPA, TKIP, PEAP network when you have your own user name and password to access regular pc.
I'm trying to use my TILT at work and everytime i try to log in it tells me that i need "personal certificate" to positively identify me.
Would it possible to retreive my personal certificate from my work loptop and transfering it somehow to my Tilt?
I really need some help with that, i've been trying this forever.
THanks in advnace
Click to expand...
Click to collapse
You can get that certificate from your network adminstrator.. It has to be installed on the Tilt to work... You should only need a certificate based upon the protocol that you choose to use (afaik)...
debonairone said:
You can get that certificate from your network adminstrator.. It has to be installed on the Tilt to work... You should only need a certificate based upon the protocol that you choose to use (afaik)...
Click to expand...
Click to collapse
well i would love to get it from my it guys, but they wont give it to me, there is no pda devices on our network set up for wireless, everbody's using blackberries and their data plans. and since we have wifi, i was thinking of using that if that's possible
Related
Does any one know if there is a way to use your WM6 device on a secured WPA, TKIP, PEAP network when you have your own user name and password to access regular pc.
I'm trying to use my TILT at work and everytime i try to log in it tells me that i need "personal certificate" to positively identify me.
Would it possible to retreive my personal certificate from my work loptop and transfering it somehow to my Tilt?
I really need some help with that, i've been trying this forever.
THanks in advnace
marcini said:
Does any one know if there is a way to use your WM6 device on a secured WPA, TKIP, PEAP network when you have your own user name and password to access regular pc.
I'm trying to use my TILT at work and everytime i try to log in it tells me that i need "personal certificate" to positively identify me.
Would it possible to retreive my personal certificate from my work loptop and transfering it somehow to my Tilt?
I really need some help with that, i've been trying this forever.
THanks in advnace
Click to expand...
Click to collapse
That personal certificate is linked to your work computer name and how it is registered on the AD domain. I don't know how or if it's possible but thats the sorta technicle rundown.
marcini, you should contact your company's IT services and inquire whether it's allowed and whether they will provide support. Most companies are very particular about network access, and rightfully so.
If they use certificate-based authentification for their wpa network, they obviously want to control who gains access to their network, and unauthorized probing might risk your job.
Have fun!
I posted this in network forum but I don't think anyone reads that forum so I thought I'd try my luck here....
I'm trying to connect to a network share that is on a domain controller so uses domain level security/authentication instead of regular local computer authentication. When I try to connect to the computer I get an Action Failed message "Cannot connect shared path. The specified network resource or device is no longer available."
I checked through event logs on the server and it looks like the login/authentication went through just fine but the wm device seems to be rejecting it somehow....
Does anyone know what I might be able to do to fix this? Kind of a pain, I would like to be able to connect to my server's shares.
Thanks
and again no one replies
*cry*
How are you attempting to connect to the server shares?
Using what method?
PocketLAN?
I.E.?
Even though you authenticate against AD there should be a local administrative account on that box, try logging on using it. Also what are the permissions on that share, do you have access to it and is your account part of that domain?
Just my $.02 try using z2 PocketLan..
I've used it for quite a while on my Axim, and now on my 6800.. It allows you to connect to a network share, you supply it with your login credentials (Active Directory) and save the connection. It also comes with a bunch of other handy stuff like an IP range scanner, ping, yatta yatta ..
-=<> Aaron <>=-
I use Resco Explorer and it doesn't seem to have any problems at all connecting to network shares on our domain controller at work.
i just tried on my domain, i can connect to shares on other pcs and servers, but not on the DC, maybe theres a setting that doesnt allow connections from non domain members
and just FYI, domain controllers dont have any local accounts
ya no local accounts... local computer accounts work fine but it won't connect using domain accounts to authenticate...
I'm not sure if this is a setting on the DC for authentication or if there is something I need to do on the wm device?
Zenoran: You still haven't told us how you're trying to connect. I can't tell you how to do it unless you tell me what sort of program you're using, or whatever. Capiche?
I use z2 PocketLAN without issue, accepts DC auth no problem. Do you use PocketLAN?
ryanshepherd said:
Zenoran: You still haven't told us how you're trying to connect. I can't tell you how to do it unless you tell me what sort of program you're using, or whatever. Capiche?
I use z2 PocketLAN without issue, accepts DC auth no problem. Do you use PocketLAN?
Click to expand...
Click to collapse
Oh sorry! Using Resco File Explorer... are there others I should try? I bought that program because it seemed to do everything. Will give PocketLAN a shot.
hmmm tried pocketLAN and it only locks up when I try to click on that server... bad bad...
something really fishy here because even non-authenticated user should be able to browse that server and see public shares... no one else have issue? maybe it's a server 2008 thing?
