Internet access system through the Wireless Network of the University of Bologna (last update 7.03.2012) Printable service summary document: the updated version is available online at the following address http://www.unibo.it/almawifi A WPA security access system has been implemented on every access point according to the requirements of WI-FI Alliance, which guarantees complete encryption of all the traffic flows. In more detail, the WPA system has been configured with TKIP and EAP (IEEE 802.1x) standards, where active directory users of the University DSA are validated by a centralized Radius Server. We remind you that user credentials should be activated by setting a personal password via the following website https://www.dsa.unibo.it For further information about connection problem please consult FAQ ALMAWIFI at http://www.unibo.it/almawifi Client configuration using Windows Vista A new Internet connection must be configured on the basis of the parameters listed here below, which are described here in a step-by-step manner. From Start Menu open Control Panel : 1
Open Network and Sharing Center : Select Manage Wireless Network. 2
Now you should view window similar as below; click on Add option: Select Add a network that is in range of this computer : 3
Select the network which SSID is ALMAWIFI and click on Connect. Note: if this network does not appear, verify that your wireless interface is enable and you are in zone covered by wireless radio signal. Windows Vista now displays the following page: Click on Enter\select additional log on information. NOTE: If you have previously entered your wireless credentials on this computer, "Enter/Select additional log on information" will not appear. 4
A pop-up is opened where your USER ID and PASSWORD must be entered, as well as the domain The User ID and the Password to be entered are the ones provided for registration to the Active Directory of the University, typically name.surname. The domain field may remain void. PERSONALE for staff of University STUDENTI for students of University Additional logon information window will appear again. Click "Enter/Select additional log on information" again. Click View Server Certificate to view the server certificate: 5
You must control that the certificate is Issued to: cesiaweb.unibo.it and Issued by: Thawte Premium Server CA. Click OK to accept the server certificate. After this step, your credentials are checked via a remote Radius Server and, if the data provided are correct, the access is validated and an IP address is provided by a DHCP local server. From this moment on, validation is automatically performed by the operating system at every connection and the credentials need no longer be entered. 6
You should now be connected to ALMAWIFI and be given the option to save the connection and connect automatically when you are in range. If you have connection problem check your detail configuration: return to Manage Wireless Network window and double click on ALMAWIFI network created. The following window proprieties will display: 7
Verify this setting and click on Security tab; after verification in this tab click on Settings - Check Validate server certificate; - under Trusted Root Certification Authority: voice "thawte Primary Root CA" must be check; - check Do not prompt user to authorize new servers or trusted certification authorities; - then set "Select Authentication Method:" to "Secure password (EAP-MSCHAP v2)" and click the "Configure..." button. 8
"Automatically use my Windows logon name and password" must be uncheck, then click OK until you are back at the "Manage Wireless Network" window. 9