Spontaneous disconnects from a WPA2 Enterprise network with iwlwifi

Similar Messages

• Officejet 6000 wireless and WPA2-Enterprise network security

  I own an Officejet 6000 wireless printer. The manual says that it should be compatible with a wireless network with WPA2-Enterprise network security but when setting up the connection (I am using a macbook and am setting the printer up via usb connection) the newtork is listed but the security type is "unsupported." For whatever its worth it is listed 5 or 6 times but probably thats a different issue.
  I can still select the right network but it only asks for a security key, but my network security requires a log-in name and password.
  What can I do to get my printer connected to the network?

  I get the feeling that most of the people replying here don't know the difference between WPA2-Personal and WPA2-Enterprise.
  Personal has a passkey.
  Enterprise uses both a username and password, usually in conjunction with a Radius server (802.1X athentication).
  What we've had to do solve this problem is create a second SSID on the network that authenticates on WPA2-Personal. We use a really long password to secure the network, one that I will never be able to memorize in my lifetime.
  All we can hope for is that these enterprise-level vendors will, perhaps, gain a greater understanding of wireless authentication processes and the needs of actual enterprise customers who at least a percieved need for wireless printer capabilities. It used to be that customer was always right, though. Perhaps those days are gone...
  The other problem that probably ought to be addressed on consumer end is the fact that multicast tools that make AirPrint work (such as Bonjour), are being blocked from crossing between your wired and wireless networks, perhaps by the wireless controller or due to inefficient routing hierarchy or NAT/PAT issues. Solve this issue and you won't have a need for wireless printers.

• How to connect an apple tv to an enterprise network with a username and a password?   I need to use it over my university's wifi. theres no option to enter username and password. how to connect the apple tv to such enterprise network?

  How to connect an apple tv to an enterprise network with a username and a password?
  I need to use it over my university's wifi. theres no option to enter username and password. how to connect the apple tv to such enterprise network?

  Contact the University's IT dept, they may be able to set something up on the network to allow the ATV to connect without the need for a user name/password.

• Connecting to WPA/WPA2-Enterprised network

  hi all,
  i just came to mcgill and was trying to connect to the school network. But it kept saying something like 'authorization failed'. School website has only instructions for BlackBerrys:
  "Select wpa.mcgill.ca * (WPA/WPA2-Enterprise). Fill in the following fields:
  Name: wpa.mcgill.ca *
  SSID: wpa.mcgill.ca *
  Security Type: PEAP
  User Name: McGill Username
  User password: McGill Password
  CA Certificate: Thawte Premium Server CA
  Inner Link Security: EAP-MS-CHAP V2
  Token: None Selected
  Server subject: blank
  Server San: blank                                                                         "
  Help plz
  Solved!
  Go to Solution.

