Nokia E61 Wireless: 802.1x with EAP-PEAP and EAP-MSCHAPv2

I’m using 802.1x authentication with EAP-PEAP and EAP-MSCHAPv2 for wireless access at home which can pose a unique challenge in getting a myriad of devices to work within my network. I’m using the box standard Active Directory on Windows Sever 2003 with the Internet Authentication Service coupled to a Linksys WRT54G running custom firmware. I’m also self-signing Digital Certificates with the Certificate Authority (CA) service in Windows Server 2003. The following is what I did to get the Nokia E61 working:

Installing a CA Certificate:

1. Point your browser to http://IPofCA/CertSrv/.
2. Click Download a CA certificate, certificate chain, or CRL.
3. Select the proper CA Certificate.
4. Pick DER under Encoding method.
5. Click Download CA Certificate.
6. Save the certificate file (.cer extension) to any location on your PC.
7. Connect the Nokia E61 to the PC and copy the download certificate file to any location on the phone.
8. On the Nokia E61, browse to the location of the certificate file with the file browser and click on it to install.

Configuring Wireless on the Nokia E61:

1. Navigate to Tools -> Settings -> Connections -> Access points. Press the Options (soft-key) -> New access point -> Use default settings.
2. Connection name: (Pick an appropriate name)
3. Data bearer: Wireless LAN
4. WLAN netw. name: (Your WLAN)
5. Network status: Public
6. WLAN netw. mode: Infrastructure
7. WLAN security mode: 802.1x
8. Select WLAN security sett.
1. WPA mode: EAP
2. Select EAP plug-in settings
1. Highlight EAP-PEAP and press Options (soft key) -> Enable
2. Raise the priority of EAP-PEAP via Options (soft key) -> Raise priority until it is in position #1
3. Uncheck everything else by pressing Options (soft key) -> Disable
4. Go back to EAP-PEAP then press Options (soft key) -> Configure
General tab:
1. User certificate: (not defined)
2. CA certificate: (Pick the certificate you installed above)
3. User name in use: User-configured
4. User name: (Your Active Directory user name ONLY! No reference to the Domain should be here. For example, “MyDomain\BobJones” or “BobJones@MyDomain” are wrong. Only “BobJones” should go in this field.
5. Realm in use: User-configured
6. Realm: (Your Active Directory Domain)
7. Allow PEAPv0: Yes
8. Allow PEAPv1: No
9. Allow PEAPv2: No
EAP tab:
1. As before, select EAP-MSCHAPv2 and move it to the #1 position via Options (soft key) -> Raise priority and unselect everything else via Options (soft key) -> Disable.
2. Select EAP-MSCHAPv2 then press Options (soft key) -> Configure
1. User name: (Your Active Directory domain and username in the format: “MyDomain\BobJones”)
2. Prompt password: No
3. Password: (Your Active Directory password)
Encryption tab:
1. Enable all

Now go to the web browser and select your new access point to test it out. If everything went as expected, then you’ll see both the Nokia wireless icon with a little lock in the status bar and be able to browse the internet.

Removing Ads for Popular Windows IM Clients

The latest bunch of official IM clients have ads that not only play animations but some have sound that don’t respect the application’s other options of disabling sounds. Although the debate of removing ads while using a “free” is still quite valid, providing the information isn’t a crime (yet). Below are instructions on how to remove ads from the four official clients I use most frequently.

1. Google Talk: No ads (tongue-in-cheek). In addition to its integration with other Jabber clients, the lack of advertising alone should be reason enough to use the service but a large chunk of the untamed masses can’t be bothered to switch.
2. AOL Instant Messenger (AIM): Use AIM Ad Hack v4.15 for the old client (version 5.9.6089) or Ad Hack 5.2 for the new AIM 6.0 client. One caveat to watch out for if you’re using the old client is although AIM Ad Hack will successfully download the client, AOL has piggy backed upgrade software to download the new 6.0 client. If a window pops up with a progress bar and a message claiming to download new AOL software, just hit cancel and delete the resume download icon off the desktop. The rogue AOL downloader software is in a Windows temp folder which CCleaner will happily delete.
3. MSN Messenger / Windows Live Messenger: A-Patch is a tool with a whole host of options to configure the box standard MSN/Windows Live Messenger. Make sure to get the right version for the client running on your system.
4. Yahoo! Messenger: If running the 8.1 (latest version), Y!MSGR AD-Remover new 2 by Sunboy454 will remove the ad box completely.

   Prior to version 8.1, a simple edit of the Registry in Windows eliminated all ads. If you are still using an older client open Regedit, navigate to HKEY_CURRENT_USER\Software\ Yahoo\pager\YUrl and create a new string key named Messenger Ad that has the value * (an asterisk).

