Hi,
I try to connect my nokia E90 to work WLAN network.
WLAN specification:
Authentication: WPA with PEAP (protected EAP), MS-CHAPv2
Encryption: TKIP
Client must have a certificate issued from my internal microsoft certification authority and login with password form active directory domain. Password is check thruogh IAS service.
At the beginning I want to say that there is no problem to connect to this WLAN from windows XP client computers.
On my E90 I installed my personal certyficate and certificate of certification authority. I create access point with infrastructure mode, WPA/WPA2(EAP), type of EAP - PEAP.
As a result I can't connect to WLAN access point with error on phone EAP- Authentication failed, and error on IAS server - The supplied message is incomplete. The signature is not verified.
I google this problem and find that there is two ways to resolve it:
1. Install on client certificate of certification authority - already done.
2. Disable option on client - validate server certificate, but there is no this option on E90.
So that's it 😞
Any ideas
I'm also having difficulty getting onto a network with EAP-PEAP and EAP-MSCHAP v2, although in my case I dont need any certificates. I've fiddled with every option I can find, and nothing seems to work. So many people seem to be having this problem, so it may be a bug.
Tom
I have problem with installing certificates! I have tried with openssl to convert cer to der certificate but with no luck!
is there any link with explanation how to do this?
I had to install certificates to get EAP Wifi working at my university.
I simply copied over the .cer file to my memory card then opened the file from the E90s built-in file manager which gave me the option to save the Certificate.
The certificate install was the easy bit though and actually working out what PEAP settings I actually needed took quite a while.
It does work though...
I did same but id doesn't work!
how did you create certificate?
In my case I have created self signed certificate with SelfSSL 1.0 from IIS resource kit!
http://articles.techrepublic.com.com/5100-1035-6148560.html
Also, I have try with OpenSSL to convert to .der certificate but with no luck again!
Thanks anyway!
A certificate is not required on the client for PEAP - it is an option, at least on the Windows clients I have seen. The server certificate is used to encrypt the authentication exchange.
When a client certificate is used, it is for server verification purposes - to avoid connecting to a fake, malicious server.
So - you should be able to do without any certificate on the client, just remember to avoid the "from certificate" option in the PEAP settings, you must specify username locally in the client.
Regards, Michael