802.1x, Radius, MSChapv2, PEAP
I've been doing alot of research and everything I have read says it works but I can't find specific examples and my config fails.
How do I get my Linux Box talking to a Microsoft PEAP, MSChapV2, Radius Server? I am using the 2.6.x kernel driver for the Cisco Aironet 350 series pcmcia card. Software on a Gentoo Laptop: Cisco's utilities (ACU, not the driver) wpa_supplicant xsupplicant linux wireless utilities My Network uses a Microsoft Radius Server, Microsoft Cert Server, PEAP, MSCHAPv2, a Certificate and what else do I need to know? using wpa_supplicant, I get - no network detected. We don't broadcast SSID's. xsupplicant doesn't want to connect. one of the iwtools - to detect ssid's - find all 4 Access Points but fails to get the SSIDs (I know what they are though) Any help is appreciated. Micah |
You can set the essid with:
Code:
iwconfig wlan0 essid xxxx |
When i set the essid with iwconfig it fails to work...
the /proc/driver/aironet/eth0/SSID file may show it but iwcofig just shows: "" for the essid... At home on my unencrypted network, I can set it. |
And after trying a couple of times setting the essid. I don't know for modules in the kernel but in my old ndiswrapper it took me a couple of tries as well to set the essid.
|
I read something somewhere that the guy set the essid and then waited for the card to stop flashing - to him this meant it became associated.
Do I have to worry about that? Can I set the SSID's HW Mac Address instead? iwlist wifi0 scanning this shows 4 Cells. None have an essid but I get all of their MAC addresses. ( Quality is also 0/10 but everything else on the look ok ) |
Try running XSupplicant in the debug mode, maybe, to see if it gives you some insight into what's failing. Is there anything of value in the RADIUS logs?
Not broadcasting the SSID beacon often results in connection difficulties (and never improves security). Consider turning it back on, at least for testing. One of the better setup docs around seems to be gone, as in the hosting site is not found, so I'll keep looking. |
I don't have access to the Radius Logs - and its a Microsoft Server (If that helps) - At lunch I will see if I can get anythign from our security people.
xsupplicant -i eth1 -d 6 Code:
Couldn't get information for interface wifi0! |
Clearly, from the output, you are not associated with an AP. You can't authenticate until you get past that hurdle.
Which version of XSupplicant? Do you have a config file, perhaps, that's overriding the iwconfig essid youressid eth0 setting? |
xsupplicant 0.8b ... There is a newer out so I will try and install it =)
iwconfig eth0 essid xxxx won't set it... I've also tried: Code:
echo "SSID: xxxx" > /proc/driver/aironet/eth0/SSID Code:
iwconfig eth0 ap 00:xx:xx:xx:xx:xx Again - this works at home on my unencrypted wireless.... |
New Info
I've installed XSupplicant 1.0pre(something)
in README.wireless_cards... Cisco 340/350 - No (Auth) - No (dWEP) - "The Cisco driver Hijacks 0x888e which prevents xsupplicant from obtaining the frames. We are evaluating this problem." It appears my card will fail anyways. Maybe... I don't know if it means Cisco as in Kernel or as in Cisco's implementation (I don't even know if they are different ro the same.) Looks like I'm going shopping this evening. =) In the mean time, I think I will try installing Cisco's driver again. |
if I ever want to associate on to hidden ssid i just set the id manually
iwconfig eth2 essid "( . Y . )" then request an ip via dhcp, like sudo dhcpcd eth2, or sudo dhclient eth2, whether there's a dhcp server running or not doesnt matter, the card has to bind to that AP in order to TRY to request an IP. works for me on my orinoco card. it's kind of a hack solution but it works for me. |
All times are GMT -5. The time now is 06:02 AM. |