As an offshoot of the Network Renewal Programme, ICTS is introducing Network Access Control (NAC) mechanisms on the UCT wired network across campus. NAC will enhance network security on campus and help us to align with our cyber insurer’s requirements, and comply with  a range of local and international standards and legislation. This new feature will ensure that every device connecting to our network via cable is authenticated and that the user or device owner can be identified by their UCT network account. It will also pave the way for network segmentation – an upcoming security measure which will further enhance control around access to specific UCT servers and services. 

When will this happen?

The change will be applied to all buildings on campus over the course of 2024, as per the schedule posted on this page.

What do I need to do?

If your device connects wirelessly, you don’t need to take action.

However, if you connect any device on campus using a network cable, you will need to configure that device by the deadline communicated to your specific building.

To do so, please follow the instructions below relevant to your operating system for each wired device you use on campus:

Instructions for Windows 7

  1. On your keyboard, press the Windows key + R.
  2. Type services.msc then press Enter.
  3. In the Services window, scroll down to the bottom of the list, then double-click Wired AutoConfig.
  4. In the Wired AutoConfig Properties window:
    • Click Start.
    • Change the Startup type to Automatic.
    • Close the Wired AutoConfig Properties window then close the Services window.
  5. Close the Wired AutoConfig Properties window then close the Services window.
  6. Click the Windows Start button, then navigate to Control Panel > Network and Internet > Network and Sharing Center.
  7. In the Network and Sharing Center window, in the left-hand panel, select Change adapter settings.
  8. Right-click Local Area Connection then select Properties.
  9. In the Local Area Connection Properties window, select the Authentication tab.
    • Click Settings.

      Important: If you don't see the Authentication tab, please reboot your machine immediately. Note that your next login may take much longer than normal (e.g. 10 to 15 minutes).
       
  10. In the Protected EAP Properties window:
    • De-select Verify the server’s identity by validating the certificate.
    • Click Configure…
  11. In the EAP MSCHAPv2 Properties dialogue box, de-select Automatically use my Windows log-on name and password (and domain if any).
  12. Close the dialogue box, then close the Protected EAP Properties window.
  13. In the Local Area Connection Properties window:
    • If you’ll be using this computer at home, ensure that the Fall-back to unauthorised network access option is enabled.
    • Click Additional Settings...
    • In the Advanced Settings window, select Specify authentication mode and select User authentication.
    • Click OK.
  14. If a Windows Security dialogue box prompts you to sign in, do so using these details:
    • Username: Staff / student number@wf.uct.ac.za
    • Password: Your UCT network password.
  15. Close all other windows.

Instructions for other operating systems

If you have a computing device that isn't covered above, let us know.