Carnegie Mellon University

Connect to CMU-SECURE

CMU-SECURE is the preferred wireless network for students, faculty and staff. To connect, follow the appropriate steps for your device/operating system.

  1. Locate CMU-SECURE in your Wi-Fi list.
  2. Click Connect.
  3. If prompted, enter your Andrew userID and password, then click OK.
  4. If prompted with a "Security Alert", click Details.
  5. Verify the certificate
  6. Click Connect.

Still can't connect? Follow the manual connection steps. 

  1. Open System Preferences from the Apple icon menu (top-left menu bar).
  2. Select Network, then click Turn Wi-Fi On.
  3. Select CMU-SECURE in the Network Name list.
  4. If prompted, enter your Andrew userID and password, click Show Certificate, then verify the certificate and click Continue.
  5. Quit System Preferences.
  1. Find CMU-SECURE in your Wi-Fi list.
  2. Enter the following information (terminology may vary; your computer may not require all these settings):
    • Wireless security: WPA2 Enterprise
    • Authentication: Protected EAP (PEAP)
    • CA certificate: AddTrust External CA Root (See step 3 for details.)
    • PEAP Version: Automatic or Version 0
    • Inner/Phase 2 authentication: MSCHAPv2
    • Username: Andrew userID
    • Password: Andrew password
  3. Do one of the following:
    • If prompted, verify and accept the CMU wireless certificate.
    • If not prompted, manually download and install the certificate from the COMODO website. 
    • If checking the fingerprint of the COMODO certificate, you should match these fingerprints:
      SHA1: 02 FA F3 E2 91 43 54 68 60 78 57 69 4D F5 E4 5B 68 85 18 68
      MD5: 1D 35 54 04 85 78 B0 3F 42 42 4D BF 20 73 0A 3F
  1. Locate your wireless configuration settings.
  2. Find CMU-SECURE in your Wi-Fi list.
  3. Enter the following information.
    Username: Andrew userID
    Password: Andrew password
  4. If prompted, verify and accept the CMU wireless certificate.
  1. Locate your wireless configuration settings.
  2. Find CMU-SECURE in your Wi-Fi list.
  3. Enter the following information.
    Note: Terminology may vary across devices. Contact your vendor for terminology specific to your device.
    • EAP method: PEAP
    • Phase 2 authentication: MSCHAPV2
    • CA certificate: Use System Certificate
    • Domain: wireless.cmu.edu
    • User certificate: Unspecified
    • Identity: Andrew userID
    • Password: Andrew password
  4. Do one of the following:
    • If prompted, verify and accept the CMU wireless certificate.
      Note: You may not be able to select a CMU wireless certificate on some Android devices, but you will be connected to CMU-Secure after you compete Steps 1-3.
    • If not prompted:
      1. Turn off your wireless connection and manually download and install the certificate from the COMODO website using your provider's 4G/LTE service.
      2. When prompted for the certificate, select either CA Certificate or the certificate that you downloaded and installed.
      3. Turn on your wireless connection, find CMU-SECURE in your Wi-Fi list, and enter the information provided in Step 3
  1. Locate your wireless configuration settings.
  2. Find CMU-SECURE in your Wi-Fi list.
  3. Enter the following information.
    Note: Terminology may vary across devices. Contact your vendor for terminology specific to your device. Your device may not require ALL settings.
    • Wireless security: WPA2 Enterprise
    • Authentication: Protected EAP (PEAP)
    • CA certificate: AddTrust External CA Root or Unspecified
    • User certificate: Unspecified
    • Inner/Phase 2 authentication: MSCHAPv2
    • Username/Identity: Andrew userID.
    • Password: Andrew password.
  4. If prompted, verify and accept the CMU wireless certificate.