As part of the ongoing Network Renewal Project, ICTS will introduce new Network Access Control (NAC) mechanisms to campus. The new feature will ensure that every device connecting to our network can authenticate and that the user or device owner can be identified by their UCT network account. This will enhance network security on campus and help us to comply with  a range of local and international standards and legislation.

When will this happen?

The change will roll out to different areas at different times. We will communicate to specific groups as required.

What do I need to do?

You will need to configure your device(s) appropriately before the cutover date communicated to you.

Note that these steps apply to devices that connect via a network cable, where you – as an individual – use the device. You do not need to configure shared or special-purpose devices – such as TVs, printers, projectors, video conferencing equipment, etc. We will deal with these separately.

Instructions for Windows 7

  1. On your keyboard, press the Windows key + R.
  2. Type services.msc then press Enter.
  3. In the Services window, scroll down to the bottom of the list, then double-click Wired AutoConfig.
  4. In the Wired AutoConfig Properties window:
    • Click Start.
    • Change the Startup type to Automatic.
    • Close the Wired AutoConfig Properties window then close the Services window.
  5. Close the Wired AutoConfig Properties window then close the Services window.
  6. Click the Windows Start button, then navigate to Control Panel > Network and Internet > Network and Sharing Center.
  7. In the Network and Sharing Center window, in the left-hand panel, select Change adapter settings.
  8. Right-click Local Area Connection then select Properties.
  9. In the Local Area Connection Properties window, select the Authentication tab.
    • Click Settings.

      Important: If you don't see the Authentication tab, please reboot your machine immediately. Note that your next login may take much longer than normal (e.g. 10 to 15 minutes).
       
  10. In the Protected EAP Properties window:
    • De-select Verify the server’s identity by validating the certificate.
    • Click Configure…
  11. In the EAP MSCHAPv2 Properties dialogue box, de-select Automatically use my Windows log-on name and password (and domain if any).
  12. Close the dialogue box, then close the Protected EAP Properties window.
  13. In the Local Area Connection Properties window:
    • If you’ll be using this computer at home, ensure that the Fall-back to unauthorised network access option is enabled.
    • Click Additional Settings...
    • In the Advanced Settings window, select Specify authentication mode and select User authentication.
    • Click OK.
  14. If a Windows Security dialogue box prompts you to sign in, do so using these details:
    • Username: Staff / student number@wf.uct.ac.za
    • Password: Your UCT network password.
  15. Close all other windows.

Instructions for other operating systems

If you have a computing device that isn't covered above, let us know.