Eduroam Windows XP Manual Instructions


How to connect a Windows XP computer to the Eduroam service

The wireless service enables members of the University to connect to the University network and the Internet using their own computers and devices at various locations around the University and Halls of residence. This guide contains instructions to connect a computer to the eduroam wireless service.


Step 0 - Install our Certificate

The Eduroam wireless network at Swansea University uses a self-signed certificate as part of the authentication process. You must have this installed on your device to connect to eduroam securly.
To do this, click on the link below and install the certificate:

Step 1 - Configure Eduroam

The first thing you need to do is configure the Eduroam connection. To do this follow these steps:
1. Click on 'Start' and then Run. Type in 'ncpa.cpl' and then press enter.
2. You should now see the Network Connections window appear. Right click on your wireless card and select 'Properies'. See image below:

3. Now the Wireless Network Connections Properties has appeared, select the 'Wireless Networks' tab.
4. Now click on add, as seen below:

5. For the 'Network Name', enter "eduroam".
6. For the 'Network Authentication' select 'WPA2'.
7. For the 'Data Encryption' select 'AES'.

8. Now click on the 'Authentication' tab.
9. Set the 'EAP Type' to 'Protected EAP(PEAP)'.
10. Untick the 'Authenticate as computer when computer information is available' tick box.

11. Now click on Properties.
12. Tick the 'Validate server certificate' tick box.
13. From teh list of 'Trusted Root Certificate Authorities' select 'Swansea University Certificate Authority'.
14. Tick the 'Do not prompt user to authorize new servers or trusted certificate authorities' tick box.
15. Ensure that the 'Authentication Method' is set to 'EAP-MSCHAP v2'

16. Click on 'Configure'.
17. Untick the 'Automatically use my windows logon name and password' tick box.

18. Click 'OK'.
19. Click 'OK' to the 'Protected EAP Properties' window.
20. Click 'OK' to the 'Wireless Network Properties' window.
21. Click 'OK' to the 'Wireless Network Connections Properties' window.
22. A bubble should now appear in the bottom right of your screen, asking for credentials.

23. Click on the bubble and a window asking for your username and password will appear.
24. For your Username enter you email address.
25. For your password enter your email password.
26. Leave the 'Logon Domain' field empty.

27. After entering your username and password, click on 'OK'.
28. It should then authenticate you and then attempt to resolve your Internet Address. Once it has finished you will see a bubble appear in the bottom right corner of your screen confirming is it now connected.


Step 2 - Configuring your Browser

If you want to browse the web to reach any web sites outside the University you must configure your browser to use the web proxy.

Internet Explorer 5 or higher

1. Click Start, Settings, Control Panel and double-click Internet Options.
2. Choose the Connections tab.
3. Click the LAN Settings button.
4. Ticks the Automatically detect settings option. Untick any others that are ticked.
5. Choose OK and then in the Internet Options panel choose OK again to finish.


Firefox



1. Run Firefox.
2. From the Tools drop down menu select Options...
3. In the Options panel click the 'Advanced' icon/tab.
4. Select the 'Network' tab.
5. Click the 'Settings...' button.
6. Tick the Auto-Detect Proxy Settings for this network button.
7. Choose OK and then in the Options panel choose OK again to finish
8. Close and restart the browser.

Step 3 - Disconnect

In order to disconnect from Eduroam you need to:

1. Click on 'Start' and then Run. Type in 'ncpa.cpl' and then press enter.
2. You should now see the Network Connections window appear.
3. Right click your wireless adapter and select 'View Available Wireless Networks'.
4. Click on Eduroam and then click the 'Disconnect' button.
5. You are now disconnected.


Install security updates


Any computer connected to the University network and the Internet is a target for unauthorised users who can try to access your system. Intruders could watch all your actions on the computer, cause damage by deleting files or changing your data, or steal valuable information such as passwords or credit adaptor numbers. Alternatively intruders may not be interested in your data and instead want control of your computer so they can use it to launch attacks to disrupt other systems. Some attacks known as worms spread automatically from one vulnerable system to another. Don't think 'an attacker would never be interested in me': an automated worm can infect and disrupt millions of computers.


There are three main ways in which an attack on your computer could be successful:

* New vulnerabilities (holes) are always being discovered in computer software. These holes can be exploited to gain access. Software vendors fix the holes by producing patches or new versions, but it is up to you to obtain and install these fixes.
* You could be enticed to run a trojan or virus. A trojan looks like something else to encourage you to click on it but its real purpose is to open up a back door on your computer. Viruses spread by infecting other legitimate computer programs. Trojans and viruses are often spread through email attachments, file-sharing and messaging, and may appear to come from someone you know who is also infected.
* Some software has settings (sometimes the default settings) that allow other users to access your computer unless you change the settings to be more secure. For example, file-sharing built-in to Windows can allow other users to view, modify or add files on your hard disk, which is an obvious risk unless turned off or configured carefully.

To ensure your computer is not vulnerable to attack you need to:

* Install software patches and new versions to fix known holes.
* Follow advice to change software settings to be more secure, or not run known insecure software at all.
* Don't run unknown files and unsolicited attachments to avoid trojans or viruses.
* Run up-to-date anti-virus software.
* Keep backup copies on disk, CD or a network server of important data.