Secure credential storage and RAM builds - HD2 Android Q&A, Help & Troubleshooting and Genera

Hello people!
My university Wi-Fi uses WPA2 Enterprise for security and we authenticate using the following settings:
EAP Method: PEAP
Phase 2 authentication: MSCHAPV2
CA Certificate: Thawte Premium CA
and identity and password being our student credentials.
Now, I got this setup running by installing the required certificate exported from my windows machine and using THIS tool.
When I install the certificate, I set a password for the secure credential storage and enter the password to enable credential storage.
Now the problem:
Only on RAM builds, the OS seems to forget that I've already setup the credential storage before and asks me to set a new password for it. Also, the phase 2 authentication does not seem to be set (even when I set it to use MSCHAPV2, the selection returns to blank after I close settings).
Any way to solve this issue?
Any help is much appreciated,
Thanks!

***BUMP***
Anyone?
Sent from my HTC HD2 using XDA App

Related

Enable WiFi PEAP Authentication with privately signed server certificates issue

Enable WiFi PEAP Authentication with privately signed server certificates
WM5 happily allows PEAP Authentication over WiFi, but it doesn't provide the check box that XP does to (un)select "Authenticate the server certificate". If your PEAP authentication server isn't signed with a pricey "official" certificate, WM5 will refuse to connect with an error message about not recognizing the server's certificate.
To force WM5 to accept the PEAP server's certificate without attempting any other validation, add the following registry key:
[\HKLM\Comm\EAP\Extension\25\]
"ValidateServerCert"=dword:00000000
I added this registry key and it is not working. What am i doing wrong?

Credential password?

Can anyone tell me:
What is the default Credential storage password.
What happens if you run out of attempts to unlock the Credential storage.
When the phone is rooted will it change, disappear, or remain the same.
I'm cautious
Appreciate it
Sent from my X10a using XDA App
nothin will chnage it will just reset if enetered too much times and yes it works
What is this used for, anyway??
i have no idea. But it only asks me for this password when I try to connect to enterprise networks
I think, like the name suggests, it is a keyword that is used to store a set of passwords with. The only place I have encountered this credential storage password is, as mentioned above, while trying to connect to enterprise networks

Authentication type bug detected in TF101G

Hi all.
I have detected a bug in authentication type option when configuring a new APN for 3G connection.
In my company, mobile devices connect via 3G connection to corporate network resources. The authentication is provided by our corporate RADIUS server. For reasons not related to this issue, the RADIUS server only provides PAP authentication.
So I have set in TF101G's APN configuration username and password and entered PAP authentication type, but I cannot access to my network resources behind APN.
I have obtained some log and sniffer traces from our corporate RADIUS server where I can observe that TF101G always tries to authenticate using CHAP. So that's the reason why authentication fails.
I've also tested it with samsung smartphones and tablets and it works Ok!!
So I would be pleased if you could verify this same behavior in TF101G. But you would need to obtain sniffer traces from authentication process to verify.
Please, could you confirm this behavior?
Many thanks in advance and best regards,
Ernesto.
sometimes my lips get CHAPPED
Don't worry about that. Wikipedia is up again:
en[dot]wikipedia[dot]org[slash]wiki[slash]Chapped_lips
Best regards,
Ernesto.

[SOLVED] VPN Client, Credential Storage Password Prompt

I tried to add a new IPSec VPN profile today and after saving the preshared key I was prompted to enter the Credential Storage password, which I have never setup. Anything I enter fails; I can keep trying indefinitely and it never prompts to reset credential storage.
Looking in Settings > Security > Credential Storage shows Storage type is "Backup to hardware" and not changeable and Clear credentials is also grayed out.
Why can't I create local credential storage secured by my own password with this device?
EDIT: So I found the workaround, but not really an answer to the credential storage issue:
http://www.pocketables.com/2014/02/fix-credential-storage-roadblock-android.html
Essentially, Credential Storage forces you to use PIN or Password unlock options only, but you must disable all unlock options first and run something that requests credential storage to enable it. If you set PIN or Password unlock yourself and try to enable credential storage in VPN it will fail. Thankfully I don't need to use VPN from device really so i can go back to Fingerprint unlock, but hopefully this helps someone else in the future.
I've tried it repeatedly, all with same results. Not sure how to resolve it yet
Sent from my SM-G900V using Tapatalk
By the way, I brought this issue to both Samsung and Verizon support and their only answers were to perform a factory reset.
Lesson learned: I'm better at supporting my device than the manufacturer and carrier combined.

PEAP EAP WiFi - Android 7

I am trying to connect to eduroam (a university WiFi network that's rather popular), however the phone never really connects. The settings that are supposed to be used are:
EAP method - PEAP
Phase 2 authentication - MSCHAPV2
CA certificate - Unspecified
Identity - <my name>@<university>.edu
Anonymous identity - blank
Password - <my password>
However, now with Android 7, I cannot select unspecified for the CA certificate, only "Use system certificates" and "Do not validate". None of those options work.
There is an app called SecureW2 JoinNow that is supposed to automatically connect to the types of networks eduroam is with a custom CA certificate. Even after using this app to connect to the WiFi, all the phone does is attempt to connect. Everything works fine in Android 6.
Any ideas?
Have you found a solution to this? I am having this same problem trying to get my Pixel XL to connect my work WiFi which includes a private network and Eduroam. Had no problems on previous Android builds prior to 7 when you could leave "Use system certificates" as "Unspecified".
chauncy42 said:
Have you found a solution to this? I am having this same problem trying to get my Pixel XL to connect my work WiFi which includes a private network and Eduroam. Had no problems on previous Android builds prior to 7 when you could leave "Use system certificates" as "Unspecified".
Click to expand...
Click to collapse
Actually, I am able to join without problem now on my pixel as opposed to my Nexus 6P. I would try the app SecureW2 JoinNow. It was what allowed me to finally connect on my 6P, though when I tried it on my Pixel it didn't work and I had to use just the OS's wifi connection dialog box and selecting use system certificate and only entering my username in the username field, and my universities domain in the domain field.
gakio12 said:
I am trying to connect to eduroam (a university WiFi network that's rather popular), however the phone never really connects. The settings that are supposed to be used are:
EAP method - PEAP
Phase 2 authentication - MSCHAPV2
CA certificate - Unspecified
Identity - <my name>@<university>.edu
Anonymous identity - blank
Password - <my password>
However, now with Android 7, I cannot select unspecified for the CA certificate, only "Use system certificates" and "Do not validate". None of those options work.
There is an app called SecureW2 JoinNow that is supposed to automatically connect to the types of networks eduroam is with a custom CA certificate. Even after using this app to connect to the WiFi, all the phone does is attempt to connect. Everything works fine in Android 6.
Any ideas?
Click to expand...
Click to collapse
My solution was to change ca certification to none which worked briefly so I cleared both the caches in twrp which seemed to solve it for me.
jcroy2828 said:
My solution was to change ca certification to none which worked briefly so I cleared both the caches in twrp which seemed to solve it for me.
Click to expand...
Click to collapse
This worked!! Thank you!

Categories

Resources