WPA Wireless Installation

Please note that along with other various enhancements and import bug fixes, the patches released by Apple include important enhancements to the wireless subsystem. Therefore, we highly recommend that you ensure that your Apple system is fully up to with all patches before proceeding with these directions.

Requirements

• Apple Macintosh running Mac OS X v10.3 (Panther) or v10.4 (Tiger)
• Date and time set correctly

NOTE - Your wireless card needs to be registered through WPI Network Registration (http://netreg.wpi.edu/) prior to working on the WPI Wireless Network.

Setup of WPI Wireless Network

1. Make sure your computer's clock is set to the correct date and time.
2. Find your Mac OS X wireless MAC address (AirPort ID).
3. Make sure your computer's wireless MAC address is registered through WPI Network Registration.
4. Wait 30 minutes for your registration to become active.
5. Using a Mac or PC that is already on the Internet, browse to the WPI Wireless Networking Certificate Files secure download page.
6. Log in using your CCC account.
7. From the Mac OS X v10.6 (Snow Leopard) and earlier section, download the Wireless User Certificate File and Network Operations CA Certificate File files and make a note of the Wireless User Certificate Password at the top of the page which is needed to unlock the certificate file.
8. Copy the netops-ca.cer and Wireless-User.p12 files that you downloaded to the Mac you want to connect to the WPI Wireless network.
9. Open a Finder window. Navigate to the Applications folder, and then the Utilities folder. Find and launch the Keychain Access application.
   
10. Select File -> Import.
    
11. Select the netops-ca.cer file to import, and X509Anchors for the Keychain. If there is more than one CA file, repeat for each one.
    
12. The WPI NetOps CA certificate should now appear in the list of certificates in the X509Anchors keychain.
    
13. Select File -> Import again. This time, select the Wireless-User.p12 file to import and login for the keychain. When prompted, put in the password for the certificate from the secure download page.
    
14. The Wireless User 05-06 certificate should now appear in the login keychain.
    
15. Launch Internet Connect from the Applications folder.
    
16. From the menu, select File -> New 802.1X Connection
    
17. From the Configuration list, select Edit Configurations.
    
18. Create a new configuration with a name of your choice, such as WPI. The values should be:
    • Network Port: AirPort
    • User Name: left blank
    • Password: left blank
    • Wireless Network: WPI-Wireless
    • Authentication: TLS checked, all others unchecked
    
    
19. While TLS in the Authentication list is highlighted, click the Configure button and ensure that the Wireless User 05-06 certificate is selected.
    
20. Click Ok out of the dialog boxes, and then close Internet Connect.
21. The first time that you attempt to use certificate authentication, you may be presented with a dialog box asking for permission to use the Keychain. You should select Always Allow
    
22. The first time that you connect to the network, you should be presented with a dialog box warning that the server certificate is untrusted.
    
23. Select Show Certificate and ensure that the server certificate is named WPI NetOps Radius Server, and is signed by the WPI NetOps CA certificate.
    If the certificate is named differently, or is not signed by the correct CA, you are attempting to a network that is falsely claiming to be the WPI wireless network. This is likely to be a malicious attempt to fool users into connecting to an attackers network, and should be reported to WPI Network Operations immediately.
    

Your computer should now automatically connect to the WPI-Wireless network.