I noticed on DCDs new verision that has windows mobile 6.1 , that it has an icon under Connections called "domain enroll"
bhagwan said:
I noticed on DCDs new verision that has windows mobile 6.1 , that it has an icon under Connections called "domain enroll"
Click to expand...
Click to collapse
lol ya... that's a wm6.1 thing.. ive never been able to get that to work either. no posts for it as well that i could see... i guess no one does much domain integration with their titans?
Zenoran said:
lol ya... that's a wm6.1 thing.. ive never been able to get that to work either. no posts for it as well that i could see... i guess no one does much domain integration with their titans?
Click to expand...
Click to collapse
the domain enroll is a bit of an odd thing, i cant even find much documentation on it from microsoft, but from what i can tell it just integrates with an exchange server, provided the server has mobile device manager installed
im not even sure what features it enables
Hi, I am from Sweden and this is my first post here at XDA.
I got a HTC p3600, it´s upgraded to WM 6.5 and it works awesome.
Now the problem. The WLAN works great at home and other open networks/ if i got the key.
In my school we got WLAN but i can´t connect to it. I find it in the WLAN-list but there it ends. My friend with an Iphone just select the network and then he can insert his username and password, and woila! He´s in.
When i try to connect the server wants a "Certifikat" in swedish. I have tried to do a "Domain enroll" to get it But it always fail.
I think they use Windows Server 2003.
Does anybody understand my bad language? If you wanna know any more, just tell me.
Same problem here, trying for some weeks to find a solution and so far all attempts with different clients failed. I`m sure it`s not a windows server but a cisco concentrator that let`s You access wlan and it seems there is no free client that can communicate correctly with cisco hardware for winmobile. Iphones have a vpn client directly from cisco integrated and can pass without problems. Try to ask Your computer center what concentrator they use and if they know of a client that supports winmobile.
Some forums mention a registry hack that deactivates certificate authentication but just setting it didn`t help. We`re still trying if this might work in conjunction with a locally installed certificate. Try to get the root certificate of Your CA and import it to Your device. Might help. Somehow they screwed up PEAP on mobile clients cause it`s supposed to work without local certificates but alas...
FlyBy_1 said:
Same problem here, trying for some weeks to find a solution and so far all attempts with different clients failed. I`m sure it`s not a windows server but a cisco concentrator that let`s You access wlan and it seems there is no free client that can communicate correctly with cisco hardware for winmobile. Iphones have a vpn client directly from cisco integrated and can pass without problems. Try to ask Your computer center what concentrator they use and if they know of a client that supports winmobile.
Some forums mention a registry hack that deactivates certificate authentication but just setting it didn`t help. We`re still trying if this might work in conjunction with a locally installed certificate. Try to get the root certificate of Your CA and import it to Your device. Might help. Somehow they screwed up PEAP on mobile clients cause it`s supposed to work without local certificates but alas...
Click to expand...
Click to collapse
Thanks for the answer!
Would it be possible to to install some kind of program from cisco to make it work?
Unfortunately Cisco doesn`t do any winmo clients, they licensed it to other companies. Tried with Root CA yesterday but that didn`t work, maybe we need a valid client cert too. Have to get a personal one from our uni CA the days.
Try installing secureW2
http://www.securew2.com/node/3
This is a program specifically designed to work with wpa2 networks offered through a radius server. Most schools and universities use a radius server. You will need a local login and password though.
When installed, you can select securew2 in the certificate window of wifi settings, when you try to connect to the wireless network.
Thanks for the suggestion. I tried with various clients, none of them worked, securew2 was among them. But maybe it works with fiddyboy.
A page mentioned some older hardware may not cope with mixed wpa modes, maybe P3600 is among them but I really don`t think so...
MAsterokki said:
Try installing secureW2
http://www.securew2.com/node/3
This is a program specifically designed to work with wpa2 networks offered through a radius server. Most schools and universities use a radius server. You will need a local login and password though.
When installed, you can select securew2 in the certificate window of wifi settings, when you try to connect to the wireless network.
Click to expand...
Click to collapse
I am downloading now, will test it tomorrow. Thanks!
Edit: I am not getting it to work. Can someone help me with the settings?
I am sorry, but I don't know what settings to use in your specific case... These settings should be made available by your school or company, most of the time the settings for laptops will give enough information too
which rom do you use to upgrade to windows mobile 6.5
Finally got it to work. We have different WLANs here at our university. I had no luck connecting to our VPN-network so I tried our eduroam WLAN. Eduroam is a roaming network for educational purposes. If You have a login from Your uni/school/whatever You should be able to access the internet from any eduroam network worldwide.
As You said You were asked for a certificate I think Your network relies on the same technologies as ours because I had the same error before. Following explanation:
Our eduroam RADIUS server is certified.
This means our uni gave it a certificate. Our uni was certified by and got a certificate from the DFN (german research net). The DFN was certified by and got a certificate from the german Telekom.
