How to Set Up Windows 11 Wi-Fi EAP Settings

The Settings app is the easiest way to create a Wi-Fi EAP profile

Windows 11 » How To

Reading time icon 4 min. read

Calendar icon Published on

by Claudiu Andone 

published on

Share this article

Readers help support Windows Report. We may get a commission if you buy through our links. Tooltip Icon

Read our disclosure page to find out how can you help Windows Report sustain the editorial team Read more

How to set up Windows 11 Wi-Fi EAP settings

As its name suggests, the Extensible Authentication Protocol (EAP) is used for managing authentication settings and profiles. Here is how configure Windows 11 Wi-Fi EAP settings, especially if you don’t have access to MDM or Group Policy.

How do I configure Windows 11 Wi-Fi EAP settings?

1. Using the Settings app

  1. Press Win + I to open Settings.
  2. Go to Network & internet and select Wi-Fi.
  3. Now, select Manage known networks and click the Add network button.
  4. After you type a SSID (name of the connection), you can change the security type and if you select an Enterprise option or 802.11X WEP, you will be able to configure the EAP settings.
  5. Now you can select the EAP type from the drop down menu according to your needs.
  6. For each EAP type, you will be able to select the authentication method, a private identifier and a trusted server.
  7. Review the data and click the Save button once you’re done.

Go through the settings carefully because once you click the Save button below, you won’t be able to edit the profile from Settings. You will have to delete this profile and start over with the needed modifications.

2. Set up Wi-Fi EAP using Command Prompt

To configure a Wi-Fi network in Windows 11, you can use the netsh command in Command Prompt or PowerShell.

The netsh syntax is: netsh [-a AliasFile] [-c Context] [-r RemoteMachine] [-u [DomainName]UserName] [-p Password | *]
[Command | -f ScriptFile]

Here are a few examples on how you can use netsh:

  • To display all Wi-Fi profiles: netsh wlan show profiles
  • To show details of a certain profile: netsh wlan show profiles name="ProfileName"
  • Exporting a Wi-Fi profile to a folder: netsh wlan export profile name="ProfileName" folder="C:\Nameofthefolder"
  • Adding a profile from an XML file: netsh wlan add profile filename="C:\Profiles\ProfileName.xml"
  • Deleting a profile: netsh wlan delete profile name="ProfileName"

As you can see, you may also use an XML file containing the configuration options for that connection and import it using netsh.

3. Using the Group Policy Management Console

  1. Open Group Policy Management Editor and go to: Computer Configuration > Policies > Windows Settings > Security Settings > Wireless Network (IEEE 802.11) Policies
  2. Right-clicking on Wireless Network (IEEE 802.11) Policies and choose Create A New Wireless Network Policy for Windows Vista and Later Releases.
  3. Click on Add and select Infrastructure to create a new Wi-Fi policy.
  4. Here, click on the Security tab and select an Enterprise authentication type to access the EAP authentication method.
  5. Review your settings and click OK, then save the profile.

We will list here the most used enterprise authentication methods:

  • EAP-TLS: Smart Card or other certificate – The users will be able to use a smartcard for login or another type or certificate issued by Microsoft or other entity.
  • Protected EAP (PEAP): This EAP can use two types of authentication – Secure password (EAP-MSCHAP v2), which will simply use the Microsoft account and the Smart card or other certificate (EAP-TLS), which we listed above.
  • EAP-SIM: As the name suggests, this type of authentication uses a SIM card for login. It is less used but ensures a high level of encryption.
  • EAP-TTLS: This type can include EAP-TLS and PEAP, and includes the Enable identity privacy feature. This specifies that clients are configured so that they can’t send their identity before the client has authenticated the RADIUS server, and optionally, provides a place to type an anonymous identity value. 

We conclude our guide here hoping that we offered sufficient information to configure Windows 11 Wi-Fi EAP settings and set up your enterprise authentication profiles. If you can’t deal with command lines, you may also use a network configuration manager tool such as Manage Engine NCM that will help you configure every aspect of your network, including the Wi-Fi EAP using a dedicated console with a comprehensive interface.

We also recommend checking our list of the best open source software for enterprise security.

Let us know in the comments if you have any questions or suggestions.

More about the topics: Network, Wi-Fi, Windows 11

Claudiu Andone

Claudiu Andone Shield

Windows Toubleshooting Expert

Oldtimer in the tech and science press, Claudiu is focused on whatever comes new from Microsoft. His abrupt interest in computers started when he saw the first Home Computer as a kid. However, his passion for Windows and everything related became obvious when he became a sys admin in a computer science high school. With 14 years of experience in writing about everything there is to know about science and technology, Claudiu also likes rock music, chilling in the garden, and Star Wars. May the force be with you, always!

User forum

0 messages