   Other keys you can create to remove ads from Yahoo Messenger:

   Webcam Upload Ad
   Webcam Viewer Ad
   Webcam Viewer Ad Big
   Webcam Viewer Ad Medium
   Change Room Banner
   Conf Adurl
   Chat Adurl

Force Flashing Vodafone-Branded Nokia E61

I’ve been rather frustrated with the reluctance of Vodafone UK to release any new firmware upgrades for the Nokia E61. As an American mobile phone user, I had always naively assumed Europe to be the panacea of the latest GSM-based gadgets (and associated firmware) that would take months before arriving State-side–not so with Vodafone. Although I have no knowledge of how other carriers are handling Nokia’s online software updating system, I was due in for a reflash due to various software bugs.

A big thank you goes out to Jeff Cross over at Average Admins for having already done the dirty work to make my wish a reality. I’ll make some comments on his basic instructions below (in italics) and provide screenshots of the process but I’d suggest heading on over to read up the discussion for useful pointers.

Note: This is an unsupported procedure and could leave your phone unusable so take the proper precautions if you choose to follow this tutorial. I cannot be held responsible if anything unexpected happens or if your phone is bricked.

Read more

Duplicate Appointments and Contacts in Microsoft Outlook

For years I’ve been using the same Outlook data files from Office XP to the latest Office 2007. Through all of these upgrades and synchronizing against various PDAs, phones, Exchange servers, and Google Calendar imports, I’ve amassed quite a large amount of duplicate appointments and contacts. It has gotten to be so bad that I specially allocated time during the Christmas season to eradicate the clutter.

My procrastination had gotten the best of me until a little digging on Google revealed the existence of a free utility called Outlook Duplicate Remover by Fr. Simon. This clever program only requires a few simple configuration options and does its job without a lot of fuss. There is no preview mode so take the necessary precautions (i.e. backup your PST file). Although the splash screen doesn’t mention Outlook 2003 nor Outlook 2007, it worked for me but your mileage may vary. Another item off my task list!

Nokia E61

I purchased a Nokia E61 two weeks ago and have been enjoying its well thought out design as a mobile messaging device. I was under the impression that a handheld that doesn’t crash and works as advertised out of the box (more on this later) was a fantasy. Push email is fantastic as is the web browser (from which I am typing this entry using the device’s keypad). On the other hand I find the lack of Outlook e-mail syncing and A2DP Bluetooth stereo to be a little bit of a pain. The major pitful keeping me from dumping my device in addition to the two above shortcomings is the lack of medical software. I will post an entry on how I use both my Axim x51v and Nokia E61 in my daily hospital routine in the next few weeks. Until then, read up OSNews’ review of the E61.

Hacking aspSysInfo

Started by Björn and Rob, aspSysInfo is a clone of the ever popular phpSysInfo script for Microsoft IIS-based web servers written using Active Server Pages (ASP). Both of these scripts display system statistics (phpSysInfo) such as uptime, memory usage, file system resources, network information, and a device list of the host being accessed in a neatly formatted HTML page. Although aspSysInfo has been dormant for almost a year, phpSysInfo has continued on and is now compatible on Windows with IIS. It still requires (you guessed it) PHP to be installed which is overkill for–what amounts to–eye candy.

Installation for aspSysInfo is very straight forward. Unrar the file into a directory on your webserver and register two DLL files in the /components directory (i.e. ‘regsvr32 c:\path\to\file.dll’). A few options can be changed in /includes/config.inc. Everything should be ready now. The page can be viewed by pointing your web browser to the directory where aspSysInfo is installed. It should look something like this:

Note: Unlike the example system above, I am running Windows XP Pro SP2 but aspSysInfo should work on any modern version of Windows.

Instead, I saw this page with VBScript runtime error ‘800a0006′:

Read more

Microsoft Windows Vista Beta 2 Initial Review

Following up on my post announcing Vista’s availablity from yesterday, I want to elaborate on my experience running Windows Vista Beta 2.

Although the latest Beta 2 detected all of my hardware except my smartcard reader, I’m not impressed with a few major areas. 802.1x authentication does not work which is quite a large hindrance especially for corporate customers running secure wireless networks. Mainly, it does not work in my WPA2-Enterprise (WPA2 + AES + RADIUS) wireless network running at my home. Vista would send the proper authentication information and the Microsoft IAS RADIUS server (running on a 120-Trial version of Win2k3) would grant access (confirmed via logs) but Vista would not grab an IP address. Statically setting an IP also failed to provide network access. I had to pull out an old WEP access point and finally Vista worked wirelessly. Due to WEP’s insecurity, I have resorted to having to use the built in gigabit ethernet. Albeit that most of the public doesn’t have as elaborate of a wireless set up at home, but I’m surprised that this functionality is broken in Beta 2.

USB2 is horribly slow. I connected a USB2 memory stick to copy some files off the system when wireless wasn’t working. The new Vista file copy progress dialog displays transfer rate. The fastest it ever got was a molasses slow 300KB/s! Can you imagine waiting almost 10 minutes to transfer 150 megs locally? I almost went nuts. Again, I acknowledge this is beta software, but is it that hard to get USB Mass Storage drivers to work properly?

Read more

Windows Vista Beta 2 Available for (Legal) Download

Microsoft has just released Windows Vista Beta 2 for download. Scroll down to the country selection box and enter in your Passport ID. Microsoft will provide a serial number that can be used on up to 10 machines. The download is a DVD ISO image that must be burned before installing which should self-select against the most novice of users.

