在 Microsoft Intune 中為執行 Android 的裝置設定新增 Wi-Fi 設定Add Wi-Fi settings for devices running Android in Microsoft Intune

您可以建立含有特定 WiFi 設定的設定檔,然後將此設定檔部署到您的 Android 裝置。You can create a profile with specific WiFi settings, and then deploy this profile to your Android devices. Microsoft Intune 提供許多功能,包括驗證您的網路、新增 PKS 或 SCEP 憑證等等。Microsoft Intune offers many features, including authenticating to your network, adding a PKS or SCEP certificate, and more.

這些 Wi-Fi 設定分為兩種類別:基本設定和企業層級設定。These Wi-Fi settings are separated in to two categories: Basic settings and Enterprise-level settings.

本文說明了這些設定。This article describes these settings.

開始之前Before you begin

建立裝置設定檔Create a device profile.

基本Basic

  • Wi-Fi 類型:選擇 [基本] 。Wi-Fi type: Choose Basic.
  • SSID:輸入 service set identifier,其為裝置要連線之無線網路的實際名稱。SSID: Enter the service set identifier, which is the real name of the wireless network that devices connect to. 但當使用者選擇此連線時,只會看到您設定的 [網路名稱] 。However, users only see the network name you configured when they choose the connection.
  • 隱藏的網路:選擇 [啟用] 可在裝置的可用網路清單中隱藏此網路。Hidden network: Choose Enable to hide this network from the list of available networks on the device. 不會廣播 SSID。The SSID isn't broadcasted. 選擇 [停用] 可在裝置的可用網路清單中顯示此網路。Choose Disable to show this network in the list of available networks on the device.

企業Enterprise

  • Wi-Fi 類型:選擇 [企業] 。Wi-Fi type: Choose Enterprise.

  • SSID:輸入 service set identifier,其為裝置要連線之無線網路的實際名稱。SSID: Enter the service set identifier, which is the real name of the wireless network that devices connect to. 但當使用者選擇此連線時,只會看到您設定的 [網路名稱] 。However, users only see the network name you configured when they choose the connection.

  • 隱藏的網路:選擇 [啟用] 可在裝置的可用網路清單中隱藏此網路。Hidden network: Choose Enable to hide this network from the list of available networks on the device. 不會廣播 SSID。The SSID isn't broadcasted. 選擇 [停用] 可在裝置的可用網路清單中顯示此網路。Choose Disable to show this network in the list of available networks on the device.

  • EAP 類型:選擇用來驗證安全無線連線的可延伸驗證通訊協定 (EAP) 類型。EAP type: Choose the Extensible Authentication Protocol (EAP) type used to authenticate secured wireless connections. 選項包括:Your options:

    • EAP-TLS:另請輸入:EAP-TLS: Also enter:

      • 伺服器信任 - 伺服器驗證的根憑證:選擇現有受信任的根憑證設定檔。Server Trust - Root certificate for server validation: Choose an existing trusted root certificate profile. 當用戶端連線到網路時,系統會向伺服器出示此憑證。This certificate is presented to the server when the client connects to the network. 其會驗證連線。It authenticates the connection.

      • 用戶端驗證 - 用戶端驗證的用戶端憑證 (身分識別憑證) :選擇 也會部署到裝置的 SCEP 或 PKCS 用戶端憑證設定檔。Client Authentication - Client certificate for client authentication (Identity certificate): Choose the SCEP or PKCS client certificate profile that is also deployed to the device. 此憑證是裝置提供給伺服器以驗證連線的身分識別。This certificate is the identity presented by the device to the server to authenticate the connection.

      • 識別隱私權 (外部識別) :指定回應 EAP 識別要求時所要傳送的文字。Identity privacy (outer identity): Enter the text sent in the response to an EAP identity request. 此文字可以是任何值,例如 anonymousThis text can be any value, such as anonymous. 在驗證期間,一開始會先傳送此匿名識別,隨後以安全通道傳送真正的識別。During authentication, this anonymous identity is initially sent, and then followed by the real identification sent in a secure tunnel.

    • EAP-TTLS:另請輸入:EAP-TTLS: Also enter:

      • 伺服器信任 - 伺服器驗證的根憑證:選擇現有受信任的根憑證設定檔。Server Trust - Root certificate for server validation: Choose an existing trusted root certificate profile. 當用戶端連線到網路時,系統會向伺服器出示此憑證。This certificate is presented to the server when the client connects to the network. 其會驗證連線。It authenticates the connection.

