在 Microsoft Intune 中为运行 Android 的设备添加 Wi-Fi 设置Add Wi-Fi settings for devices running Android in Microsoft Intune

可以使用特定的 WiFi 设置创建配置文件,然后将此配置文件部署到 Android 设备。You can create a profile with specific WiFi settings, and then deploy this profile to your Android devices. Microsoft Intune 提供多种功能,包括对网络进行身份验证,添加 PKS 或 SCEP 证书等。Microsoft Intune offers many features, including authenticating to your network, adding a PKS or SCEP certificate, and more.

这些 Wi-Fi 设置分为两类:基本设置和企业级设置。These Wi-Fi settings are separated in to two categories: Basic settings and Enterprise-level settings.

本文将介绍这些设置。This article describes these settings.

在开始之前Before you begin

创建设备配置文件Create a device profile.

基本Basic

  • Wi-Fi 类型 :选择“基本” 。Wi-Fi type: Choose Basic.
  • SSID:输入“服务集标识符”,它是设备连接到的无线网络的真实名称 。SSID: Enter the service set identifier, which is the real name of the wireless network that devices connect to. 但是,用户在选择连接时只会看到你已配置的网络名称 。However, users only see the network name you configured when they choose the connection.
  • 隐藏网络 :选择“启用” 以在设备上的可用网络列表中隐藏此网络。Hidden network: Choose Enable to hide this network from the list of available networks on the device. 不广播 SSID。The SSID isn't broadcasted. 选择“禁用” 以在设备上的可用网络列表中显示此网络。Choose Disable to show this network in the list of available networks on the device.

企业Enterprise

  • Wi-Fi 类型 :选择“企业” 。Wi-Fi type: Choose Enterprise.

  • SSID:输入“服务集标识符”,它是设备连接到的无线网络的真实名称 。SSID: Enter the service set identifier, which is the real name of the wireless network that devices connect to. 但是,用户在选择连接时只会看到你已配置的网络名称 。However, users only see the network name you configured when they choose the connection.

  • 隐藏网络 :选择“启用” 以在设备上的可用网络列表中隐藏此网络。Hidden network: Choose Enable to hide this network from the list of available networks on the device. 不广播 SSID。The SSID isn't broadcasted. 选择“禁用” 以在设备上的可用网络列表中显示此网络。Choose Disable to show this network in the list of available networks on the device.

  • EAP 类型 :选择用于对安全无线连接进行身份验证的可扩展身份验证协议 (EAP) 类型。EAP type: Choose the Extensible Authentication Protocol (EAP) type used to authenticate secured wireless connections. 选项包括:Your options:

    • EAP-TLS :此外请输入:EAP-TLS: Also enter:

      • 服务器信任 - 用于服务器验证的根证书 :选择现有的受信任根证书配置文件。Server Trust - Root certificate for server validation: Choose an existing trusted root certificate profile. 客户端连接到网络时向服务器显示此证书。This certificate is presented to the server when the client connects to the network. 它会对连接进行身份验证。It authenticates the connection.

      • 客户端身份验证 - 用于客户端身份验证的客户端证书(标识证书) :选择同时被部署到设备的 SCEP 或 PKCS 客户端证书配置文件。Client Authentication - Client certificate for client authentication (Identity certificate): Choose the SCEP or PKCS client certificate profile that is also deployed to the device. 此证书是由设备呈现给服务器以用于对连接进行身份验证的标识。This certificate is the identity presented by the device to the server to authenticate the connection.

      • 标识隐私(外部标识) :输入为响应 EAP 标识请求而发送的文本。Identity privacy (outer identity): Enter the text sent in the response to an EAP identity request. 此文本可以是任何值,例如 anonymousThis text can be any value, such as anonymous. 在身份验证过程中,将首先发送此匿名标识,然后在安全隧道内发送真实标识。During authentication, this anonymous identity is initially sent, and then followed by the real identification sent in a secure tunnel.

    • EAP-TTLS :此外请输入:EAP-TTLS: Also enter:

      • 服务器信任 - 用于服务器验证的根证书 :选择现有的受信任根证书配置文件。Server Trust - Root certificate for server validation: Choose an existing trusted root certificate profile. 客户端连接到网络时向服务器显示此证书。This certificate is presented to the server when the client connects to the network. 它会对连接进行身份验证。It authenticates the connection.