Once installed, Vista will complain about the lack of a virus scanner. At this time, both Computer Associates and Trend Micro are giving away free trial software. Give either one a try–they are both great.

Also go grab the lastest Vista drivers for your video card to get Aero Glass working. nVidia Vista drivers for x86 and x64 are available. Ati Vista drivers for Radeon cards for x86 and x64 are also available. Go to ATI’s main Vista Driver knowledge base article to pick the appropriate driver if you have a notebook or motherboard with built-in graphics. If after installing the drivers Aero Glass does not work after clicking the check box, chances are you need to have Vista reevaluate the performance rating of your system. Once that is done, an Aero Glass compatible system will yield the transparent interface.

When testing don’t be surprised with the numerous bugs, broken functionality, and many current applications failing to install–this is a beta! Although the latest Beta 2 detected all of my hardware except my smartcard reader, I’m not impressed. As per my previous post, there are some issues with 802.1x authentication which is quite a large hindrance. The other annoyance is the new non-admin user model. It is completely broken and illogical. Inevitably, those people that get Vista Beta 2 working on their hardware will complain about constantly being bothered to elevate privileges. The end result will either be people disabling the new protection scheme or learning to click without reading–both scenarios are disastrous and will render this protection useless.

Microsoft is encouraging users to submit anonymous comments. Please do so! Not doing so means that we shouldn’t expect every problem to be fixed in the release version.

The State of Dell’s Axim x51(v)

Something is rotten in the state of Texas… and no it is not ghost of a dead king but a bug-ridden PDA…

Shame on Dell and Microsoft. For nearly 5 months, I have complained (repeatedly) about system crashes (white screen of death), random battery drainage, disappearing memory cards, lack of WPA2 support and a crippled Bluetooth stack amongst the problems to have completely ruined my latest foray back in to the PDA world. To even suggest that I consider my PalmPilot Pro I purchased in 1997 to be a far more stable and usable device for basic PIM functions over a WM5 device is an embarrassment for the companies involved.

Although the Axim community has petitioned and complained on the phone for fixes, Dell’s oft repeated response to its customers has been “an update is coming in two weeks.” Right… the latest ROM update is version A06 released on January 3, 2006. Five months of “two week” excuses is not only frustrating but also led many to lose faith in the competence of Dell’s mobile computing division. A majority of Dell’s most technically savvy customers have already given up on any future updates including the anticipated AKU 2.0 for the Axim x51(v). What about an update including Microsoft’s Messaging and Security Feature Pack for Push Email? I’m sure it’ll be another two weeks but don’t count on it.

Read more

Google Picasa Released for Linux

While looking around Google’s website, I found a link to a beta Linux version of Google Picasa. Some months ago Google hired Codeweavers, famous for the Wine project, to do a Linux port of Google’s much heralded picture management software. What this means is the application runs in Linux with the help of Wine’s open-source implementation of the Windows API. It looks like a win-win scenario because Google has released over 200 patches back to Wine and Linux users get a great program. The FAQ has a list of supported distros and a lot of other useful information. Will this product offer enough features for users to switch from current photo management software like digikam?

← Previous Page — Next Page →

• Recently Written

  • Where did medslides.com go?
  • Pulmonary Tuberculosis
  • Pancreatic Cancer: Advances in Treatment
  • How to Get Facebook’s New Layout
  • Vista Error: “Logitech LVPrcSrv Module. has stopped working” Fix
  • Live Messenger Error 2771 After Installing Windows XP Service Pack 3 (SP3)
  • “Bluetooth Device Not Found” After Windows XP Service Pack 3 (SP3) Install
  • Windows Updaters: Where Is the Unified API?
  • Windows XP SP3 Leaked onto Bittorrent and Usenet
  • Corsair Flash Voyager: Lifetime Warranty

• Categories

  • Cars
  • General
  • How-To
  • Medicine
  • Tech/Gadgets

• Archives

  • December 2008
  • November 2008
  • October 2008
  • July 2008
  • May 2008
  • April 2008
  • March 2008
  • January 2008
  • December 2007
  • July 2007
  • December 2006
  • August 2006
  • June 2006
  • May 2006
  • April 2006
  • March 2006
  • February 2006
  • January 2006
  • September 2005
  • August 2005
  • July 2005
  • June 2005
  • May 2005
  • April 2005
  • March 2005
  • February 2005

• Admin

  • Log in
  • WordPress
  • XHTML

• 
  

• Google Ads

• The Social Web

• Links

  

• Blogroll

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The rest: Copyright © 2004-2008 Hisham’s Blog, All rights reserved. All materials appearing on blog.hishamrana.com may not be reproduced or stored in a retrieval system without prior written permission of the publisher and in no case for profit. Disclaimer: The views expressed on blog.hishamrana.com are the sole responsibility of the authors whose articles are posted and do not necessarily reflect the views of the webmaster. The views reflected in the comments are those of the Poster and do not necessarily reflect the views of the webmaster.