802.1X Authentication Registry Hacks in XP

by Eric Geier [Published on 1 Feb. 2011 / Last Updated on 4 Dec. 2009]

Modifing the Pairwise Master Key (PMK) and Preauthentication settings for better roaming.

Though 802.1X can provide secure authentication for networks, it adds another step to the wireless connection process. This isn’t good for clients that must be able to roam around a building, going from one access point to another. However, you can fine-tune the Pairwise Master Key (PMK) and preauthentication settings via the Windows XP Registry to make roaming better:

Key: \SOFTWARE\Microsoft\EAPOL\Parameters\General\Global

Name: PMKCacheMode
Value: 0 (disabled), 1 (enabled)
Turns PMK caching on and off.

Name: PMKCacheTTL
Value: 5-1440
Number of minutes to keep PMK entries cached, up to 1440 (24 hours).

Name: PMKCacheSize
Value: 1-255
Maximum number of PMK entries that can be cached.

Name: PreAuthMode
Value: 0 (disabled), 1 (enabled)
Whether or not the client should try preauthentication.

Name: PreAuthThrottle
Value: 1-16
Number of top preferred wireless access points that the client will try preauthentication with, based on the order of networks provided by the wireless adapter.

See Also

The Author — Eric Geier

Eric Geier (Dayton, Ohio) is a Freelance  Tech Writer and Author specializing in computer networking. He's also the Founder and Owner of NoWiresSecurity, which provides a hosted cloud-based RADIUS service to help businesses easily secure their Wi-Fi networks with the Enterprise (802.1X) mode of WPA/WPA2 security. He’s also the Founder and Owner of On Spot Techs, which provides on-site computer and technology services.

Featured Links