Hi All,
I'm now developing wifi miniport driver for windows ce 5.0. Now the driver works, and I can connect to AP which configured Open-System + no encryption or Open-System + WEP encryption. But when trying to connect to WPA-PSK + TKIP encryption, always failed. I use the netui provided by MS to configure wifi setting.
So I check the driver code, and found that when connecting, the association is successful, then AP send EAPOL-Key to start four-way handshake but the WZC didn't react, instead WZC send EAPOL-Start to start 802.1X authentication. (Which I think only used for WPA, not WPA-PSK). So AP think the something wrong with the device and failed the connecton.
I deeply check the netui code, found when select WPA-PSK, the enable 802.1X authentication check box is forced to be checked. So I modify the code, set it as unchecked, and it turns to be WZC don't send EAPOL-Start but still no reaction to EAPOL-Key.
I think netui only configure this struct to setting WZC about WPA-PSK:
typedef struct _WZC_EAPOL_PARAMS
{
BOOL bEnable8021x;
DWORD dwEapFlags;
DWORD dwEapType;
DWORD dwAuthDataLen;
BYTE *pbAuthData; // Pointer to provider specific config blob
} WZC_EAPOL_PARAMS, *PWZC_EAPOL_PARAMS;
I tried many kinds of settings but still not work.
Does anyone know something about this and could give some information? Thanks!
victor.liu
Related
I have a O2 XDA-EXEC Pocket PC I am having problems setting up my WiFi connection and cannot seem to find out what to do to resolve.
When using my laptop wifi connect I set up the following
My network name (iiscwlan)
Authentication WPA
Data Encryption TKIP
802.1x EAP Type as PEAP.
Then under configuration of PEAP I uncheck Validate Server Certificate and all connects perfectly
TO KNOW MORE DETAILS ABOUT THIS CONNECTION VIST http://www.serc.iisc.ernet.in/LAPTOP_ WN_conf.htm
With the O2 XDA-EXEC I do the same but there is no configuration setting under PEAP to enable me to uncheck Validate Server Certificate. Every thing I do while attempting to connect using the O2 XDA-EXEC I get the following error messages:
Server Validation Error - The server certificate is issued by an unknown authority
and
Cannot log on to the wireless network. This network requires a personal certificate to positively identify you.
Does anyone have any idea how to disable validate server certificate under Windows Mobile 5.0???
Hi,
i used 802.1x authentication on my MDA.
The only thing you have to do is to add a DWORD Regestry Entry under HKEY_LOCAL_MAICHNE-->Comm-->EAP-->Extension-->25
Name:"ValidateServerCert"
Value: 1 to activate Validation, 0 to turn it off
If you need a Regestry Editor you can use PHMRegedit.
THANK YOU
Thank U Man
Thank U So Much.......................
Thanks A Lot...........................
THANK YOU
Thank You Thank You Thank You Thank You Thank You Thank You Thank You Thank You Thank You
XDA EXEC WiFi Problem
Please advise me how to get connected with WLAN of university by using XDA EXEC. I tried a lot, but not successful.
When I click on 802.1x EAP type PEAP, properties, then it says "Network requires a personal certificate to positively identify you".
But with other windows mobile 5 device having 802.11b/g, it works well.
Please help me to rectify this problem.
Thanks a lot in advance.
[email protected], Scotland, UK
solution
the solution for ur problem is also same that is given above
goto registry using any soft ware and do as it said
i had a same problem on my xda exec
the solution for this is ..............
instal a personal cretificate....
u can try it from here
http://www.jacco2.dds.nl/networking/p12imprt.html#Download
even if after instaling
if it says validation error try this
The only thing you have to do is to add a DWORD Regestry Entry under HKEY_LOCAL_MAICHNE-->Comm-->EAP-->Extension-->25
Name:"ValidateServerCert"
Value: 1 to activate Validation, 0 to turn it off
Hi,
the solution i have written above makes you visible for a "man in the middle"-Attack so if you can get a Personal Certificate from your Administrator it would be a better solution.
In my case the Administrator was not able to create a valid certificate so i tried this one.
vickydada said:
i had a same problem on my xda exec
the solution for this is ..............
instal a personal cretificate....
u can try it from here
http://www.jacco2.dds.nl/networking/p12imprt.html#Download
even if after instaling
if it says validation error try this
The only thing you have to do is to add a DWORD Regestry Entry under HKEY_LOCAL_MAICHNE-->Comm-->EAP-->Extension-->25
Name:"ValidateServerCert"
Value: 1 to activate Validation, 0 to turn it off
Click to expand...
Click to collapse
So I installed WM6.0. The option to turn off validation is not there. Attached are the options. Any ideas?
wishmaster270 said:
Hi,
i used 802.1x authentication on my MDA.
The only thing you have to do is to add a DWORD Regestry Entry under HKEY_LOCAL_MAICHNE-->Comm-->EAP-->Extension-->25
Name:"ValidateServerCert"
Value: 1 to activate Validation, 0 to turn it off
If you need a Regestry Editor you can use PHMRegedit.
Click to expand...
Click to collapse
Hello, i have the same problem with validation, but ading regestry key did not help. my phone is htc touch. can anybody sugest any option ?
i also have htc touch and cant connect to 802.1x at university.. please help
Hey guys,
I have a problem with the wifi connection on my phone. For some reason, it cannot connect to the school network.
https://sara.morehead-st.edu/ <--- this is the link for some requirements and where I have to download the root certificate they provide.
I try to connect, and I get a dialog asking for my username and password and I put it in but then I get "Unable to connect, connection requires a certificate to connect."
