Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
System
Figure 1
Wi-Fi Enterprise and 802.1X encryption in Mac OS X
In this tutorial, I will show you how to configure and connect WPA / WPA2-Enterprise networks in Leopard and 10.6 Snow Leopard.
In this tutorial, I will show you how to configure and connect WPA / WPA2-Enterprise networks in Leopard and 10.6 Snow Leopard.
Connecting to an 802.1X network
Let's first learn how to connect to an 802.1X network without creating a profile.
If the EAP type is enabled by the RADIUS server as TLS, then you must install the client security certificate for Mac OS X. However, PEAP and TTLS protocols do not require this client certificate.
Now to connect, select the wireless network from the AirPort menu on the top of the desktop as you see it on any network.
If PEAP or TTLS is active, you will be prompted to log in, as shown in Figure 1 below. Enter user name and password. If you want to save your login credentials so that you don't need to enter them again the next time you log in, select Remember this network . Then click OK to continue.
Figure 1
If the RADIUS server certificate is not issued by the Certification Authority (CA) trusted by Apple, then you will be prompted to verify the server's digital certificate, as shown in Figure 2. Ensure that The certificate is issued to the correct domain and is issued by the correct CA. So you don't have to do this every time, just check the trust option. If everything is valid, click Continue to trust it and connect.
Figure 2
Create network locations
Mac OS X includes a network location feature, where you can apply network settings based on location. This is especially useful for laptops and if you will create a Window or System login profile for your 802.1X settings.
You can learn more about these profile types in the next section before doing so. If you will set up a simple User profile, you may not need to create network locations.
If you need it, here's how to create a network location:
- Click Apple > System Preferences > Network .
- From the Location drop-down menu above, select Edit Location .
- Click the Add (+) button at the bottom of Location, name it and then click Done .
You need to manually change the network location when you switch to another location.
Create 802.1X profile
Connecting to an 802.1X network is similar to what we have done, being able to save login credentials (if you choose to network), creating 802.1X profiles can still provide additional functionality. . Profiles can be streamline or enhance the login procedure, depending on the profile you create.
Let's take a look at some types of profiles:
- User Profile: This is the simplest profile type and the default type if you don't know which profile type to choose. You can have multiple user profiles on one computer and they are not tied to certain Network Locations. However, you cannot use profiles on domain networks with directory services, such as Open Directory or Active Directory.
- Login Window Profile: This profile does not apply to Mac accounts. It only works with domain networks that have directory services. Mac OS X uses the same certificate since users log into their Mac account to authenticate both to the 802.1X network and to the directory service. You can have multiple Login Window profiles on each Network Location, but they will replace any User profile.
- System Profile: This profile does not apply to local Mac accounts, only to domain networks. It allows connecting to the network when no one is logged into the computer, great when administrators need access to the network on the computer. You only have one instance for this profile type on each location and it will replace any User profile and Login Window profile.
Remember, if you use TLS-style EAP, then you must install a client security certificate for Mac OS X.
If you create a Login Window profile or System profile, you need to verify that you are connected to the Open Directory or Active Directory server. In 10.5, use Directory Utility: click Go> Utilities and open Directory Utility. In 10.6, click System Preferences > Accounts > Login Options .
To start creating a profile, call the 802.1X settings window: click AirPort icon > Open Network Preferences . On the Network window, click the Advanced button, select the 802.1X tab .
In 10.5, select the desired profile type with the Domain drop down menu.
In 10.6, click the Add button (plus sign) to select the desired profile type, enter a name for the configuration and press Enter .
If you have selected a User profile (see Figure 3):
- In 10.5, click the Add button (plus sign), enter the configuration name and press Enter .
- Enter your User Name and Password , unless you are using TLS.
- In 10.6, select Always prompt for password if you do not want to save the login credentials.
- Select the network name, from the Wireless Network list, or enter the SSID of a hidden network.
- Select the desired protocol from the Authentication list box.
- Click OK and then on the Network window, click Apply .
Figure 3
If you select Login Window profile (see Figure 4):
- Select the network name, from the Wireless Network list, or enter the SSID of the hidden network.
- Select the desired protocol from the Authentication list box .
- Click the Enable 802.1X Login button
- Click OK and then on the Network window, click Apply .
Figure 4
If you want to disable this profile, go back to the 802.1X settings and click the Disable 802.1X Login button .
If you create the System profile (see Figure 5):
- Enter your User Name and Password , unless you are using TLS.
- Select the network name, from the Wireless Network list, or enter the SSID of the hidden network.
- Select the desired protocol from the Authentication list box .
- Click the Enable 802.1X button .
- Click OK, then on the Network window click Apply .
Figure 5
By default, you will be prompted to login when connecting to the network, which will automatically save the login credentials. To save them first, you can open the preferred AirPort network entry, enter the login credentials, click Remember this network , and Add .
If you want to disable this profile, go back to the 802.1X settings page and click the Disable 802.1X button .
Some tips during the process:
- If you connect to a simpler network without a central directory service, you may not need to create a profile - just connect as we discussed above.
- Continuously updating Mac OS X, there are many updates related to 802.1X authentication management.
- The Profile type you use does not change the actual RADIUS properties and traffic; they are specific to Mac OS X.
- If something goes wrong, be sure to remove any previous preferred network entries, 802.1X profiles, 802.1X certificates from Keychain (TLS), and then start over.
Similar Post
- Setting up Wi-Fi authentication in Windows Server 2008 - Part 1
- Discover the difference between symmetric and asymmetric encryption
- Top 20 best encryption software for Windows
- Adiantum, Google's new encryption method helps ensure safety for all Android devices
- What is data encryption? Things to know about data encryption
- File encryption software and privacy protection messages
MORE LIKE THIS
- Instructions on how to install DD-WRT
- Tutorial on DD-WRT - Part 5: Wireless repeater
- Set up Wi-Fi authentication in Windows Server 2008 - Part 2
- New Wi-Fi features in Windows 7
- Experience these 8 classic operating systems right on the browser
- How to create a Wi-Fi or WLAN Report history in Windows 10
- How to set up shortcuts to quickly lock Mac OS X screen
- Setting up Wi-Fi authentication in Windows Server 2008 - Part 1
- Configure wireless connection of Windows Vista from CLI with netsh wlan
- Storage configuration
FOLLOW US ON
-
Learn about the size of a network cabinet and how to choose a network cabinet that suits your needs - Instructions for setting up and managing Network Bridge on Windows 10
- How to scan local area network with Terminal on macOS
- How to fix connection failure Garena quickly
- What is port 0 used for?
- 3 ways to enable or disable Network Discovery on Windows 7/8/10
Learn about the size of a network cabinet and how to choose a network cabinet that suits your needs 
Instructions for setting up and managing Network Bridge on Windows 10 
How to scan local area network with Terminal on macOS 
How to fix connection failure Garena quickly 
What is port 0 used for? 
3 ways to enable or disable Network Discovery on Windows 7/8/10 
Windows XP
Windows Server 2012
Windows 8
Windows 7
Windows 10
Wifi tips
Virus Removal - Spyware
Speed up the computer
Server
Security solution
Mail Server
LAN - WAN
Ghost - Install Win
Fix computer error
Configure Router Switch
Computer wallpaper
Computer security
Windows 11
Mac OS X
Hardware
Game