Using PEAP and MSCHAPv2 for a wired connection

gnunix · 2014-10-23 01:40:38

Hey,

There was this thread with the same / similar problem about a month ago, but I wasn't sure about Thread hijacking, so I decided to start a new one.

I moved in to my university's dorm recently and they use PEAP and MSCHAPv2 to connect to the wired network (there is no Wifi). I manually connect using this wpa_supplicant config:

ap_scan=0
fast_reauth=1
network={
	key_mgmt=IEEE8021X
	eap=PEAP
	identity="username"
	anonymous_identity="username"
	phase2="auth=MSCHAPV2"
	password="pass"
}

I connect with the following commands as root:

# ip link set enp12s0 up
# wpa_supplicant -Dwired -ienp12s0 -c/etc/wpa_supplicant/wpa_enp12s0-kleeburg.conf &
# dhcpcd -i enp12s0

And I always wait for until the authentication is completed, before starting dhcpcd (not sure, whether or not this is necessary)

So far so good, but i would like to connect using netctl, but this fails. My current netctl config is:

Interface=enp12s0
Connection=ethernet
Security=wpa-config
WPAConfigFile='/etc/wpa_supplicant/wpa_enp12s0-kleeburg.conf'
IP=dhcp

And the output of 'systemctl status':

Oct 23 02:55:15 david-L430 network[653]: Starting network profile 'enp12s0-kleeburg'...
Oct 23 02:55:18 david-L430 dhcpcd[675]: version 6.5.0 starting
Oct 23 02:55:19 david-L430 dhcpcd[675]: DUID 00:01:00:01:19:8f:56:8f:9c:4e:36:b5:58:0c
Oct 23 02:55:19 david-L430 dhcpcd[675]: enp12s0: IAID 0e:91:77:a7
Oct 23 02:55:20 david-L430 dhcpcd[675]: enp12s0: rebinding lease of 136.199.217.54
Oct 23 02:55:25 david-L430 dhcpcd[675]: enp12s0: DHCP lease expired
Oct 23 02:55:25 david-L430 dhcpcd[675]: enp12s0: soliciting a DHCP lease
Oct 23 02:55:49 david-L430 dhcpcd[675]: timed out
Oct 23 02:55:49 david-L430 dhcpcd[675]: exited
Oct 23 02:55:49 david-L430 network[653]: DHCP IPv4 lease attempt failed on interface 'enp12s0'
Oct 23 02:55:49 david-L430 network[653]: Failed to bring the network up for profile 'enp12s0-kleeburg'
Oct 23 02:55:49 david-L430 systemd[1]: netctl@enp12s0\x2dkleeburg.service: main process exited, code=exited, status=1/FAILURE
Oct 23 02:55:49 david-L430 systemd[1]: Failed to start Networking for netctl profile enp12s0-kleeburg.
Oct 23 02:55:49 david-L430 systemd[1]: Unit netctl@enp12s0\x2dkleeburg.service entered failed state.

I'm wondering why the output of 'systemctl status' says nothing about wpa_supplicant.
Also, it doesn't fail, when I connect manually, kill wpa_supplicant and dhcpcd, use 'ip li s enp12s0 down' and then try to connect with netctl. In this case, it connects without problems.

I hope somebody has an idea whats wrong. Thanks in advance.

mkristof · 2015-06-17 06:20:14

Create a netctl profile as following:

Connection='ethernet'
Interface=enp12s0
Description="description"
IP='dhcp'
Auth8021X=yes
WPAConfigFile=/etc/wpa_supplicant/dormitory.conf

Create the /etc/wpa_supplicant/dormitory.conf:

ctrl_interface=/var/run/wpa_supplicant
ap_scan=0

network={
key_mgmt=IEEE8021X
eap=PEAP
pairwise=CCMP TKIP
phase2="auth=MSCHAPV2"
identity="mkristof"
password="pswd"
priority=2
}

This works for me...

gnunix · 2015-06-17 10:51:17

Works for me, too.

Thank you very much!

Arch Linux

#1 2014-10-23 01:40:38

Using PEAP and MSCHAPv2 for a wired connection

#2 2015-06-17 06:20:14

Re: Using PEAP and MSCHAPv2 for a wired connection

#3 2015-06-17 10:51:17

Re: Using PEAP and MSCHAPv2 for a wired connection

Board footer