Change Management Announcement

On 12/27/2011

WPA Wireless Networks ‘PatientCare3’ and ‘CWS’ SSL certificates expire

The current certificate of authority “Equifax Secure Certificate Authority” that VUMC uses to authenticate wireless WPA clients on SSIDs‘PatientCare3’ and ‘CWS’ has been purchased by the GeoTrust SSL Authority. The current Equifax certificate will expire on January 1, 2012 forcing all clients using ‘PatientCare3’ and ‘CWS’ to add the new “GeoTrust Global CA” SSL certificate to their current list of accepted certificates.

*In order to avoid connectivity issues when this change is implemented, you must check the box for “GeoTrust Global CA” in the “Protected EAP Properties” tab (see instructionsstarting on page-2) before 12/27/2011 to use the new SSL certificate. If the below procedure is not followed, the authentication will fail and the user will not be able to access either of the WPA wireless networks. This change does not affect users using SSIDs ‘vummiv’, ‘PatientCare1’, or ‘PatientCare2’.PLEASE VERIFY your settings are correct prior to 12/27/2011.

*Note that this is only for Windows devices and the instruction set explicitly details the steps that need to be taken on a computer running the Windows7 operating system. Macintosh computers/phones and Android devices will prompt the user to accept the new certificate as noted in the below screen capture:


Go to Wireless Networks from task bar, right click on “PatientCare3” and select properties:

The below screen will appear after selecting properties. Click on the “Settings” button in the middle of the page:

The following box will appear:

Note you will have to scroll down in the “Trusted Root Certification Authorities” section to the “Equifax Secure Certificate Authority” which should be already checked. That is the SSL certificate currently in use on the ‘PatientCare3’ and ‘CWS’ SSIDs. Count three down from the checked Equifax box and you will see “GeoTrust Global CA”. The box for this certificate now needs to be checked upon which the Protected EAP Properties for the computer should look like the below (keep the Equifax box checked):

Click OK to close the “Protected EAP Properties” tab and then click OK to close the “PatientCare3 Wireless Network Properties” tab. Your system is now configured to accept both the current Equifax certificate as well as the new GeoTrust certificate when it is applied on Tuesday 12/27/2011.

Please contact the HelpDesk (3-4357) if additional support is required.