MSCHAPv2 Authentication

Riccardo Veraldi Riccardo.Veraldi at cnaf.infn.it
Thu Mar 8 09:02:44 EST 2007


I simply did not understand your problem.
Your university uses a protected wireless network based on WPA + PEAP 
apparently...

So you need credentials to join the network if you do not have them you 
cannot join.
but you have to be sure your campus uses 802.1x WPA and PEAP.

Perhaps they are using EAP-TTLS instead of PEAP?
in this case you do not have the proper Windows supplicant and you need 
to install something like
securew2 from Alfa Ariss.
But on Linux using atheros chipset card like Cisco a/b/g and 
wpa_supplicant with a proper
wpa_supplicant.conf you should be able to be succesfull if you have the 
credentials.

On Linux Ubunto 6.10 there is full native support (firmware and driver) 
for Atheros like chipset cards and also Intel 2200 BG cards (the 
centrino ones), I tested it myself and they works using 
802.1x+WPA/WPA2+EAP-TTLS or PEAP


Riccardo


Luca Merolla wrote:
> Hi everyone,
>
> I have a BIG problem with wireless and linux. In my college there is a 
> wireless network where you need username/password to access it but I'm 
> not able to do this...
> We have a Windows Guide that show how to configure it:
> - first you have to have windows xp SP2 (otherwise will not work... 
> it's seems that it's true)
> - the first step to connect is to try to connect with the "Wireless 
> Network Connection" tools from SP2 without changing any settings (so it 
> will download the certificate and it will fail to login)
> - after you have to change the settings in the access-point that you 
> were trying to connect in that way:
> - Network Authentication: WPA
> - Data Encryption: TKIP
> - EAP Type: Protected EAP (PEAP)
> - Uncheck "Validate Server Certificate"
> - Select Authentication Mode: Secured Password (EAP-MSCHAP v2)
> - Uncheck "Automatically use my Windows logon name and password (and 
> domain if any)
> - after these changes you try to connect again and a form will appear 
> where you have to enter (username, password, SSID)
>
> I have an Atheros based wireless card, and works like a charm in any 
> other wireless network that I have tryed.
>
> The strangest thing of that, is that nobody is able to connect in 
> Windows with the proprietary utility from every Wireless card, the only 
> way to connect is to follow the procedure with the Wireless Network 
> Connection Tool from Win XP SP2.
> So, my question is:
> is it possible to reproduce the step made by the Wireless Network 
> Connection Tool (especcially the first one to download this kind of 
> certificate) to connect with linux-wpa_supplicant, or should I give up?
>
> Thanks in advance,
> Luca Merolla
>
>   
> ------------------------------------------------------------------------
>
> _______________________________________________
> HostAP mailing list
> HostAP at shmoo.com
> http://lists.shmoo.com/mailman/listinfo/hostap
>   

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.shmoo.com/pipermail/hostap/attachments/20070308/0e78af3f/attachment.htm 


More information about the HostAP mailing list