Apple Mac OS X v10.3 (Panther) or v10.4 (Tiger)
Please note that along with other various enhancements and import bug fixes, the patches released by Apple include important enhancements to the wireless subsystem. Therefore, we highly recommend that you ensure that your Apple system is fully up to with all patches before proceeding with these directions.
NOTE - Your wireless card needs to be registered through WPI Network Registration (http://netreg.wpi.edu/) prior to working on the WPI Wireless Network.
Setup of WPI Wireless Network
- Make sure your computer's clock is set to the correct date and time.
- Find your Mac OS X wireless MAC address (AirPort ID).
- Make sure your computer's wireless MAC address is registered through WPI Network Registration.
- Wait 30 minutes for your registration to become active.
- Using a Mac or PC that is already on the Internet, browse to the WPI Wireless Networking Certificate Files secure download page.
- Log in using your CCC account.
- From the Mac OS X v10.6 (Snow Leopard) and earlier section, download the Wireless User Certificate File and Network Operations CA Certificate File files and make a note of the Wireless User Certificate Password at the top of the page which is needed to unlock the certificate file.
- Copy the netops-ca.cer and Wireless-User.p12 files that you downloaded to the Mac you want to connect to the WPI Wireless network.
- Open a Finder window. Navigate to the Applications folder, and then the
Utilities folder. Find and launch the Keychain Access application.
File -> Import.
- Select the netops-ca.cer file to import, and X509Anchors for the Keychain. If
there is more than one CA file, repeat for each one.
- The WPI NetOps CA certificate should now appear in the list of certificates in the X509Anchors
File -> Importagain. This time, select the Wireless-User.p12 file to import and login for the keychain. When prompted, put in the password for the certificate from the secure download page.
- The Wireless User 05-06 certificate should now appear in the login keychain.
- Launch Internet Connect from the Applications folder.
- From the menu, select File -> New 802.1X Connection
- From the Configuration list, select Edit Configurations.
- Create a new configuration with a name of your choice, such as WPI. The values
- Network Port: AirPort
- User Name: left blank
- Password: left blank
- Wireless Network: WPI-Wireless
- Authentication: TLS checked, all others unchecked
- While TLS in the Authentication list is highlighted, click the Configure button
and ensure that the Wireless User 05-06 certificate is selected.
- Click Ok out of the dialog boxes, and then close Internet Connect.
- The first time that you attempt to use certificate authentication, you may be
presented with a dialog box asking for permission to use the Keychain. You should
select Always Allow
- The first time that you connect to the network, you should be presented with a dialog
box warning that the server certificate is untrusted.
- Select Show Certificate and ensure that the server certificate is named
WPI NetOps Radius Server, and is signed by the WPI NetOps CA certificate.
If the certificate is named differently, or is not signed by the correct CA, you are attempting to a network that is falsely claiming to be the WPI wireless network. This is likely to be a malicious attempt to fool users into connecting to an attackers network, and should be reported to WPI Network Operations immediately.
Last modified: Sep 20, 2012, 13:35 EDT