You are not logged in.
- Topics: Active | Unanswered
#1 2012-11-21 00:30:28
- tatskaari
- Member
- Registered: 2012-11-20
- Posts: 5
[solved] Cant configure wpa_supplican to connect to eduroam.
I'm trying to connect to the network, eduroam and Kent university. I downloaded the graphical wcid and it won't list any networks so I'm now trying to connect manually. I know on my Ubuntu desktop I have wpa2 security with PEAP.
I am trying to follow the wpa_supplicant tutorial. But I have run into some problems.
The output of iw wlan0 scan is:
BSS 10:bd:18:3c:79:c0 (on wlan0)
TSF: 4858571164215 usec (56d, 05:36:11)
freq: 2437
beacon interval: 102
capability: ESS Privacy ShortPreamble (0x0031)
signal: -61.00 dBm
last seen: 283 ms ago
Information elements from Probe Response frame:
SSID: eduroam
Supported rates: 1.0* 2.0* 5.5* 6.0 9.0 11.0* 12.0 18.0
DS Parameter set: channel 6
Country: GB Environment: Indoor/Outdoor
Channels [1 - 13] @ 20 dBm
ERP: <no flags>
HT capabilities:
Capabilities: 0x182c
HT20
SM Power Save disabled
RX HT20 SGI
No RX STBC
Max AMSDU length: 7935 bytes
DSSS/CCK HT40
Maximum RX AMPDU length 65535 bytes (exponent: 0x003)
Minimum RX AMPDU time spacing: 8 usec (0x06)
HT RX MCS rate indexes supported: 0-15
HT TX MCS rate indexes are undefined
RSN: * Version: 1
* Group cipher: CCMP
* Pairwise ciphers: CCMP
* Authentication suites: IEEE 802.1X
* Capabilities: 4-PTKSA-RC 4-GTKSA-RC (0x0028)
Extended supported rates: 24.0 36.0 48.0 54.0
HT operation:
* primary channel: 6
* secondary channel offset: no secondary
* STA channel width: 20 MHz
* RIFS: 0
* HT protection: nonmember
* non-GF present: 1
* OBSS non-GF present: 0
* dual beacon: 0
* dual CTS protection: 0
* STBC beacon: 0
* L-SIG TXOP Prot: 0
* PCO active: 0
* PCO phase: 0
WMM: * Parameter version 1
* u-APSD
* BE: CW 15-1023, AIFSN 3
* BK: CW 15-1023, AIFSN 7
* VI: CW 7-15, AIFSN 2, TXOP 3008 usec
* VO: CW 3-7, AIFSN 2, TXOP 1504 usec
BSS 10:bd:18:31:83:e0 (on wlan0)
TSF: 6103851608440 usec (70d, 15:30:51)
freq: 2412
beacon interval: 102
capability: ESS Privacy ShortPreamble ShortSlotTime (0x0431)
signal: -78.00 dBm
last seen: 626 ms ago
SSID: eduroam
Supported rates: 1.0* 2.0* 5.5* 6.0 9.0 11.0* 12.0 18.0
DS Parameter set: channel 1
TIM: DTIM Count 0 DTIM Period 1 Bitmap Control 0x0 Bitmap[0] 0x0
Country: GB Environment: Indoor/Outdoor
Channels [1 - 13] @ 20 dBm
ERP: <no flags>
HT capabilities:
Capabilities: 0x182c
HT20
SM Power Save disabled
RX HT20 SGI
No RX STBC
Max AMSDU length: 7935 bytes
DSSS/CCK HT40
Maximum RX AMPDU length 65535 bytes (exponent: 0x003)
Minimum RX AMPDU time spacing: 8 usec (0x06)
HT RX MCS rate indexes supported: 0-15
HT TX MCS rate indexes are undefined
RSN: * Version: 1
* Group cipher: CCMP
* Pairwise ciphers: CCMP
* Authentication suites: IEEE 802.1X
* Capabilities: 4-PTKSA-RC 4-GTKSA-RC (0x0028)
Extended supported rates: 24.0 36.0 48.0 54.0
HT operation:
* primary channel: 1
* secondary channel offset: no secondary
* STA channel width: 20 MHz
* RIFS: 1
* HT protection: no
* non-GF present: 1
* OBSS non-GF present: 0
* dual beacon: 0
* dual CTS protection: 0
* STBC beacon: 0
* L-SIG TXOP Prot: 0
* PCO active: 0
