Nokia E61 Wireless: 802.1x with EAP-PEAP and EAP-MSCHAPv2
I’m using 802.1x authentication with EAP-PEAP and EAP-MSCHAPv2 for wireless access at home which can pose a unique challenge in getting a myriad of devices to work within my network. I’m using the box standard Active Directory on Windows Sever 2003 with the Internet Authentication Service coupled to a Linksys WRT54G running custom firmware. I’m also self-signing Digital Certificates with the Certificate Authority (CA) service in Windows Server 2003. The following is what I did to get the Nokia E61 working:
Installing a CA Certificate:
- Point your browser to http://IPofCA/CertSrv/.
- Click Download a CA certificate, certificate chain, or CRL.
- Select the proper CA Certificate.
- Pick DER under Encoding method.
- Click Download CA Certificate.
- Save the certificate file (.cer extension) to any location on your PC.
- Connect the Nokia E61 to the PC and copy the download certificate file to any location on the phone.
- On the Nokia E61, browse to the location of the certificate file with the file browser and click on it to install.
Configuring Wireless on the Nokia E61:
- Navigate to Tools -> Settings -> Connections -> Access points. Press the Options (soft-key) -> New access point -> Use default settings.
- Connection name: (Pick an appropriate name)
- Data bearer: Wireless LAN
- WLAN netw. name: (Your WLAN)
- Network status: Public
- WLAN netw. mode: Infrastructure
- WLAN security mode: 802.1x
- Select WLAN security sett.
- WPA mode: EAP
- Select EAP plug-in settings
- Highlight EAP-PEAP and press Options (soft key) -> Enable
- Raise the priority of EAP-PEAP via Options (soft key) -> Raise priority until it is in position #1
- Uncheck everything else by pressing Options (soft key) -> Disable
- Go back to EAP-PEAP then press Options (soft key) -> Configure
- User certificate: (not defined)
- CA certificate: (Pick the certificate you installed above)
- User name in use: User-configured
- User name: (Your Active Directory user name ONLY! No reference to the Domain should be here. For example, “MyDomain\BobJones” or “BobJones@MyDomain” are wrong. Only “BobJones” should go in this field.
- Realm in use: User-configured
- Realm: (Your Active Directory Domain)
- Allow PEAPv0: Yes
- Allow PEAPv1: No
- Allow PEAPv2: No
- As before, select EAP-MSCHAPv2 and move it to the #1 position via Options (soft key) -> Raise priority and unselect everything else via Options (soft key) -> Disable.
- Select EAP-MSCHAPv2 then press Options (soft key) -> Configure
- User name: (Your Active Directory domain and username in the format: “MyDomain\BobJones”)
- Prompt password: No
- Password: (Your Active Directory password)
- Enable all
- General tab:
-
EAP tab:
-
Encryption tab:
Now go to the web browser and select your new access point to test it out. If everything went as expected, then you’ll see both the Nokia wireless icon with a little lock in the status bar and be able to browse the internet.
Comments
5 Responses to “Nokia E61 Wireless: 802.1x with EAP-PEAP and EAP-MSCHAPv2”
-
-
Google Ads
-
The Social Web
-
Links
-
Blogroll
Hi,
that blog-entry helped me alot. thanx!
Hello!
Thanks for these settings, but that’s what I entered and I can’t get mine to work..
What’s your firmware version on your Nokia e61?
mine is a Nokia e70 and the firmware is:
1.0610.05.07
30-05-06
RM-10
Nokia E70
Cheers,
Nico
Mine is N80 Internet edition. Settings are quite similar but it don’t work on my environment.
V4.0632.0.38
13-10-2006
RM-92
Nokia N80 (11)
Glad that u managed to get yours (E61) working.
Thanks… downloading a certificate is one step that hadn’t occured to me… thanks!
Note for N80 Internet Edition person… that is what I have also, and some poster in the Nokia forums claims that now EAP-PEAP and LEAP work with the latest firmware that just was realeased.
I just upgraded yesterday and my phone now shows:
V4.0707.0.7
28-03-2007
RM-92
Nokia N80 (12)
I still can’t get it to work though with EAP-PEAP.
Thanks. Working great on an N95 (11.00.26) also.