Saturday, July 19, 2008
How to connect to freeradius server by wpa_supplicant
I receive an unbelievable message today.
I need to explain what is DQA first.
The DQA department is in my services company. I am working in this sector now.
All of DQA engineers can't connect to freeradius server by wpa_supplicant. So, i need to do that and then summarize procedure as below.
Environment:
Laptop: Fujitsu S6410
OS: openSUSE 11.0
Kernel: Linux 2.6.25.9-0.2-default
Wireless device: Intel 4965 AGN (Intel 3945 ABG also can connect to radius server successfully)
- 1. Obtain the follwing certification key from freeradius server
- 2. Modify configuration file of wpa_supplicant
- 3. Connect to freeradius server by wpa_supplicant command
cacert.pem
client_cert.pem
client_cert.p12
#iwlist wlan0 scanning --> Make sure the ssid of access point that can be found by this command
#vi /etc/wpa_supplicant/wpa_supplicant.conf --> example ssid "bryan-test"
For TLS
network={
ssid="bryan-test"
proto=RSN
key_mgmt=WPA-EAP
pairwise=TKIP CCMP
group=TKIP CCMP
eap=TLS
identity="bryan"
ca_cert="/home/bryan/Desktop/suse_cert/cacert.pem"
client_cert="/home/bryan/Desktop/suse_cert/client_cert.pem"
private_key="/home/bryan/Desktop/suse_cert/client_cert.p12"
private_key_passwd="123456"
priority=1
}
For PEAP
network={
ssid="bryan-test"
proto=RSN WPA
key_mgmt=WPA-EAP
pairwise=TKIP CCMP
eap=PEAP
identity="aaa"
password="11111"
ca_cert="/home/bryan/Desktop/suse_cert/cacert.pem"
phase1="auth=MSCHAPV2"
phase2="peaplabel=1"
priority=1
}
For TTLS
network={
ssid="bryan-test"
proto=RSN WPA
key_mgmt=WPA-EAP
pairwise=TKIP CCMP
eap=TTLS
identity="aaa"
password="11111"
ca_cert="/home/bryan/Desktop/suse_cert/cacert.pem"
priority=1
}
#wpa_supplicant -Dwext -iwlan0 -c/etc/wpa_supplicant/wpa_supplicant.conf
0 comments: to “ How to connect to freeradius server by wpa_supplicant ”
Post a Comment