      • 用戶端驗證:選擇 [驗證方法] 。Client Authentication: Choose an Authentication method. 選項包括:Your options:

        • 使用者名稱和密碼:提示使用者輸入使用者名稱和密碼以驗證連線。Username and Password: Prompt the user for a user name and password to authenticate the connection. 另請輸入:Also enter:

          • 非 EAP 方法 (內部識別) :選擇驗證連線的方式。Non-EAP method (inner identity): Choose how you authenticate the connection. 請務必選擇與您的 Wi-Fi 網路設定相同的通訊協定。Be sure you choose the same protocol that's configured on your Wi-Fi network. 選項包括:Your options:

            • 未加密的密碼 (PAP)Unencrypted password (PAP)
            • Challenge Handshake 驗證通訊協定 (CHAP)Challenge Handshake Authentication Protocol (CHAP)
            • Microsoft CHAP (MS-CHAP)Microsoft CHAP (MS-CHAP)
            • Microsoft CHAP 第 2 版 (MS-CHAP v2)Microsoft CHAP Version 2 (MS-CHAP v2)
        • 憑證:選擇也會部署到裝置的 SCEP 或 PKCS 用戶端憑證設定檔。Certificates: Choose the SCEP or PKCS client certificate profile that is also deployed to the device. 此憑證是裝置提供給伺服器以驗證連線的身分識別。This certificate is the identity presented by the device to the server to authenticate the connection.

        • 識別隱私權 (外部識別) :指定回應 EAP 識別要求時所要傳送的文字。Identity privacy (outer identity): Enter the text sent in the response to an EAP identity request. 此文字可以是任何值,例如 anonymousThis text can be any value, such as anonymous. 在驗證期間,一開始會先傳送此匿名識別,隨後以安全通道傳送真正的識別。During authentication, this anonymous identity is initially sent, and then followed by the real identification sent in a secure tunnel.

    • PEAP:另請輸入:PEAP: Also enter:

      • 伺服器信任 - 伺服器驗證的根憑證:選擇現有受信任的根憑證設定檔。Server Trust - Root certificate for server validation: Choose an existing trusted root certificate profile. 當用戶端連線到網路時,系統會向伺服器出示此憑證。This certificate is presented to the server when the client connects to the network. 其會驗證連線。It authenticates the connection.

      • 用戶端驗證:選擇 [驗證方法] 。Client Authentication: Choose an Authentication method. 選項包括:Your options:

        • 使用者名稱和密碼:提示使用者輸入使用者名稱和密碼以驗證連線。Username and Password: Prompt the user for a user name and password to authenticate the connection. 另請輸入:Also enter:

          • 非 EAP 驗證方法 (內部識別) :選擇驗證連線的方式。Non-EAP method for authentication (inner identity): Choose how you authenticate the connection. 請務必選擇與您的 Wi-Fi 網路設定相同的通訊協定。Be sure you choose the same protocol that's configured on your Wi-Fi network. 選項包括:Your options:

            • None
            • Microsoft CHAP 第 2 版 (MS-CHAP v2)Microsoft CHAP Version 2 (MS-CHAP v2)
        • 憑證:選擇也會部署到裝置的 SCEP 或 PKCS 用戶端憑證設定檔。Certificates: Choose the SCEP or PKCS client certificate profile that is also deployed to the device. 此憑證是裝置提供給伺服器以驗證連線的身分識別。This certificate is the identity presented by the device to the server to authenticate the connection.

        • 識別隱私權 (外部識別) :指定回應 EAP 識別要求時所要傳送的文字。Identity privacy (outer identity): Enter the text sent in the response to an EAP identity request. 此文字可以是任何值,例如 anonymousThis text can be any value, such as anonymous. 在驗證期間,一開始會先傳送此匿名識別,隨後以安全通道傳送真正的識別。During authentication, this anonymous identity is initially sent, and then followed by the real identification sent in a secure tunnel.

後續步驟Next steps

設定檔已建立,但它不會執行任何動作。The profile is created, but it's not doing anything. 接下來,請指派此設定檔Next, assign this profile.

其他資源More resources