This is called a certificate chain with the DFN as intermediary and Telekom as root certificate authority.
What I had to do is import just the root certificate (from Telekom) to my mobile device by downloading it from our unis webpage, transferring it to the Trinity and just click on it. It confirmed installation and the root ca is listed under the Settings>System>Certificates>Root.
Edit : Normal certs are with *.crt ending. MinMo wants *.cer-files. If You only can get Your hands on *.crt import them into Your PC browser, export from there with DER-encoding and rename *.der to *.cer. That`s it.
Our eduroam RADIUS server authentication is via PEAP.
So I configured the network connection like this:
connects to : internet
authentication : wpa2
data encryption : aes
eap type : PEAP
Connect. When prompted put in Your uni account credentials.
This worked on WinMo 6.1 and 6.5 Without the ValidateServerCert reghack or any other other special program.
WinMo5 failed! Also tried the ValidateServerCert reghack but it`s of no use. Think it`s because WM5 has no wpa2-aes support. If Your RADIUS allows wpa and tkip it may work.
Maybe if this doesn`t work Your server it uses something other than wpa2 or aes. Try different options. Maybe it`s not using PEAP. Ask Your admin but try with a certificate first.
The strange thing is that PEAP was used to avoid handling of certificates; it`s especially there to NOT have to fiddle with them. Anyway, this works here, hope this is the solution for Your location...
you should just buy a protable harddrive or a flash drive and transfer your files onto that and then onto your computer.
Hi, I have same problem, trying to use eduroam on CTU, my Notebook/Laptop WiFi work ok, but I can't connect with TD2 Topaz. I have instaled required certificate, but in options I have no way to set concrete RADIUS server to connect (which is required to be specified in settings on Notebook). Any ideas please? I Also installed securew2, but I can't add Cesnet CA in securew2 options, even it is installed in system (I is present in setings-certificates in WM).
When You have WinMo 6.1 You shouldn`t need securew2 and there is no need to explicitly set RADIUS IP. Have You tried eap-type : PEAP ? What`s the error message if any ?
Some univeristies use a WLan called EduROAM.
http://www.eduroam.org/
But somehow HTC HD2 cant connect to it.Seems like a personal certificate is the problem.
Has anyone got this working on HD2 ?
It works on Nokia phones running Windows mobile 6.5
you need to download one of the latest version of securew2 client from your uni website or the developer's website. follow instruction to set up the connection given by your uni IT department.
I'm using eduroam connection now in UCL.
Thanks for your answer.
I downloaded securew2
But I still cant get it to work.
Do you have to provide this information on your campus ?
SSID: eduroam
authentication: WPA2
kryptering: AES
EAP-typ: PEAP
authentication: MSCHAP v2
For me WPA1 works better, also AES is wrong. Then you select "Secure W2" in the drop down box not peap. SecureW2 needs to be configured as well. Your university should provide you with that info. You usually don't need the radius part with the cert! That's just to protect you from connecting to the wrong network (and thus giving them your password).
Above information about WPA2 is from my campus informationsite.
After I made some settings on "Eduroam connection" i cant change them.
As soon as push eduroam it tries to connect.
The only way to change them is to install a new rom, so that the phone is
like it was from the first time.
quart666 said:
Some univeristies use a WLan called EduROAM.
http://www.eduroam.org/
But somehow HTC HD2 cant connect to it.Seems like a personal certificate is the problem.
Has anyone got this working on HD2 ?
It works on Nokia phones running Windows mobile 6.5
Click to expand...
Click to collapse
I took my mobile to my University's IT Department and they set it up for me and it works great, I get all of my student emails directly to my mobile. Hope this helps.
bahardman said:
I took my mobile to my University's IT Department and they set it up for me and it works great, I get all of my student emails directly to my mobile. Hope this helps.
Click to expand...
Click to collapse
ROM version ?
In my case,
I download SecureW2 personal client 2.04 ce, install it on my phone via active sync.
Settings>Menu>All settings>Connection>Wifi>Wireless networks>Menu>Add new
and start configuring the settings. Different network will have different settings.
I don't think ROM version matters in this case. It should work with your device, if you got the right SecureW2 client and settings set up on your phone.
Btw, IT department or university's website should provide sufficient information for you to set up the connection.
Good luck.
The IT people cant get it to work......
They say that they cant get it to work on HD2.
Thats why I turned to you guys.
Still no luck, secureW2 keeps asking for user/pass, and yes I know its the right user/pass. A friend at work tried his username and it doesnt workl either.
If I connect to Eduroam on my pc it works, so nothing wrong with user/pass
quart666 said:
The IT people cant get it to work......
They say that they cant get it to wrok on HD2.
Thats why I turned to you guys.
Still no luck, secureW2 keeps asking for user/pass
Click to expand...