  idecline wrote:
  hi all,
  i just came to mcgill and was trying to connect to the school network. But it kept saying something like 'authorization failed'. School website has only instructions for BlackBerrys:
  "Select wpa.mcgill.ca * (WPA/WPA2-Enterprise). Fill in the following fields:
  Name: wpa.mcgill.ca *
  SSID: wpa.mcgill.ca *
  Security Type: PEAP
  User Name: McGill Username
  User password: McGill Password
  CA Certificate: Thawte Premium Server CA
  Inner Link Security: EAP-MS-CHAP V2
  Token: None Selected
  Server subject: blank
  Server San: blank                                                                         "
  Help plz
  Try configuring your N97 with these instructions:
  Since your WLAN network seems to require more advanced PEAP authentication settings you should probably create / edit appriate WLAN connection profile, known as (Internet) Access Point, manually in a following manner:
  1. Go to Tools -> Settings -> Connection -> Network Destinations
  2. Check if your earlier failed attempt to connect has already created an non-funtional IAP named as your WLAN network SSID (look for a entry named wpa.mcgill.ca) under "Internet" destination.
  3. If you can see existing IAP named as your WLAN SSID then you can Edit that one with necessary changes. (skip to 7.)
  4. If you don't see any existing IAPs that are named like your WLAN network then go to the desired "Destination" (e.g. Internet) and select Options -> Add Connection Method.
  5. Assuming you are in the coverage area of your WLAN network you can let phone "Automatically check for connection methods" (i.e. phone scans available WLAN networks) and you should be able to select the correct WLAN network name (wpa.mcgill.ca) from the list. Once you have selected the WLAN network your "Internet" Destination should now have been added with a new Access Point (IAP) that is named "wpa.mcgill.ca". Note that at this point the particular connection method is still incorrectly configured for your purposes (since by defaul it has EAP-SIM & EAP-AKA authentication methods enabled).
  6. Now you should manually Edit your newly created wpa.mcgill.ca Internet Access Point with necessary PEAP settings.
  7. Configure following WLAN and authentication settings:
    "Connection name" defaults to name of your WLAN network (wpa.mcgill.ca) but you can also change this if you wish
  - "Data Bearer" naturally needs to be "Wireless LAN"
  - "WLAN network name" should match your WLAN network's name (SSID) exactly (wpa.mcgill.ca)
  - "Network status": Public
  - "WLAN network mode": Infrastructure
  - "WLAN Security mode": WPA/WPA2
   => Go to "WLAN security settings"
  - Ensure that "WPA/WPA2 mode is set to "EAP"
  - Leave "WPA-2 Only mode" to "OFF" unless you are absolutely sure that your WLAN network is configured to stricly pure WPA2 mode (i.e. network might be configured to support both WPA and WPA2 security thus enabling WPA-2 Only mode on the phone will cause all your connection attempts to fail).
   => Go to "EAP plug-in configuration"
  - Enable "EAP-PEAP" and make sure that "EAP-SIM" and "EAP-AKA" are disabled (via Options -> Disable)
   => Select "Configure" for EAP-PEAP authentication method
   - Leave "Personal Certificate" to "Not defined"
  - Select "Thawte Premium Server CA" to be used as an "Authority certificate"
  - Set "User name in use" to "User defined" (since there is no Personal Certificate where it could be read automatically)
  - Enter your username (McGill Username) to "Username" field
  - Set "Realm in use" to "User defined" and leave following "Realm" field empty.
  - Note that in case your username (McGill Username) contains the realm (i.e. format is username@realm ) then you can enter realm part of your ID to "Realm" field and enter only the username part to the "Username" field.
  - Configure "Allow PEAPv0" to Yes
  - Configure both "Allow PEAPv1" and "Allow PEAPv2" to "No"
  => Go to "EAP's" tab to configure inner authentication method for the PEAP (use the small arrow pointing right on top of the screen to move between tabs)
  - Enable "EAP-MSCHAPv2" authentication method and Disable all other methods (Option -> Enable / Disable)
  - Select "Edit" for the EAP-MSCHAPv2
  - Enter you username (McGill Username) to "User name" field
  - Configure "Prompt password" to No or Yes depending on whether you want your password to be prompted everytime you make an connection or if you prefer saving your password to following "Password" field permanenly so that it won't be prompted during everytime you connect to this WLAN network with PEAP/EAP-MSCHAPv2 authentication.
  - If you you selected "No" to password prompting then enter your password (McGill Password) to "Password" field.
  => Exit the configuration with "Back" (several times) and you should hopefully be able to connect with this setup.
  If needed you can also change the priority order of the connection methods (IAP's) within the Internet Destination since your new connection most likely ended up being lowest priority WLAN connection within your Internet destination. This should however not be a problem unless you have some other WLAN networks defined as an IAP and these other WLAN networks are simultaneously available at the location of the wpa.mcgill.ca WLAN network.
  Hope this helps you to get connected!!
  Message Edited by saataja on 17-Sep-2009 05:16 PM

• Can we still use PEAP-MSCHAPV2 for authenticating to a WPA2-Enterprise network?

