how to use wpa_supplicant on wpa network with peap and credentialing

Andrew Barr andrew.james.barr at gmail.com
Mon Jul 17 17:14:26 EDT 2006


On Monday 17 July 2006 17:00, John H. wrote:
> sorry, certificates, that's the word they used.  would i need to do
> anything for that?

Well, for PEAP the usual setup is to validate the server certificate to 
prevent rogue APs and password stealing and the like. You don't HAVE to do 
it, and in the case of my university they don't provide a public key 
certificate so I can't (although I understand it might be possible to capture 
it out of the authentication stream). You can ignore the certificate (if it 
is just a server cert validation like I described above), or you can provide 
a certificate public key file (see the documentation for acceptable formats) 
to wpa_supplicant. There is an example configuration file distributed with 
wpa_supplicant that should have the exact parameter name in it.

-- 
Andrew Barr | http://www.oakcourt.dyndns.org/~andrew/ | GPG: 0xAD9AE76A
"Those who would trade liberty for security deserve neither." -- B. Franklin



More information about the HostAP mailing list