wpa-supplicant.conf Question

Nick Ellson grimm at nickellson.com
Mon Dec 13 10:51:57 EST 2004


Jouni,

I was not aware of the functionality, or lack there of, in the prism54 
code. I am also not exactly clear on the different between WPA-EAP and 
IEEE8021X. I know that I need to use MSChapV2 and not certs or PSK's.

I do not look forward to digging into the X-Supplicant stuff again, the 
WPA-Supplicant looked a lot easier to configure.

I have not tried the idea of using the NDIS wrapper for the windows 
driver. Would going this route make it easier, or doable, with the 
WPA-supplicant code? Or is IEEE8021X all I am really looking for to get 
authenticated security?

Nick



-- 
Nick Ellson
CCDA, CCNP, CCSP, CCAI, 
MCSE 2000, Security+, Network+
Network Hobbyist.

On Mon, 13 Dec 2004, Jouni Malinen wrote:

> On Sun, Dec 12, 2004 at 03:49:35PM -0800, Nick Ellson wrote:
>
>> I am using Gentoo Linux (a 2.6.9-rc1-mm4 Kernel) system with a Netgear
>> WG511 Prism54 card.
>
> Please note that the Prism54 support in wpa_supplicant is not yet
> complete and driver_prism54 is not really useful for real world at the
> moment. In addition, Prism54.org does not yet support WPA in client
> mode.
>
>> I currently have a Cisco AP1230 that runs an 802.1x SSID with a CSACS
>> Radius server (PEAP). The Windows XP stations use the MS Zero Wireless
>> configuration with WPA/MSChapv2 authentication, with I assume dynamic WEP
>> as we don't enter one on the client.
>
> WPA?? Or did you mean to say EAP/MSChapv2?
>
>> I'd like to emulate this with the Linux side. I have gotten my card to
>> attach to a No WEP, no Protection SSID on the same AP, but I am not
>> getting anywhere with the WPA-Supplicant.
>
>> Has anyone used the WPA-Supplicant to connect in this way that can tell me
>> what options you used in the conf file? Or does my configuration with teh
>> Netgear card toss up any red flags using the prism54 software rather than
>> an NDIS wrapper?
>
> You might be able to use driver_wext.c in wpa_supplicant to use the
> Prism54.org driver in non-WPA modes, including IEEE 802.1X. However, I
> have not tested this.
>
> -- 
> Jouni Malinen                                            PGP id EFC895FA
> _______________________________________________
> HostAP mailing list
> HostAP at shmoo.com
> http://lists.shmoo.com/mailman/listinfo/hostap
>



More information about the HostAP mailing list