  L.S,
  For authenticating to a BYOD wireless network a lot of companies use WPA2-Enterprise connected to a Microsoft IAS/NPS server to authenticate against Active Directory. There seems to be a way to intercept this wireless traffic using a roque accesspoint using the same (company) SSID-name and tools like freeradius-WPE and cloudcracker.
  If the BYOD client doesn't check the certificate provided by the fake radius server, the MSCHAPv2-negotiation can be discovered and the hacker will get the username AND hashed password which can be lookup'd by rainbow tables sites like cloudcracker.
  Is there still a safe way to deploy AD-authentication to BYOD clients?
  Kind Regards,
  Arjen

  I have tested the WPA2-enterprise/PEAP-MSCHAPv2 exploit this week placing a laptop in my car on the company parking lot with a Kali image, using hostap and freeradius-wpe configured with the company SSID. It was very easy to find out the mschapv2 challenge/responses of a number of android/windows phones that there just walking past my car. Also iPhone has a bad WPA2-enterprise implementation (see: http://research.edm.uhasselt.be/~bbonne/docs/robyns14wpa2enterprise.pdf), so bye bye WPA2-enterprise/PEAP-MSCHAPv2.
  Wonder what other (large) companies are using for their BYOD wireless networks! EAP-TLS using certificate sounds like the only feasible option, however, we are afraid that the enrolment of certificates to the BYOD-clients will be a total disaster. I heard stories that some android phones lose their client certificate after a reboot :(

• Unable to Connect to WPA/WPA2-Enterprised network

  I work for a private company, and we have a WPA-Enterprised network. Company provide following settings for Blackberry users.
  Name : IxWLANP
  SSID: IxWLANP
  Band Type: 802.11 b/g
  User Name :
  Password:
  CA Certificate: None Selected
  Interlink Security : EAP-MS-CHAPV2
  Token: None
  Select Disable Server Certificate.
  What I have configured for my Nokia E72 is as follows:
  Connection Name: IxWLANP
  Data Bearer: Wireless LAN
  WLAN Network Name :IxWLANP
  Network Status: Public
  WLAN Network Mode: Infrastructure
  WLAN Security Mode : WPA/WPA2
  Under WLAN Security Settings
  WPA/WPA2: EAP
  Under Plug-in settings:
  EAP-PEAP only selected
  Under EAP-PEAP edit mode:
  Personal Certificate: Not defined
  Authority Certificate: Not Defined
  User Name In US: User Defined
  User Name: ******* (My User Name)
  Realm In Use: User Defined
  Realm: Blank
  TLS Privacy: OFF
  Allow PEAPv0 : yes
  Allow PEAPv1 :No
  Allow PEAPv2 : No
  Under EAPs: EAP-MSCHAPv2 Selected
  User Name: (My USer name)
  Prompt password: No
  Password : (My Password.)
  No change in ciphering
  WPA2 only modeff
  This is all I have done.
  Network is showing as known network. But If I am trying to connect to any web page its saying EAP-PEAP authentication Failed.
  Blackberry/ Samsung/ Apple works fine. This problem is only with nokia. Please reply urgently.
  Please help.

  I have also a problem to connect my E72 to my company network.
  The settings are:
  Network Authentication: WPA2
  Data Encryption: AES
  Authentication Type: Protected EAP (PEAP)
  Authentication Protocol EAP-MSCHAPV2
  HAve someone of you an idea or what I have to do that it works?
  Please help. Thank you.
  Argisch

• Connecting to WPA/WPA2 Enterprise Network

  I am trying to configure an Apple TV to connect to our corporate network. I have a service account in AD that I am using in the profile, have pointed to our cert and trusted it in the profile, selected WPA/WPA2 Enterprise, and selected PEAP as the 802.1X authentication. I have done this after going over the settings with our network security engineer. Everything looks correct. After installing the profile and connecting it to the TV, I can only get a 169.X.X.X address (should be our private WiFi network of 10.9.X.X. Has anyone successfuly done this?

  This is a user to user help forum only so no one here knows what Apple is working on.
  http://www.apple.com/feedback/iphone.html

• 10.4.8: Airport busy-loops when in range of a WPA2 Enterprise network

  After installing the 10.4.8 upgrade, the airport process hangs at 100% CPU when within range of a network secured with WPA2 Enterprise. The solution has been to kill it via "Activity Monitor". Everythin works fine with a normal WEP network.
  The workaround has been to turn airport off before entering the office. Forgetting to can completely disable login. The machine just hangs, without accepting keyboard input for the password. The mouse pointer (that delightful beach ball) moves, though.
  Anyone have suggestions as to how this may be fixed?
  MacBook Pro 15"   Mac OS X (10.4.8)  

  And, yes, I have tried that "remove & add back to preferred networks"-thing.

