Wireless_auth – HELPDESK @ ITServ

Wireless
Authentication

SSID in academic buildings: AIT, AITsec, eduroam; up to 2 concurrent logins/account. The table at the bottom describes the differences between those 3 SSIDs

Notes on AITsec/eduroam:

1. Add domain @ait.ac.th in username (e.g. example@ait.ac.th)

2. Characters accepted in password: Alphabets (A-Z, a-z), digits (0-9), following special characters:
@ $ ^ ( ) – _ = ! ‘ “ ~ ` . / \ ; : < > ?

3. Ever used the interface https://ait-gmail.ait.asia at least once (to login or change password)

4. For Window users, you will then get Security Alert window, just click Connect

<!– 4. For Windows users, manually add eduroam/AITsec to your wireless networks, then configure it to ignore certification validation and add user authentication mode to connect as follows:

a. Go to Settings, then choose Network and Sharing Center. Choose Setup a new connection or network. Click Manually connect to a wireless network, then click Next
b. Choose your wireless adapter from the drop-down menu and click Next
c. From the next screen, enter AITsec or eduroam in the Network Name and choose WPA2-Enterprise in the Security type, leave the value AES in the Encription type. Click Next
d. The addition of the connection should be successful. Click Change Connection Settings
e. From the next screen (e.g. EDUROAM Wireless Network Properties), click the tab Security, and leave the values as they are (Security type: WPA2-Enterprise, Encryption type: AES, Choose a network authentication method: Microsoft: Protected EAP (PEAP)). Click Settings button
f. Untick Verify the server’s identity by validating the certificate and Click OK
g. Click Advanced Settings, then click tab 802.1x Settings. Now tick the box Specify authentication mode and choose User authentication. Then click Save crendetials to save the username and password you are going to use, click OK
h. Click OK twice and click Close –>
5. For Android and Linux users, before authentication choose PEAP in the EAP method:, choose MCHAPV2 in the Phase 2 authentication and choose Do not validate in the CA Certificate.

Differences between SSIDs AIT, AITsec and eduroam

	AIT	AITsec	eduroam
How to connect?	Web based, login every time when connecting	Wifi setting, login once only during setup, auto connect afterwards	Wifi setting, login once only during setup, auto connect afterwards
Campus roaming	No	Yes	Yes
Roaming with other universities	No	No	Yes
Guest account	Allowed	Not allowed	Not allowed