Configure 802.1X (dot1X) on Windows XP & Windows 7 for Wireless Network

802.1X (dot1x) configuration on Cisco Switch with Wireless Access Point

Find below configuration to enable 802.1x (dot1x) on Cisco catalyst 2960 switch with wireless access point.

­­­Enables 802.1x.with Access point 

Cisco‐2960(Config)#dot1x system‐auth‐control 

Cisco‐2960(Config)#interface fastEthernet 0/24 

Cisco‐2960(Config‐if)#switchport mode access 

Cisco‐2960(Config‐if)#switchport access vlan <dataVlanid> 

Cisco‐2960(Config‐if)#authentication port‐control auto            

 Cisco‐2960(Config‐if)#authentication host‐mode multi‐host

 Cisco‐2960(Config‐if)#dot1x pae both 

Cisco‐2960(Config‐if)#dot1x timeout tx‐period 3                                                                   

Cisco‐2960(Config‐if)#spanning‐tree portfast 

Configure 802.1X(dot1X) on Windows XP or Vista for Wireless Network

Go to Control Panel > Network and Internet Connections > Network Connections->

Right‐click on Wireless Connection and select Properties from the submenu that is displayed

Select the Wireless Networks tab. Select the wireless network (displayed using the  SSID name of the AP) from the list of available networks, and then click Configure.

Wireless Network connection

On the Authentication tab of the network properties window, check the option for Enable IEEE 802.1x authentication for this network. For EAP type, select

Prot-ected EAP (PEAP) for EAP type, and then click Properties.

Local Area Connection Properties

Uncheck Validate server certificate, and Select secure password (EAP­MSCHAPv 2) for the authentication method, and then click Configure.

Protected EAP properties













To enable single sign‐on, check the option for automatically uses my Windows  logon name and password (and domain if any). Click OK to accept this setting,  and then click OK again to return to the network properties window.

With single sign‐on for PEAP, the client uses the Windows logon name for the PEAP  authentication,  so the user does not need to enter the password a second time.

Choose Wireless network connection

Select the Wireless network tab, select the wireless network displayed using the  SSID from the list of available networks and then click on Connect.

Enter dot1x login credentials













Enter Login Credentials username and password.



Filed Under: LAN Security


About the Author:

RSSComments (4)

Leave a Reply | Trackback URL

  1. Ramesh says:

    Very needful info to enable dot1x authentication for Wireless Networks in Windows.

    Thanks 🙂

  2. Sundar says:

    Hi all,
    I found below steps to enable 802.1X on a wireless network in Windows, its very informative…

    1. Open Manage Wireless Networks by clicking the Start button Picture of the Start button, clicking Control Panel, clicking Network and Internet, clicking Network and Sharing Center, and then, in the left pane, clicking Manage wireless networks.

    2. Right-click the network that you want to enable 802.1X authentication for, and then click Properties.

    3. Click the Security tab, and then, in the Security Type list, click 802.1X.

    4. In the Encryption Type list, click the encryption type you want to use.

    5. On wireless networks, 802.1X can be used with Wired Equivalent Privacy (WEP) or Wi‑Fi Protected Access (WPA) encryption.

    6. In the Choose a network authentication method list, click the method you want to use.

    To configure additional settings, click Settings.


  3. Wright says:

    I got much needed info to enable dot1x authentication for wireless networks on Cisco Switch.

  4. Clark says:

    Nice info on dot1.x authentication for wireless network access with RADIUS Server on Windows.

Leave a Reply

If you want a picture to show with your comment, go get a Gravatar.