Internet connection problem validating identity

Within the Network Connections folder, the text under the name of the connection corresponding to the wireless network adapter indicates the status of the connection.

Figure 1 shows the information available for a wireless connection in the Windows XP Network Connections folder.

In Windows XP Service Pack 2 (SP2) and Windows Server 2003 with Service Pack 1, the Repair capability has been enhanced for wireless connections.

Abstract This article describes the tools used to troubleshoot a Microsoft Windows XP or Windows Server 2003-based wireless client, a wireless access point (AP), and the Internet Authentication Service (IAS) when using Institute of Electrical and Electronic Engineers (IEEE) 802.1X authentication for IEEE 802.11-based wireless connections.

This article also describes the most common problems with IAS authentication and authorization, certificate properties, and the process of certificate validation for both wireless client and IAS server certificates.

This article assumes background knowledge in IEEE 802.11 wireless LAN and associated security technologies and the components of a Windows-based authentication infrastructure.

For background information, see Wireless LAN Technologies and Microsoft Windows.

For general troubleshooting of Windows XP wireless client issues, see Microsoft Knowledgebase article Q313242, "How to Troubleshoot Wireless Network Connections in Windows XP.” For Windows Server 2003-based wireless clients, you can use the new Wireless Monitor snap-in, which can be used to view wireless APs and wireless client event information.

To troubleshoot IAS authentication attempts in the system event log, ensure that enable event logging is enabled for all types of IAS events (rejected, discarded, and successful authentication events).

Figure 2 shows the default properties of the Smart Card and Other Certificate EAP type for Windows XP with SP1, Windows XP with SP2, and Windows Server 2003.

For Windows XP with no service packs installed and Windows 2000, if the wireless client is validating the server certificate (enabled by default) and the Connect if the server name ends with string is not correct, authentication will fail.

For information about how to troubleshoot wireless connectivity on wireless networks that do not use 802.1X authentication, see Troubleshooting Microsoft Windows XP-based Wireless Networks in the Small Office or Home Office.

Comments are closed.