Open authentication

Open authentication allows any device to authenticate and then attempt to communicate with the access point. Using open authentication, any wireless device can authenticate with the access point, but the device can communicate only if its Wired Equivalent Privacy (WEP) keys match the access point's WEP keys.

Use the following guidelines to set up Open authentication.

Table 26.   Wi-Fi open authentication field descriptions

Item

Description

Name

Enter the name to use to reference this configuration in Ivanti EPMM.

Network Name (SSID)

Enter the name (i.e., service set identifier) of the Wi-Fi network these settings apply to. This field is case sensitive.

If the profile name and SSID are different, Windows devices will not connect to Wi-Fi.

 

Description

Enter additional text to clarify the purpose of this group of Wi-Fi settings.

Hidden Network

Select this option if the SSID is not broadcast.

Authentication

Select Open.

Data Encryption

Select the data encryption method associated with the selected authentication type. The selection affects which of the following fields are displayed. For Open authentication, the following encryption options are available:

Disabled

WEP

WEP Enterprise

 

Network Key

WEP encryption

Enter the network key necessary for accessing this network. The network key should be 5 or 13 ASCII characters or 10 or 26 hexadecimal digits.

 

Key Index

WEP encryption

If using multiple network keys, select a number indicating the memory position of the correct encryption key.

Confirm Network Key

Re-enter the network key to confirm.

 

User Name

WEP Enterprise encryption

Specify the variable to use as the user name when establishing the Wi-Fi connection. See Supported variables for Wi-Fi authentication

Password

WEP Enterprise encryption

Specify the variable to use and any necessary custom formatting for the Wi-Fi password. The default variable selected is $PASSWORD$.

Enter additional variables or text in the text box adjacent to the Password field. Entries in this text box are kept hidden and will not be visible to any Ivanti EPMM administrator.

Note the following:

If you specify $PASSWORD$, also enable Save User Password under Settings > System Settings > Users & Devices > Registration.

All variables and text up to the last valid variable will be visible. Anything after the last valid variable will not be visible. The valid variable may appear in either of the password fields.

See Supported variables for Wi-Fi authentication.

Apply to Certificates

WEP Enterprise encryption

Configure this field with the CA certificate needed to validate the Identity Certificate presented by the Wi-Fi Access Point. It is not the CA certificate needed to validate the Identity Certificate sent to the device in the Wi-Fi config.

Trusted Certificate Names

WEP Enterprise encryption.

If you did not specify trusted certificates in the Apply to Certificates list, then enter the names of the authentication servers to be trusted. You can specify a particular server, such as server.mycompany.com or a partial name such as *.mycompany.com.

Allow Trust Exceptions

WEP Enterprise encryption.

Select this option to let users decide to trust a server when the chain of trust can’t be established. To avoid these prompts, and to permit connections only to trusted services, turn off this option and upload all necessary certificates.

Use Per-connection Password

WEP Enterprise encryption.

Select this option to prompt the user to enter a password each time the device connects to the Wi-Fi network.

EAP Type

Select the authentication protocol used:

EAP-FAST

EAP-SIM

LEAP

PEAP

TLS

TTLS

If you select EAP-FAST, then you also need to specify the Protected Access Credential (PAC).

If you select TLS, then you must specify an Identity Certificate.

If you select TTLS, then you must also specify the Inner Identity Authentication Protocol. You may optionally specify an Outer Identity

 

Connects To

Select Internet or Work.

Apple Settings

These features are not supported on Windows devices.

 

Windows Settings

Proxy Type

Specifies whether a proxy is configured and which type is configured. Available types are Manual and Auto.

The Auto type is only available for Windows 10 Mobile devices.

PAC URL

Specifies the URL for the proxy auto-configuration (PAC) file. This option is only available after selecting Auto.

Proxy Host

Specifies the proxy host. This option is only available after selecting Manual.

Proxy Port

Specifies the proxy port. This option is only available after selecting Manual.