      • 客户端身份验证:选择一种身份验证方法 。Client Authentication: Choose an Authentication method. 选项包括:Your options:

        • 用户名和密码 :提示用户输入用户名和密码以对连接进行身份验证。Username and Password: Prompt the user for a user name and password to authenticate the connection. 此外请输入:Also enter:

          • 非 EAP 方法(内部标识) :选择验证连接的方式。Non-EAP method (inner identity): Choose how you authenticate the connection. 请确保选择在你的 Wi-Fi 网络上配置同一协议。Be sure you choose the same protocol that's configured on your Wi-Fi network. 选项包括:Your options:

            • 未加密的密码 (PAP)Unencrypted password (PAP)
            • 质询握手身份验证协议 (CHAP)Challenge Handshake Authentication Protocol (CHAP)
            • Microsoft CHAP (MS-CHAP)Microsoft CHAP (MS-CHAP)
            • Microsoft CHAP 版本 2 (MS-CHAP v2)Microsoft CHAP Version 2 (MS-CHAP v2)
        • 证书 :选择同时被部署到设备的 SCEP 或 PKCS 客户端证书配置文件。Certificates: Choose the SCEP or PKCS client certificate profile that is also deployed to the device. 此证书是由设备呈现给服务器以用于对连接进行身份验证的标识。This certificate is the identity presented by the device to the server to authenticate the connection.

        • 标识隐私(外部标识) :输入为响应 EAP 标识请求而发送的文本。Identity privacy (outer identity): Enter the text sent in the response to an EAP identity request. 此文本可以是任何值,例如 anonymousThis text can be any value, such as anonymous. 在身份验证过程中,将首先发送此匿名标识,然后在安全隧道内发送真实标识。During authentication, this anonymous identity is initially sent, and then followed by the real identification sent in a secure tunnel.

    • PEAP :此外请输入:PEAP: Also enter:

      • 服务器信任 - 用于服务器验证的根证书 :选择现有的受信任根证书配置文件。Server Trust - Root certificate for server validation: Choose an existing trusted root certificate profile. 客户端连接到网络时向服务器显示此证书。This certificate is presented to the server when the client connects to the network. 它会对连接进行身份验证。It authenticates the connection.

      • 客户端身份验证:选择一种身份验证方法 。Client Authentication: Choose an Authentication method. 选项包括:Your options:

        • 用户名和密码 :提示用户输入用户名和密码以对连接进行身份验证。Username and Password: Prompt the user for a user name and password to authenticate the connection. 此外请输入:Also enter:

          • 用于进行身份验证的非 EAP 方法(内部标识) :选择验证连接的方式。Non-EAP method for authentication (inner identity): Choose how you authenticate the connection. 请确保选择在你的 Wi-Fi 网络上配置同一协议。Be sure you choose the same protocol that's configured on your Wi-Fi network. 选项包括:Your options:

            • None
            • Microsoft CHAP 版本 2 (MS-CHAP v2)Microsoft CHAP Version 2 (MS-CHAP v2)
        • 证书 :选择同时被部署到设备的 SCEP 或 PKCS 客户端证书配置文件。Certificates: Choose the SCEP or PKCS client certificate profile that is also deployed to the device. 此证书是由设备呈现给服务器以用于对连接进行身份验证的标识。This certificate is the identity presented by the device to the server to authenticate the connection.

        • 标识隐私(外部标识) :输入为响应 EAP 标识请求而发送的文本。Identity privacy (outer identity): Enter the text sent in the response to an EAP identity request. 此文本可以是任何值,例如 anonymousThis text can be any value, such as anonymous. 在身份验证过程中,将首先发送此匿名标识,然后在安全隧道内发送真实标识。During authentication, this anonymous identity is initially sent, and then followed by the real identification sent in a secure tunnel.

后续步骤Next steps

配置文件已创建,但未执行任何操作。The profile is created, but it's not doing anything. 下一步,分配此配置文件Next, assign this profile.

更多资源More resources