• PB 17" disconnects from Snow ABS while networks are still present

  Maybe related to the Airport "loss of connection" problem, I don't know.
  Since two days, I have quite a strange phenomenon on my PB 17" : it suddenly disconnects froms both WiFi networks (mine and the neighbour's one).
  The Airport recpetion symbol in the Menu Bar turns grey, but shows full-reception.
  I simply have to go and re-choose the right network, and there we go again.
  What's happening ?

  don't know if that was a question on interferences, but it never happends again since then.
  txs for the feedback

• WPA2 Enterprise Network Accounts are unavailable

  I'm going to admit upfront that I am a Windows admin. I have attempted Google searches, Apple support searches, and I'm coming up without answers that are working. It's possible that I'm overlooking the answers in front of my face, but any help would be appreciated.
  Our network is WPA2 Enterprsie Authentication (LEAP) is with AD Username and password.
  I have bound OS X to AD.
  I can authenticate to the WPA2 network after local login.
  I have created IPCU profiles to include the WPA2 certificate and network ID.
  I have created OS X Lion "Server" profiles with the WPA2 information.
  I have set the directory utility Active Directory configuration to Create mobile account at login, do not require confirmation. Use UNC path to derive home drive location. Map UID, User GID, and Group GID to AD attributes. Allow authentication from any domain in the forest.
  I have set wireless to prefer only our WPA2 network.
  At the logon prompt, I am told "Network accounts are unavailable"
  Is it possible to setup so that at the logon prompt it can take the username and password and attempt to authenticate to our WPA 2 and process the AD account login (the parts applicable to OS X)?
  We have great success setting up the OS X machines with a local account "linked" to an AD account, but I'd rather have it function semi-close to the way our Windows machines authenticate, as network endpoints. I do realize this is sort-of against the grain of the Apple perspective, but these are not personal computers, so I'd like them to play nice with the business network.
  Anyhow, I'm probably missing something obvious, but would appreciate anyone being willing to show me the way.
  Thanks!

  I do believe it's fairly normal... one of the crazy things about a fully cooperative multitasking OS, it can try to connect before the Interfaces are up & ready.
  Found a work-around. This command adds a delay, in this case 45 seconds, before displaying the Login Window.
  defaults write /Library/Preferences/com.apple.loginwindow StartupDelay -int 45
  If the Login Window UI detects that the network servers are available when it starts, it will skip the delay, also if network servers become available before the delay expires, the Login Window UI cancels the delay and displays.
  Kent
  http://discussions.apple.com/thread.jspa?messageID=10338123#10338123

• IPod Shuffle spontaneously disconnects from iTunes

  When I connect my iPod Shuffle to my MacBook Pro, iTunes launches, begins to sync files and charge the iPod. Moments later, an alert message will appear in iTunes erroneously saying that the iPod has been removed before being properly ejected. I have no similar problems with my iPod classic nor any other USB device. The iPod Shuffle otherwise functions properly. Any advice?

  It could be a problem with the USB port, the USB cable, or the shuffle itself.
  For the USB port, it seems to be working because it works with your other iPod.  However, if you have other USB devices connected at the same time (such as your other iPod), I would shut down (power off) the Mac and disconnect all USB devices including hub.  Do this to Reset the shuffle
  http://support.apple.com/kb/HT1655
  (also, if you can note which shuffle model you have and include that info if you need to post back.)
  Start up the Mac, run iTunes, and connect the shuffle to a direct USB port on the Mac  This is to test if there might be a power-related issue or USB conflict between devices.
  To rule out faulty USB cable as the cause, if possible, try a different USB cable, or try the one you have with another shuffle.
  Does the shuffles stay connected long enough for you to go to its Summary screen in iTunes, to make setting changes?

