You are not logged in.

#1 2012-02-28 03:58:16

walterjwhite
Member
Registered: 2011-05-01
Posts: 207

hostapd - WPA-EAP

Hi all,

I am trying to upgrade my security from WPA2-PSK to WPA-EAP TLS and am not having much luck.  I created a CA certificate / private key, hostapd certificate / key, client certificate / key.

When I attempt to connect my phone to the network, I see debugging information in the logs on the server indicating it is attempting to authenticate.  After selecting the certificate to use, my phone prompts me for the private key password.  I enter what I think I set it as, and it immediately says invalid password.

Similarly, when I attempt to connect my laptop to the hostapd AP, I get: denied authentication (status 1) on the client side, but nothing on the server-side logs.

1. Did I create the certificates correctly?
2. Is my hostapd configuration correct?
3. What should I use for identify and password (hostname / private key password)?

My relevant hostapd.conf is below:
eap_server=1
ca_cert=/etc/hostapd/cacert.pem
server_cert=/etc/hostapd/hostapd.server-certificate.pem
private_key=/etc/hostapd/hostapd.server-key.pem
private_key_passwd=###
check_crl=1



Walter

Offline

Board footer

Powered by FluxBB