Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 399
  • Last Modified:

How To hide the passkey of wifi network

Hi ,
 i want to hide the passkey of my wifi network, as if we provide a wifi access to one person then the key is visible in there laptop wifi security option , and other people can also share it .

i want to hide this .
please advice
0
sanjeevkmrs
Asked:
sanjeevkmrs
  • 7
  • 3
  • 3
  • +4
6 Solutions
 
garycaseCommented:
Actually the key is almost certainly stored in an encrypted form -- at least on Windows boxes.    If you're really concerned, use more than just a passkey ... add Mac address authentication (i.e. only devices on the specific Mac address list in the router can connect.).
0
 
rindiCommented:
Make sure your users don't have administrative rights on their PC's. Standard users can't view the passphrase.
0
 
Brian GarciaTechnology Support SpecialistCommented:
Why not use DPSK (dynamic pre-shared key) instead of a simple passkey.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
sanjeevkmrsAuthor Commented:
if i will use DPSK then how it gona help ? please advice . also can we use dynamic pre-shared key wirelessly ?
0
 
bbaoIT ConsultantCommented:
for a small WiFi network, we commonly use a PSK (Pre-Shared Key), and it does have the issue you mentioned in the question.

if you want to prevent other people from using a known passkey especially on a shared computer, you need to use enterprise solution which is based on RADIUS and domain authentication.
0
 
rindiCommented:
Or as I mentioned earlier, only use standard accounts, not administrator accounts. Logging on as administrator to a PC for day-to day use is very bad practice anyway.
0
 
sanjeevkmrsAuthor Commented:
i think registering mac address of the laptops will be fine as the users are having there independent laptops ,
please advice and also advice for a good linksys router in whihc i can register the mac addresses of the laptops on which the wifi can run
regards
0
 
chanderpal singh rathoreCommented:
Hi,

The only option in a managed environment would be to disable access to the network & Sharing center
http://www.technology-howto.com/2011/09/how-do-i-prevent-access-to-internet.html

In a small non managed environment, the only option is MAC filtering so even if someone has your Wi-Fi password, he can't access your network.


In a large scale non managed environment(Schools etc'...) this is NOT possible and was the cause of much criticizm towards Microsoft for implementing this stupid mechanism into Windows 7. School admins just made policies that you can connect to the network only using Windows XP and Vista.


or you can get more information on below link:
http://www.linkedin.com/groups/Does-anyone-know-way-remove-2618496.S.99377528
0
 
Darr247Commented:
If you're running a domain, just switch to using WPA2-enterprise authentication validated by RADIUS server, instead of WPA2-personal or WPA2-PSK.
0
 
sanjeevkmrsAuthor Commented:
no i am not running a domain , its a simple router i need to keep in my camp so that my guys can access wifi on there laptops , but now as they can see the password in the security option of individual laptops they are sharing with other people , which i want to stop .
is it possible i can add the  mac  address of the people in router so that those people can only use wifi . instead of giving them password or putting password in there laptops ?

please advice
0
 
chanderpal singh rathoreCommented:
Hi sanjeevkmrs,

You can use  mac address and follow the link to use mac address please refer

http://compnetworking.about.com/cs/wirelessproducts/qt/macaddress.htm
0
 
sanjeevkmrsAuthor Commented:
please check the link is not working
0
 
chanderpal singh rathoreCommented:
Most Wi-Fi access points and routers ship with a feature called hardware or MAC address filtering. This feature is normally turned "off" by the manufacturer, because it requires a bit of effort to set up properly. However, to improve the security of your Wi-Fi LAN (WLAN), strongly consider enabling and using MAC address filtering.

Without MAC address filtering, any wireless client can join (authenticate with) a Wi-Fi network if they know the network name (also called the SSID) and perhaps a few other security parameters like encryption keys. When MAC address filtering is enabled, however, the access point or router performs an additional check on a different parameter. Obviously the more checks that are made, the greater the likelihood of preventing network break-ins.

To set up MAC address filtering, you as a WLAN administrator must configure a list of clients that will be allowed to join the network. First, obtain the MAC addresses of each client from its operating system or configuration utility. Then, they enter those addresses into a configuratin screen of the wireless access point or router. Finally, switch on the filtering option.

Once enabled, whenever the wireless access point or router receives a request to join with the WLAN, it compares the MAC address of that client against the administrator's list. Clients on the list authenticate as normal; clients not on the list are denied any access to the WLAN.

MAC addresses on wireless clients can't be changed as they are burned into the hardware. However, some wireless clients allow their MAC address to be "impersonated" or "spoofed" in software. It's certainly possible for a determined hacker to break into your WLAN by configuring their client to spoof one of your MAC addresses. Although MAC address filtering isn't bulletproof, still it remains a helpful additional layer of defense that improves overall Wi-Fi network security.

Do not confuse MAC address filtering with content filtering. Content filtering on a wireless access point or router allows administrators to maintain a list of Web site URLs or addresses that should not be accessed from the home WLAN.
0
 
garycaseCommented:
Yes, you can certainly use MAC address filtering in the router to limit access to just those devices you want -- you could even turn off the security so no key was required if you do that, since only those devices with MAC addresses in the filtering table would be able to connect anyway.

Depending on the number of connections involved, however, this could be an administrative hassle ... you'd have to enter the MAC addresses for all of your users, and be sure to delete any that were no longer allowed access.
0
 
rindiCommented:
MAC addresses can be easily spoofed, so I can't really recommend that, particularly don't turn off the WPA2 protection. But if you can't force your users to not be admins, that is still the only way to get some sort of control.
0
 
Darr247Commented:
If you don't have a domain but want finer granularity of control, consider an actual HotSpot device where you can assign temporary passwords that expire after a certain amount of time.

e.g.
ZyXEL N4100 HotSpot with SP300E Printer
or
Guest Internet Solutions GIS-R3 Hotspot and
Guest Internet Solutions GIS-TP1 Ticket Printer
et al.
0
 
sanjeevkmrsAuthor Commented:
Dear garycase,
                can i do mac address filteration in linksys 4500 ? or sugegst me some oither good router
0
 
garycaseCommented:
Yes.   The details of how to set up MAC Filtering are on page 36 of the manual for the Linksys 4500

http://downloads.linksys.com/downloads/userguide/EA-Series_UG_Full_3425-00125D_EN_FR-CA_Web.pdf
0
 
Darr247Commented:
The MAC address is trivial to reset with tools available by default in most operating systems.

e.g.
Linux
# ifconfig eth0 hw ether 03:B0:01:d1:00:22

In Windows, the MAC address is stored in a registry key. The location of that key varies from one Windows version to the next, but just find it and edit it yourself. There are also free utils to change it for you (like, Macshift for XP, and ChangeMAC for Win7).

So filtering by MAC does not increase security.
0
 
sanjeevkmrsAuthor Commented:
let me check
0
 
sanjeevkmrsAuthor Commented:
thanks
0

Featured Post

Fill in the form and get your FREE NFR key NOW!

Veeam is happy to provide a FREE NFR server license to certified engineers, trainers, and bloggers.  It allows for the non‑production use of Veeam Agent for Microsoft Windows. This license is valid for five workstations and two servers.

  • 7
  • 3
  • 3
  • +4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now