Microsoft Windows XP/7
Contents
Get CA Certificate
In order for the server to "trust" certificates generated through pkIRISGrid they must have the Certificate Authority (CA) root certificate installed.
Download the file IRISGridCA.der from Microsoft Internet Explorer and click on “Abrir”.
Click on “Instalar certificado ...”.
Click on “Siguiente”.
Select "Colocar todos los certificados en el siguiente almacén:" option and click on "Examinar".
Click on “Siguiente”.
Click on “Finalizar”.
Click on “Sí”.
Finally, click on “Finalizar”.
Configuring Windows XP supplicant
Go to "Inicio -> Conectar a -> Mostrar todas las conexiones".
Right-click on the “Conexiones de red inalámbricas” and choose “Propiedades”.
Go to "Redes inalámbricas" tab, check "Usar Windows para establecer mi configuración de red inalámbrica", and click on “Agregar”.
Enter "eduroam" for the “Nombre de la red (SSID)”, select “WPA2” for the “Autenticación de red”, select “AES” for “Cifrado de Datos”.
In the “Autenticación” tab, check “Habilitar la autenticación IEEE 802.1X en esta red” for this network, choose “EAP protegido (PEAP)” for “Tipo de EAP”, and click on “Propiedades”.
In the “Propiedades protegidas de EAP” window, select “Validar un certificado de servidor”, check “IRISGridCA” for “Entidades emisoras raíz de confianza”, and choose “Contraseña segura (EAP-MSCHAP v2)” for “Seleccione el método de autenticación”. Then click on “Configurar”.
Finally, in the “Propiedades de EAP MSCHAPv2” window, unselect “Usar automáticamente el nombre de inicio de sesión y la contraseña de Windows (y dominio, si existe alguno).”
Configuring Windows 7 supplicant
Go to "Control Panel -> All Control Panel Items -> Network and Sharing Center" and choose "Set up a new connection or network".
Choose "Manually connect to a wireless network" and click on "Next".
Enter "eduroam" for “Network Name” and click on “Next”.
Click on “Change connection settings”.
In the “Security” tab, select “WPA2-Enterprise” for the “Security type”, select “AES” for “Encryption type”, choose “EAP protegido (PEAP)” for “Tipo de EAP” and click on “Settings”.
In the “Protected EAP Properties” window, select “Validate server certificate”, check “IRISGridCA” for “Trusted Root Certification Authorities”, and choose “Secured password (EAP-MSCHAP v2)” for “Select Authentication Method”. Then click on “Configure”.
Finally, in the “EAP MSCHAPv2 Properties” window, unselect “Automatically use my Windows logon name and password (and domain if any).”