Click to collapse
You might need to get another version of secureW2 client.
I tried a secureW2 client provided by my uni and i faced the same problem as you. It kept on prompting me for username and password. I changed to another client (SecureW2_Personal_Client_204_CE), downloaded from SecureW2 forum, and it worked great!
During the installation of the client, registration is needed, i could register and install it couple of times on my phone without any problem. However, yesterday when i tried to reinstall the client after upgrading my ROM, the installation failed at the registration part. Maybe because they stop providing the free version?
I managed to get it installed on my phone again via activesync though.
Cant find that version.
I downloaded version SecureW2_Enterprise_Mobile_313_GA_TRIAL.exe
bump..
I still cant get it to work
http://www.chalmers.se/insidan/SV/arbetsredskap/it/bastjanster/eduroam
Chalmers University of Technology uses Thawte premium server certificate for authentication.
What you need to do is this, go to Thawtes website and download their certificates:
(Apparently I cannot post links, but just google for "thawte root certificate" the file is at www dot thawte dot com slash roots)
The certificate you need is located in the folder Thawte Roots\Thawte SSLWeb Server Roots\thawte Premium Server CA\Thawte Premium Server CA.cer
Download that to your HTC HD2 and install it by just clicking it in the file browser on your phone.
Then you can just follow the instructions you found at their webpage.
Hope this helps.
//a
how to connect to EDUroam
Firstly, this refers to connecting an HTC android phone (specifically the HTC Desire, but what I get from the web is that they are all much the same, these HTC android interfaces).
The problem starts when an innocent user looks for a WiFi network and finds eduroam. It then asks for not particularly relevant password information and cannot connect because the configuration of the default network setup is wrong. If you try to get the phone to forget that network it appears to do so that when you reconnect it still assumes that the connection was correctly set up. In order to get it to forget their network properly you have to enter the wrong password several times so that the phone thinks you have illegally trying to access the network. It then completely forgets.
The network discovery procedure will again come up with EDUroam, and the configuration should follow the instructions on the following website from Oxford University: <search for android eduroam oxford in Google>
In fact the names given on the HTC desire setup are slightly different. The important thing is that the EAP type should be PEAP, and the secondary type should be MSCHAPv2.
You then enter the username which will be effectively your registered e-mail address at your own institution, and then use as a password the thing eduroam calls "network access token" (16 lower case alphabetic character password generated for you if you buy your institution on request.
You then connect up and miraculously you have the connection you wish!
You should check that the connection is mobile roaming capability on your phone and checking that you really do have Internet and e-mail access as you wish through the WiFi connection directly.
I have been looking for the SecureW2 Personal Client 2.0.4 for Windows CE package (original filename: "SecureW2_Personal_Client_204_CE.zip"). I have been unable to find it and the sources given in this thread no longer exist or are no longer available.
If anyone has the file, please provide it.
Hi guys, I tried to access Ryerson university mail as well as the student web portal,
and neither one of them run.
Looks like I will be sitting in the school computer lab much more than I expected to...
However using k-9 mail I was at least able to access my school email account even though a lot of formatting does not show correctly and pictures don't work.
Oh well, I can at least wow my classmates when they think I have just another netbook and then ~booom I pull out the screen. he he he
check with your it dept, my school just switched to EAP security, so i had to get the certificate from them and import it into my tablet from the sd card
revolutionz_s13 said:
check with your it dept, my school just switched to EAP security, so i had to get the certificate from them and import it into my tablet from the sd card
Click to expand...
Click to collapse
Where do you install the cert?
tried this at work and didnt succeed
Had asked the question before, but thread jsut sat empty.
Thanks
Have you tried changing the user agent setting or using another browser?
I have the same problem with the corporate network at work...it tries to connect, then it doesn't....then it tries...and fails....
I can connect using connectify and my wifi laptop serving a connection to my TF but not right to the corporate network....bummer.
turbulent28 said:
Where do you install the cert?
tried this at work and didnt succeed
Had asked the question before, but thread jsut sat empty.
Thanks
Click to expand...
Click to collapse
Copy the cert to your sd card, then go into settings and under privacy and security all the way at the bottom there is something like install from sd card...it will automatically find the cert and install it to the tab
rpavich said:
I have the same problem with the corporate network at work...it tries to connect, then it doesn't....then it tries...and fails....
I can connect using connectify and my wifi laptop serving a connection to my TF but not right to the corporate network....bummer.
Click to expand...
Click to collapse
You might have a secondary authentication. My school uses EAP for network access security, and under the option for secondary security or whatever its called (I dont have the tablet in front of me right now) I have to use MSCHAP v2, as that is what my schools network uses to authenticate username/password on the server. and make sure you select the cert that you imported under the option for CA certificate. Your IT dept should know how to set it up if you show them where to set up the network connection for wifi...