Here is how to make a PC connect to a secure wireless network BEFORE the user logs in.
Requirements: Must have WinXP SP 2 installed and have some way of getting the files to the PC whether via wired network or USB Drive and be logged into the PC with Admin privileges.
1. Install the Microsoft patch WindowsXP-KB893357-v25-x86-ENU.exe available to Genuine users at the M$ download area.
2. (Edit the registry at your own risk!!) In HKLM Software Microsoft EAPOL Parameters General Global create a new DWORD Value "AuthMode" Data=2.
3. Import your Certificate to the Computer Certificate Store (not the User Store!) by opening MMC, adding "Certificates" and choosing "Local Computer" Then import the cert into the "Trusted Root Certificate Authorities" store.
4. Install the latest software available from the wireless client manufacturer.
5. Open the Service Manager and disable the manufacturers software configuration service and enable the M$ "Wireless Zero Configuration" service.
6. Reboot the PC, log in with admin privileges again.
7. (Your settings will differ depending on your configuration, these are mine) Open the "Wireless Network Connections" screen. Open "Advanced settings" Enter your SSID, select WPA2 and AES and click the Authentication tab. Select "PEAP", "Authenticate as Computer" and click the "Properties" button. Check "Validate" and select your certificate. OK to close everything.
8. Restart the PC in Wireless mode and you should be connected to the network.
Simple, once you know how. I must say, it is much easier to do this in Vista. Not possible (I don't think) in W2K since it does not support WPA2.
No comments:
Post a Comment