Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision | ||
en:verejne:sit:wi-fi:linux [13.01.2018 01:35] – Pavel Valach | en:verejne:sit:wi-fi:linux [20.09.2021 13:51] – updated the CA certificate part Pavel Valach | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ===== Set up Wi-Fi on Linux - Ubuntu, NetworkManager ===== | + | ====== Set up Wi-Fi on Linux – Ubuntu, NetworkManager, wpa_supplicant ====== |
- | //FIXME: add example configuration file for wpa_supplicant// | + | ===== Ubuntu, NetworkManager ===== |
- | It is usually best to obey the instructions of your network manager. The connection settings might be a bit difficult to fill correctly; thus, the following settings for NetworkManager | + | When using a GUI, it is likely that you use NetworkManager |
- | * **Security**: | + | <note important> |
- | * **Authentication mode**: Protected EAP (PEAP) or TTLS | + | **It is important to set up RADIUS server identity verification, as it will give you protection against rogue Wi-Fi access points and protect your password as well.** That is why you should take the time to set your Wi-Fi connection |
- | * MSCHAPv2, or PAP for TTLS | + | </note> |
- | * **CA certificate** can be downloaded [[https:// | + | |
- | * **User name** and **Password** - enter your SINIS credentials. | + | |
+ | - Run command '' | ||
+ | - Expand the **Wi-Fi** category and look if you already have an existing Sincoolka profile - it might be a good idea to remove it with a **-** button (minus sign) if it does not work. \\ {{: | ||
+ | - Then, click the **+** button (plus sign) in the bottom toolbar. | ||
+ | - In the **Choose a Connection Type** window, pick **Wi-Fi** from the list. Then click the **Create...** button \\ {{: | ||
+ | - A window for describing network configuration will open. | ||
+ | * Fill out the name of the profile (can be anything, e.g. Sincoolka). | ||
+ | * Switch to the **Wi-Fi** tab and fill out these - **SSID**: '' | ||
+ | * Switch to the **Wi-Fi Security** tab and set up the following: | ||
+ | * **Security**: | ||
+ | * **Authentication**: | ||
+ | * **Anonymous identity**: '' | ||
+ | * **Domain**: '' | ||
+ | * **CA certificate**: | ||
+ | * **Inner authentication**: | ||
+ | * **Username**: | ||
+ | * **Password**: | ||
+ | * Confirm your settings by pushing the **Save** button. | ||
+ | |||
+ | Now, your connection should be all set for secure Wi-Fi browsing. | ||
+ | |||
+ | ===== wpa_supplicant ===== | ||
+ | |||
+ | WPA Supplicant is an utility which enables WPA security support for Wi-Fi in Linux. NetworkManager uses wpa_supplicant internally. | ||
+ | |||
+ | In case you want to set up a wpa_supplicant profile manually, we have prepared a Sincoolka network definition below. | ||
+ | |||
+ | Please [[en: | ||
+ | |||
+ | <file wpa_supplicant wpa_supplicant.conf> | ||
+ | network={ | ||
+ | ssid=" | ||
+ | scan_ssid=1 | ||
+ | key_mgmt=WPA-EAP | ||
+ | eap=TTLS | ||
+ | # path to the downloaded CA certificate | ||
+ | ca_cert="/ | ||
+ | domain_match=" | ||
+ | phase2=" | ||
+ | pairwise=CCMP | ||
+ | group=CCMP | ||
+ | | ||
+ | # Your credentials | ||
+ | identity=" | ||
+ | anonymous_identity=" | ||
+ | password=" | ||
+ | } | ||
+ | </ | ||
+ | |||
+ | ===== iwd ===== | ||
+ | |||
+ | // | ||
+ | |||
+ | [[https:// | ||
+ | possible. It can work in standalone mode or in combination with comprehensive network managers. | ||
+ | |||
+ | If you want to connect to Wi-Fi using iwd, you need to place file called '' | ||
+ | (depending on which network you'd like to connect) under ''/ | ||
+ | |||
+ | Please [[en: | ||
+ | |||
+ | <file iwd Sincoolka 5G.8021x> | ||
+ | [Security] | ||
+ | EAP-Method=TTLS | ||
+ | EAP-Identity=anonymous@sin.cvut.cz | ||
+ | EAP-TTLS-ServerDomainMask=radius.sin.cvut.cz | ||
+ | EAP-TTLS-CACert=/ | ||
+ | EAP-TTLS-Phase2-Method=Tunneled-PAP | ||
+ | EAP-TTLS-Phase2-Identity=your.username@sin.cvut.cz | ||
+ | EAP-TTLS-Phase2-Password=YourStr0ngPa$$word | ||
+ | |||
+ | [Settings] | ||
+ | AutoConnect=true | ||
+ | </ |