I'd like to get a Mac set up for wifi connection at other sites. How do I set it up with passwords for routers at the other sites. Pretty easy to enter a network password for a wifi connection if you're there, with the network online, and the Mac is asking for it. But how do you do it if you aren't there and the network isn't available? Might have something to do with Keychain access, but it sure isn't obvious how to do it.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
how to enter a wifi password for a network that isn't available?
- Thread starter Doug Lass
- Start date
- Sort by reaction score
You can using an MDM solution.
it-training.apple.com
The admins where I work pre-configure our Macs to access corp Wi-Fi networks this way.
Documentation
I'd probably just wait until you're at the other wifi site, and set it up then.
Until then, you can store the passwords safely by adding a secure note to the keychain, and putting the passwords there. Or you can use Notes on the Mac and then lock the note containing the passwords. You should then be able to copy and paste them later, albeit after entering the password for the locked note.
If you've never joined the desired wifi network before, then there won't be any of the necessary identifying info for that network in the keychain. Things like SSID or BSSID are stored with the password, and if those are missing, then storing just the password won't help.
There are also access-controls stored with the keychain entry, such as which process can access the entry, and those would also need to be correct.
If you have joined the network before, and there are already entries for it stored in the keychain, then you can search the keychain for an SSID and see the entry (or entries). You should then be able to edit the password (after entering the account password) and save it.
I would still keep a fallback copy of the password(s) in a locked note, in case the edited entry failed for some reason. The keychain can have a mind of its own, and sometimes the most effective way of dealing with failing entries is to delete them, then start over in whatever normal procedure typically prompts for a password.
Until then, you can store the passwords safely by adding a secure note to the keychain, and putting the passwords there. Or you can use Notes on the Mac and then lock the note containing the passwords. You should then be able to copy and paste them later, albeit after entering the password for the locked note.
Lock your notes on Mac
In Notes on your Mac, lock notes using a password or Touch ID, and unlock notes you don’t need to protect anymore.
support.apple.com
If you've never joined the desired wifi network before, then there won't be any of the necessary identifying info for that network in the keychain. Things like SSID or BSSID are stored with the password, and if those are missing, then storing just the password won't help.
There are also access-controls stored with the keychain entry, such as which process can access the entry, and those would also need to be correct.
If you have joined the network before, and there are already entries for it stored in the keychain, then you can search the keychain for an SSID and see the entry (or entries). You should then be able to edit the password (after entering the account password) and save it.
I would still keep a fallback copy of the password(s) in a locked note, in case the edited entry failed for some reason. The keychain can have a mind of its own, and sometimes the most effective way of dealing with failing entries is to delete them, then start over in whatever normal procedure typically prompts for a password.
That's smart. No question that once these machines get to their designated sites, it will be pretty simple to enter a wifi password. These machines have never joined these networks, so editing a Keychain network entry isn't possible. But I would have thought it would be straightforward to CREATE a keychain network password entry. Evidently not.
As long as the network name the same it will connect using the same password. No need to edit keychain. I haven’t tried this, but who knows.
Um, so I get a router, name it the same as the remote router, and give it the same password? Then just log into it, and it'll be set for ops with the remote router? Interesting. Might be more trouble than it's worth. I do find it annoying that Apple doesn't allow one to enter IDs for routers manually, even when you aren't in touch with one.
As already suggested, you can change the SSID and password or if you have a router with support for a separate guest network you could activate the guest network. Then change the SSID and password to what you expect to connect to for each network located elsewhere. Then when you’re done turn off the guest network. Not efficient but for what you want to do it should work just fine.
On Velop and Deco routers it’s pretty easy and quick to do.
On Velop and Deco routers it’s pretty easy and quick to do.
You can create profiles for your iDevices and Macs using Apple Configurator 2. As already pointed out: technically this is something integrated into MDM, but in your use scenario it’s just creating a few network profiles for your Mac.
Or you a priori just create keychain access entries under some descriptor (e.g. network name) and add the user name and password, and when ask credentials on the first login, you pull them from keychain/passwords.
Due to the fact that not just the network name, user name and password is stored in keychain access, simply renaming e.g. your home WLAN (and maybe creating the required user&passwd) might fail because possible difference in encryption methods between $HOME and $ELSWHERE. This is the reason why profiles offer quite some granularity.
If you use different Apple devices under e.g. the same AppleID your keychain access entries will be shared and available everywhere. Equally after first logon to a network, the saved automatic logon info will be propagated and available cross devices.
Or you a priori just create keychain access entries under some descriptor (e.g. network name) and add the user name and password, and when ask credentials on the first login, you pull them from keychain/passwords.
Due to the fact that not just the network name, user name and password is stored in keychain access, simply renaming e.g. your home WLAN (and maybe creating the required user&passwd) might fail because possible difference in encryption methods between $HOME and $ELSWHERE. This is the reason why profiles offer quite some granularity.
If you use different Apple devices under e.g. the same AppleID your keychain access entries will be shared and available everywhere. Equally after first logon to a network, the saved automatic logon info will be propagated and available cross devices.
In my opinion, iMazing Profile Editor is easier to use
https://apps.apple.com/app/imazing-profile-editor/id1487860882
Wi-Fi payload https://developer.apple.com/documentation/devicemanagement/wifi
Configuration Profile Reference https://developer.apple.com/business/documentation/Configuration-Profile-Reference.pdf
https://apps.apple.com/app/imazing-profile-editor/id1487860882
Wi-Fi payload https://developer.apple.com/documentation/devicemanagement/wifi
Configuration Profile Reference https://developer.apple.com/business/documentation/Configuration-Profile-Reference.pdf
Join a hidden Wi-Fi network on Mac
Join a Wi-Fi network from your Mac by entering the name and password for the Wi-Fi network.
support.apple.com