Using wpasupplicant to connect to 802.1X certificate protected network. Xubuntu 14.04

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi,

Ive got a question from the user side, hope this belongs here.

I got the impression, that to be able to connect to a 802.1X wired network, which is not password protected (certificates only) I need to use wpasupplicant. I cant save a connection like that in network manager as long as the username and password is empty. Wired and wireless networks were disabled in the network manager before running the code.

I want to connect to my companies wired Network with my laptop

Using Toshiba Portégé Z50 (i5-4210U) RV2015
Intel Core i5-4210U (1.70GHz, 2.7GHz)

Network Card: Intel(R) Ethernet Connection I218-V

with a freshly installed Xubuntu 14.04.

The network admin stated that the following informations about the network are correct:

key_mgmt=IEEE8021X
eap=PEAP
anonymous_identity="some identity"
ca_cert="path to ca.cer"
phase2="auth=mschapv2"

/etc/wpa_supplicant.conf:

---------------------------
# Where is the control interface located
ctrl_interface=/var/run/wpa_supplicant

# Who can use the WPA frontend? 0 or Group Name
ctrl_interface_group=0

# Which version of IEEE 802.1X - Set it to 2
eapol_version=2

# Scanning for wireless access-points?
ap_scan=0

#Network settings for the company network

network={
                key_mgmt=IEEE8021X
        eap=PEAP
        anonymous_identity="some identity"
        ca_cert="path to ca.cer"
        phase2="auth=mschapv2"
        private_key="path to privkey2.pem"}
-----------------------------------------------------
Trying to establish the connection:

sudo wpa_supplicant -c /etc/wpa_supplicant.conf -dd wired -i eth0
---------------------------
wpa_supplicant v2.1
random: Trying to read entropy from /dev/random
Successfully initialized wpa_supplicant
Initializing interface 'eth0' conf '/etc/wpa_supplicant.conf' driver 'default' ctrl_interface 'N/A' bridge 'N/A' Configuration file '/etc/wpa_supplicant.conf' -> '/etc/wpa_supplicant.conf'
Reading configuration file '/etc/wpa_supplicant.conf'
ctrl_interface='/var/run/wpa_supplicant'
ctrl_interface_group='0'
eapol_version=2
ap_scan=0
Line: 15 - start of a new network block
key_mgmt: 0x8
eap methods - hexdump(len=16): 00 00 00 00 19 00 00 00 00 00 00 00 00 00 00 00
anonymous_identity - hexdump_ascii(len=6):
     62 69 6f 65 35 36                                 some identity
ca_cert - hexdump_ascii(len=36):
     2f 68 6f 6d 65 2f 61 64 6d 69 6e 69 73 74 72 61    path to ca.cer
     74 6f 72 2f 44 6f 77 6e 6c 6f 61 64 73 2f 63 61
     2e 63 65 72
phase2 - hexdump_ascii(len=13):
     61 75 74 68 3d 6d 73 63 68 61 70 76 32            auth=mschapv2
private_key - hexdump_ascii(len=32):
2f 68 6f 6d 65 2f 61 64 6d 69 6e 69 73 74 72 61 path to privkey.pem
     74 6f 72 2f 70 72 69 76 6b 65 79 32 2e 70 65 6d
Priority group 0
id=0 ssid=''
rfkill: initial event: idx=0 type=2 op=0 soft=0 hard=0
rfkill: initial event: idx=1 type=1 op=0 soft=0 hard=0
rfkill: initial event: idx=2 type=8 op=0 soft=0 hard=0
rfkill: initial event: idx=3 type=2 op=0 soft=0 hard=0
nl80211: Supported cipher 00-0f-ac:4
nl80211: Supported cipher 00-0f-ac:2
nl80211: Supported cipher 00-0f-ac:1
nl80211: Supported cipher 00-0f-ac:5
nl80211: Supported cipher 00-0f-ac:6
nl80211: Supported cipher 00-14-72:1
nl80211: Using driver-based off-channel TX
nl80211: Use separate P2P group interface (driver advertised support)
nl80211: interface eth0 in phy phy0
nl80211: Set mode ifindex 2 iftype 2 (STATION)
nl80211: Failed to set interface 2 to mode 2: -19 (No such device)
nl80211: Could not configure driver mode
nl80211: Remove monitor interface: refcount=0
netlink: Operstate: ifindex=2 linkmode=0 (kernel-control), operstate=6 (IF_OPER_UP)
nl80211: Set mode ifindex 2 iftype 2 (STATION)
nl80211: Failed to set interface 2 to mode 2: -19 (No such device)
eth0: Failed to initialize driver interface
Failed to add interface eth0
eth0: Cancelling scan request
eth0: Cancelling authentication timeout
--------------------------------------------------

I would be very happy about an explanation about what failed and maybe how to solve this problem.

Thank you very much,

Gunnar



_______________________________________________
Hostap mailing list
Hostap@xxxxxxxxxxxxxxxxxxx
http://lists.infradead.org/mailman/listinfo/hostap




[Index of Archives]     [Linux Wireless]     [Linux Kernel]     [ATH6KL]     [Linux Bluetooth]     [Linux Netdev]     [Kernel Newbies]     [IDE]     [Security]     [Git]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux ATA RAID]     [Samba]     [Device Mapper]

  Powered by Linux