* PCO phase: 0
WMM: * Parameter version 1
* u-APSD
* BE: CW 15-1023, AIFSN 3
* BK: CW 15-1023, AIFSN 7
* VI: CW 7-15, AIFSN 2, TXOP 3008 usec
* VO: CW 3-7, AIFSN 2, TXOP 1504 usec
BSS 00:02:a8:c6:a6:c5 (on wlan0)
TSF: 175352393771 usec (2d, 00:42:32)
freq: 2437
beacon interval: 100
capability: ESS Privacy ShortSlotTime (0x0411)
signal: -83.00 dBm
last seen: 346 ms ago
Information elements from Probe Response frame:
SSID: U+Net
Supported rates: 1.0* 2.0* 5.5* 11.0* 6.0 9.0 12.0 18.0
DS Parameter set: channel 6
ERP: Barker_Preamble_Mode
Extended supported rates: 24.0 36.0 48.0 54.0
WMM: * Parameter version 1
* u-APSD
* BE: CW 15-1023, AIFSN 3
* BK: CW 15-1023, AIFSN 7
* VI: CW 7-15, AIFSN 2, TXOP 3008 usec
* VO: CW 3-7, AIFSN 2, TXOP 1504 usec
Country: KR Environment: Indoor/Outdoor
Channels [1 - 13] @ 16 dBm
BSS 10:bd:18:31:29:b0 (on wlan0)
TSF: 6103474237816 usec (70d, 15:24:34)
freq: 2412
beacon interval: 102
capability: ESS Privacy ShortPreamble ShortSlotTime (0x0431)
signal: -90.00 dBm
last seen: 640 ms ago
SSID: eduroam
Supported rates: 1.0* 2.0* 5.5* 6.0 9.0 11.0* 12.0 18.0
DS Parameter set: channel 1
TIM: DTIM Count 0 DTIM Period 1 Bitmap Control 0x9 Bitmap[0] 0x80 (+ 3 octets)
Country: GB Environment: Indoor/Outdoor
Channels [1 - 13] @ 20 dBm
ERP: <no flags>
HT capabilities:
Capabilities: 0x182c
HT20
SM Power Save disabled
RX HT20 SGI
No RX STBC
Max AMSDU length: 7935 bytes
DSSS/CCK HT40
Maximum RX AMPDU length 65535 bytes (exponent: 0x003)
Minimum RX AMPDU time spacing: 8 usec (0x06)
HT RX MCS rate indexes supported: 0-15
HT TX MCS rate indexes are undefined
RSN: * Version: 1
* Group cipher: CCMP
* Pairwise ciphers: CCMP
* Authentication suites: IEEE 802.1X
* Capabilities: 4-PTKSA-RC 4-GTKSA-RC (0x0028)
Extended supported rates: 24.0 36.0 48.0 54.0
HT operation:
* primary channel: 1
* secondary channel offset: no secondary
* STA channel width: 20 MHz
* RIFS: 0
* HT protection: non-HT mixed
* non-GF present: 1
* OBSS non-GF present: 0
* dual beacon: 0
* dual CTS protection: 0
* STBC beacon: 0
* L-SIG TXOP Prot: 0
* PCO active: 0
* PCO phase: 0
WMM: * Parameter version 1
* u-APSD
* BE: CW 15-1023, AIFSN 3
* BK: CW 15-1023, AIFSN 7
* VI: CW 7-15, AIFSN 2, TXOP 3008 usec
* VO: CW 3-7, AIFSN 2, TXOP 1504 usec
BSS 00:02:a8:c6:a6:c4 (on wlan0)
TSF: 175352320415 usec (2d, 00:42:32)
freq: 2437
beacon interval: 100
capability: ESS Privacy ShortSlotTime (0x0411)
signal: -84.00 dBm
last seen: 420 ms ago
SSID:
Supported rates: 1.0* 2.0* 5.5* 11.0* 6.0 9.0 12.0 18.0
DS Parameter set: channel 6
WPA: * Version: 1
* Group cipher: TKIP
* Pairwise ciphers: TKIP
* Authentication suites: PSK
Country: KR Environment: Indoor/Outdoor
Channels [1 - 13] @ 16 dBm
TIM: DTIM Count 2 DTIM Period 5 Bitmap Control 0x0 Bitmap[0] 0x0
WMM: * Parameter version 1
* u-APSD
* BE: CW 15-1023, AIFSN 3
* BK: CW 15-1023, AIFSN 7
* VI: CW 7-15, AIFSN 2, TXOP 3008 usec
* VO: CW 3-7, AIFSN 2, TXOP 1504 usec
ERP: Barker_Preamble_Mode
Extended supported rates: 24.0 36.0 48.0 54.0 I assume this means that my wi-fi card is working. Does it? If so, I don't know why wicd can't find any networks. I would prefere to do it manually anyway though.
