|
(solved, maybe) selecting certificate for WPA
Thought I would ask here before I file a bug, since I'm probably Doing It Wrong.
Basically trying to follow these directions: http://www.divms.uiowa.edu/help/wireless/ubuntu910.html which worked for the n810. I have to specify a specific cert. (Who designed WPA this way? how have web browsers figured out which cert to use for ages, but wpa can't?) In the n900 cert manager its listed. But the wireless dialog simply says "none" and it doesn't list any available certificates. |
Re: selecting certificate for WPA
Hmmm, back on Windows Mobile you had to install certain certificates by hand in form of a Cab file - this is probably something similar, but I'm afraid I have no idea how to do that (or where to get the certificates needed) on Linux/Maemo5... So the best I can do is give your thread a bump ;)
-edit- Found something: In another thread someone posted a link to this page, where you can download some certificates for importing into the certificate manager (.der format). Maybe the certificate you need is on there somewhere? |
Re: selecting certificate for WPA
Maybe you need to set your certificate to be trusted for use with wlan first, like it is described here in the first five steps: http://www.oucs.ox.ac.uk/network/wir...oam/nokia_810/.
Perhaps after that it will show up in the wlan wpa settings. |
Re: selecting certificate for WPA
bemymonkey, the cert is already installed on the device. It shows up in the cert manager.
@Marshall: that sounds more likely. The Certificate Manager on the n900 is complete misnomer though, its just lists certs, no management going on. So there's no trust button or option. :confused: |
Re: selecting certificate for WPA
So I did a bit of digging and found out that you can select the 'purpose' of a certificate when you add it. So I scp'ed the cert from my computer (couldn't find where it was on the device) and selected it from the file manager, and said it was for WiFi. Its now listed in the cert manager with a "WiFi" tag randomly on the right side (none of the pre-installed certs have any purpose annotation). It doesn't seem to mind that the same cert is installed twice.
So hopefully it works now. I'm not at university so I can't test, next time I go there I'll see. And then probably add a feature request to be able to modify the purpose of existing certs. :) I hope this post is useful for future googlers. I'm guessing this 'purpose' feature has some sort of reason for existing, but search me... |
failure
ok fail. I'm at uiowa's main library using my cellular connection as it *still* doesn't show any available certificates.
I'!l file a bug shortly, I've done my best to rule out PEBKAC. |
Re: selecting certificate for WPA
Remove the first cert. It is probably matching before the second is reached. May constitute a bug.
Also, what protocols are you using? WPA (TKIP) or WPA2 (AES/CCMP)? Which method of EAP? You can find such out by looking at an existing working configuration. Chances are also such is described on website of your university, complete with howto for certain clients. If you have it currently working on e.g. Ubuntu you can use your current wpa_supplicant.conf as template. I suggest you look at your current /etc/wpa_supplicant.conf on N900, and see if it is set up correct. There are some useful wpa_supplicant howtos to be found with aid from Google, but you need to be sure you know which protocols you're gonna use. EDIT: Answer to question is: WPA2 Enterprise, EAP-PEAPv0/MS-CHAP-v2. This is supported by wpa_supplicant. I also saw an autoconfig site for your university. Your wpa_supplicant config should look like this: ctrl_interface=/var/run/wpa_supplicant ctrl_interface_group=wheel network={ ssid="example" scan_ssid=1 key_mgmt=WPA-EAP eap=PEAP identity="user@example.com" password="foobar" ca_cert="/etc/cert/ca.pem" phase1="peaplabel=0" phase2="auth=MSCHAPV2" } (Taken from manual page)[/EDIT] |
Re: selecting certificate for WPA
http://packages.ubuntu.com/karmic/ca-certificates
Should install them in /usr/share/ca-certificates/* Or manually. You did this? Quote:
|
Re: selecting certificate for WPA
Quote:
Quote:
...which I've just created here: https://bugs.maemo.org/show_bug.cgi?id=6101 |
Re: selecting certificate for WPA
Any progress ?
|
Re: selecting certificate for WPA
The certificate implementation for the N900 is completely useless it seems.
Under Configuration it just lists certificates, but there's no way of interacting with them, and after joining a WPA network using a Certificate, you can't choose the right certificate, or enter the required information, such as the address for a validation server. So much for an Internet Device... |
Re: selecting certificate for WPA
Is this really true? No way to use certiicates for WLAN?
I tried it today at my university for an eduroam connection. I was aware before buying the N900 that it can't do EAP-PAP. But hey, my university also supports PEAP + MSCHAPv2, so i thought no problem here. I installed the adequate cert and checked that it is listed in the certificate manager (beside many preinstalled certs). But when i configure the WLAN connection, it ist not possible to select any cert at all. Please tell me that I have done something wrong. I'm a maemo and linux newbie and i always thought that even when something does not work out of the box, it is possible via console or something like that... Thank you! |
Re: selecting certificate for WPA
I'm not completely sure if it is the same problem you're having, but this helped me out:
http://wiki.maemo.org/PEAP%2BMSCHAPv2 Also, there seem to be a lof of related bug reports, e.g.: https://bugs.maemo.org/show_bug.cgi?id=2051 https://bugs.maemo.org/show_bug.cgi?id=1635 |
Re: selecting certificate for WPA
did you guys ever figure this out? i'm still having this problem.
Edit: nevermind got it working. for future reference, i had to go into advanced settings and check 'enter manual user name' but not check 'require client authentication' Other than that it was straightforward. |
| All times are GMT. The time now is 11:00. |
vBulletin® Version 3.8.8