• Ever since the first iOS8 update, my 5s constantly disconnects from home wi-fi network even after replacing router

  I've been struggling with this issue since the first iOS 8 update but have patiently waited through all the subsequent software updates, hoping the problem would resolve itself, but it has not. I even replaced my router at one point (unrelated reason) and the issue persists. It's possible that the problem isn't just at home, but I really only notice it at home, likely because that's where I am when I'm playing games/watching YouTube/facebooking etc. for long spans of time to where the issue is very problematic. My wi-fi connection CONSTANTLY drops when I'm doing things and switches to the cellular network, which is a huge pain if I'm playing a game that ends itself if you lose your wi-fi connection, or watching YouTube when I don't have unlimited video streaming. Sometimes just pressing the home button and returning to the main screen will bump it back on, but sometimes I have to toggle wi-fi off and on. I've messed with my router settings, rebooted it, done a hard reset on my phone, reset network settings etc. etc. etc. and nothing has fixed this issue.
  Any ideas?
  I was at dinner tonight and saw someone with the new Blackberry, and for the first time, I found myself seriously considering a new phone at this point as I've been dealing with this for what seems like months and months.

  ally917,
  Thank you for using the Apple Support Community. Due to the nature of your issue or question you may find more information by using another one of Apple's support resources - https://getsupport.apple.com/GetproductgroupList.action.
  All my best,
  Allen

• Connecting to an enterprise network

  Hey,
  I'm wondering is it possible to connect Apple TV to a WPA2 enterprise network with AES encryption. All i'm finding on apple configurator is EAP authentication protocols?

  Use VPP.  Select an MDM.  Read the google doc below.
  IT Resources -- ios & OS X -- This is a fantastic web page.  I like the education site over the business site.
  View documentation, video tutorials, and web pages to help IT professionals develop and deploy education solutions.
  http://www.apple.com/education/resources/information-technology.html
     business site is:
     http://www.apple.com/lae/ipad/business/resources/
  Excellent guide. See announcment post -- https://discussions.apple.com/thread/4256735?tstart=0
  https://docs.google.com/document/d/1SMBgyzONxcx6_FswgkW9XYLpA4oCt_2y1uw9ceMZ9F4/ edit?pli=1
  good tips for initial deployment:
  https://discussions.apple.com/message/18942350#18942350
  https://discussions.apple.com/thread/3804209?tstart=0

• WPA2 Enterprise with netctl

  Hi,
  I'm trying to connect to my university wifi which I believe is WPA2 Enterprise protected. I read the wiki about using the Eduroam netctl profile example for WPA2 Enterprise networks but it doesn't seem to work for me. This is what I have:
  Connection='wireless'
  Interface=wlp4s0b1
  Security='wpa-configsection'
  Description="nyu wpa2 network"
  IP='dhcp'
  TimeoutWPA=30
  WPAConfigSection=(
  'ssid="nyu"'
  'key_mgmt=WPA-EAP'
  'eap=PEAP'
  'proto=WPA2'
  'phase2="auth=PAP"' #maybe MSCHAPv2
  'auth_alg=OPEN' #maybe
  'anonymous_identity="anonymous"' # ex: tu-dresden.de
  'identity="myusername"' # ex: [email protected]
  'password="mypassword"'
  'ca_cert="/usr/share/ca-certificates/trust-source/mozilla.trust.crt"'
  Can someone point me to related info or correct my profile? Thanks.

  Does your university have a site with some information/guidance for using eduroam?
  Have you tried other example profiles from here, such as this one and  this one? The wiki refers to this AUR package, which seems to be where you got the profile you've tried. Perhaps try the other example profiles.

• Macbook Pro Wifi Issues with WPA2 Enterprise key

  I have a MBP 13" mid 2009 model. There is usually no problems connecting to home networks. It remembers the passwords and connected seamlessly. However, I have problems connecting to networks with WPA2 Enterprise settings. I had tried it in NYU and I am trying it at my current school too. It keeps forgetting the WPA2 key from time to time and although I have tried all ways to get it to remember the key it still fails. I have used other MBP from the same time frame and they seem to be working perfectly. Even my iPod touch works perfectly with these WPA2 enterprise networks. Can anyone suggest a workaround?

  The networks do support WPA2. It works perfectly on windows 7 and other MBPs. There it doesn't keep asking the password and stores the password in keychain. But on my MBP it keeps asking me for the password from time to time
  Message was edited by: cooldip