Here are what it says I must have:
Requirements
* Wireless LAN adapter with current drivers capable of:
o either 802.11a, 802.11b and/or 802.11g
o WPA/WPA2 (Wireless Protected Access)
o TKIP (Temporal Key Intergrity Protocol)
o PEAP (Protected Extensible Authentication Protocol)
MSChapV2 (Microsoft version 2 of Chap)
-OR-
EAP-TTLS
o IEEE 802.1x protocol
* Operating Systems:
o Windows XP
o Windows Vista
o Apple Mac OS X (10.3 or later)
o Windows Mobile 2003SE or later
o Linux or *BSD with suitable supplicant
* User Information:
o valid MSU Id
o valid Web PIN
o trusted root certificate
(see step-by-step guides)
Click to expand...
Click to collapse
Edit: Also, do you guys know how I can get the program to trim music files? I used to be able to do it in either Windows Media Player or Audio Manager, but I can't find the feature anymore.
Ask your IT guy to export the root certificate as a .cer file for you and copy it to your PDA, it should install if you just click on it. Then go to system>certificates and the personal tab, the new certificate should be in there.
If you tap on the name it should give details of the cert. Click ok and go to root tab and the cert should be in there.
Hey,
The root.cer file actually does fine. It says "Certificate accepted" and what-not and then I can also click on connect and get the dialog asking for my username and password. For some reason after that it just won't work. Like it just says connecting and then eventually tries another connection.
The phone does support this system and has all the right things right?
Is there any programs that help with connections or increases options of your connection?
Please guys
I am unable to browse anything when in class
Hello,
planning to upgrade my PDA to an other WM6 rom,
I would like to get my passphrase before to still have access to my
profssionnal network.
(key which has not been setup by me) for wifi WPA-PSK TKIP
all I se from wifi cfg interface is an hided password .
is it possible to get the passphrase from registry / cfg file/ plain txt / with tool?
thx
no one has a solution to unclear the password ?
Hello.
Eduroam..
I require to connect to wifi spot, which is broadcasting with user and password , securew2 for PC to work.
Is there a way to connect to it, via htc tattoo?
The options WPA-enterprise, Ttls, with no certificate needed.
I have to insert: username: X99999 (ex)
Password :XXXX
domain: medline.med.pt
How do i put that? i tryed wify helpper .. well nothing works?
A guy told me to replace the file: wpa_supplicant.conf which i think is at /etc/wifi/ but can also be found on the /system/bin i guess... which i need to replace?
this is the text to replace on that file:
ctrl_interface=/var/run/wpa_supplicant
ctrl_interface_group=0
eapol_version=1
ap_scan=1
network={
priority=2
ssid="e-U"
scan_ssid=1
# proto=WPA
key_mgmt=IEEE8021X
eap=TTLS
phase2="auth=PAP"
ca_cert="/root/FMUP-ROOT-CA.pem"
identity="[email protected]"
password="colocarpassword"
phase2="auth=PAP"
}
Click to expand...
Click to collapse
I've connected do eduroam with no problem. Just turned on Wireless, and pressed at the eduroam spot.
Then just choose Set EAP Type to PEAP and Set Phase 2 Authentication to MSCHAP2.
Then just introduce you user and password.
Cheers
i'm studying in Seville and i must use eduroam too. i've bought today a tattoo, but have not yet, til tuesday...in my faculty, we use TTLS, such mmike21, not MSCHAP.mmike, you're in the right direction, such android is linux, i use, wpa-supplicant to connect to eduroam in debian. i can not even be of more help because I don't have the tattoo, but when i have maybe I can help. greetings
Anyone else have this issue? I heard about the bug in 2.2 that caused phase 2 authentication to not hold, but it appears it made it to 3.0. When trying to connect to my work network, I select MSCHAPv2, and other appropriate settings; however no connection is made. When I go back into the settings, the phase 2 authentication is set to none.
I have tried creating the connection manually, resetting the connect over and over, still no luck. Any ideas?
Have the same issue!
No workaround or patch yet
Brgds,
S.
I have mine working here in my office without issue.
The key thing you need is the Cert.
On my network, there are 2 ways to get it.
1. Find the .cer file and put it on the ROOT of the "SDCard" (internal storage)
1. Be sure the {filename}.cer file is on the ROOT of your SD Card (not inside any folders)
2. From Home Screen, go into Menu > Settings
3. Depending on your phone, you may see either:
a. Location & Security
b. Security4. Go into whichever menu option you have
5. Scroll to the bottom and click Install from SD card
6. You will either be prompted to import and create a password (which should be something you will remember) or you will see an error that no certs could be found. This is normal and does not mean it will not work, just continue with the steps below and all should be fine.
7. Next turn on Wi-Fi
8. Go into Wi-Fi Settings
9. Click Add-Wi-Fi Network and enter the following:
a. SSID: {Your-SSID-Here} (Case Sensitive!!!)
b. Security: 802.1x Enterprise or 802.1x EAP (Not all devices will have this option)
c. CA Certificate: None Specified (here, you MUST click on the None Specified and then click again on the None Specified in order for the cert to be picked up on your SD Card. Not all devices will have this option)
d. User Certificate: None Specified (this one can be left alone. Not all devices will have this option)
e. EAP Method: PEAP
f. Phase 2 authentication: MSCHAPV2
g. Identity: Your Domain account name (you do not need to put {DOMAIN}\ in front of your user name)
h. Anonymous identity: Leave this BLANK
i. Wireless Password: Your DOMAIN domain password
Note: On some devices or ROM’s (for those that are rooted), you will be prompted for the Cert Password when re-connecting to the W-Fi Network; this will be the password you used in step 6.
2. Log into the Guest Wireless account, fire up the browser and log into when asked. This will download the cert.
Once either of those are done, set up your wireless connection and it works.
Now, I know it's different for other networks out there, but give me some info and I'll see if I can help.
Thanks.
Updated above