I then edited /etc/wpa_supplicant.conf. It now cantains:
ctrl_interface=DIR=/run/wpa_supplicant GROUP=wheel
network={
ssid="eduroam"
proto=RSN
pairwise=CCMP
eap=PEAP
identity="jfp6@kent.ac.uk"
password="***"
}I then tried:
wpa_supplicant -B -Dwext -i wlan0 -c /etc/wpa_supplicant.conf
but it failed to load/parse /etc/wpa_supplicant.conf.
Line 9: WPA-PSK accepted for key management, but no PSK configured.
Line 9: failed to parse network block.
Failed to read or parse configuration '/etc/wpa_supplicant.conf'.If I select no key management then it parses. If I then proceed to type dhcpcd wlan0 it times out and ip addr show wlan0 prints nothing.
If you can explain to me what I'm doing wrong and how it should be done and why that would be great. Thanks.
Extra info:
rfkill lists everything as unblocked.
ifconfig lists wlan0 as up.
Last edited by tatskaari (2012-11-21 19:31:03)
Offline
#2 2012-11-21 01:00:32
- Trilby
- Inspector Parrot
- Registered: 2011-11-29
- Posts: 29,514
- Website
Re: [solved] Cant configure wpa_supplican to connect to eduroam.
I've become pretty comfortable with manual wireless connection methods - but I still never hand-edit wpa_supplicant.conf. I highly recommend using wpa_passphrase to configure this file for you. It seems the file is not correctly filled (no psk) and that leads to the error you are getting.
As an aside I laughed a bit at the refreshingly honest thread title - but while honesty is great, information is better. If you include a breif statement of the error/problem in the title you may get better results.
"UNIX is simple and coherent..." - Dennis Ritchie, "GNU's Not UNIX" - Richard Stallman
Offline
#3 2012-11-21 01:41:35
- WonderWoofy
- Member
- From: Los Gatos, CA
- Registered: 2012-05-19
- Posts: 8,414
Re: [solved] Cant configure wpa_supplican to connect to eduroam.
I think the part that makes it trickier than normal is the "eduroam" part. I have seen many stuggle pretty hard with this. I have never used it, so I cannot weigh in, sorry.
Offline
#4 2012-11-21 03:09:21
- tatskaari
- Member
- Registered: 2012-11-20
- Posts: 5
Re: [solved] Cant configure wpa_supplican to connect to eduroam.
Sorry, I feel like I should have done some more googling but it only occured to me while writing this post that other universities use eduroam. With a quick google search I found a solution.I will redeam myself by posting my solution.
1. ip link set wlan0 up where wlan0 is your wireless interface you are trying to connect from.
2. Create/edit /etc/wpa_supplicant.conf to look like:
ctrl_interface=/var/run/wpa_supplicant
network={
ssid="eduroam"
scan_ssid="eduroam"
proto=RSN
key_mgmt=WPA-EAP
pairwise=CCMP
group=CCMP
eap=PEAP
identity="abc1@university_name.ac.uk"
password="PASSWORD"
ca_cert="/usr/share/ca-certificates/mozilla/GlobalSign_Root_CA.crt"
phase2="auth=MSCHAPV2"
}3. As root:
wpa_supplicant -B -Dwext -i wlan0 -c /etc/wpa_supplicant.conf
4. then dhcpcd wlan0 again where wlan0 is the interface you are trying to connect from.
Last edited by tatskaari (2012-11-21 03:10:23)
Offline
#5 2012-11-21 09:12:43
- hunterthomson
- Member
- Registered: 2008-06-22
- Posts: 794
- Website
Re: [solved] Cant configure wpa_supplican to connect to eduroam.
On a side note, You should send this link to the head of IT Security at Kent University.
https://www.cloudcracker.com/blog/2012/ … s-chap-v2/
Defeating PPTP VPNs and WPA2 Enterprise with MS-CHAPv2 | DC20 | Moxie Marlinspike, David Hulton and Marsh Ray
http://www.youtube.com/watch?v=sIidzPntdCM
Anyone can crack the DES key in less then 24hr's and decrypt all communications
I sure hope that password is not same password you use for all your University login's...
https://www.cloudcracker.com/
Last edited by hunterthomson (2012-11-21 09:27:23)
OpenBSD-current Thinkpad X230, i7-3520M, 16GB CL9 Kingston, Samsung 830 256GB
Contributor: linux-grsec
Offline