<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=us-ascii">
<META content="MSHTML 6.00.2900.2769" name=GENERATOR></HEAD>
<BODY>
<DIV><SPAN class=359415420-05122005><FONT face=Arial size=2>Hello folks, I am
struggling with connecting to a wpa peap tkip network at my office. I have tried
to be as verbose as possible with the following information. Any
ideas/suggestions would be most appreciated! Thanks in
advance</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial size=2>Chris
Kearney</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial size=2>CERT
FILE</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2>-----------------</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial size=2>We have a cert, I
have saved it in /usr/share/ssl/certs/CollabSvcsCA.crt</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial size=2>-rw-r--r-- 1
root root 828 Dec 5 12:29
/usr/share/ssl/certs/CollabSvcsCA.crt<BR></FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial size=2>VERSION
INFO</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2>------------------</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial size=2>
<DIV><SPAN class=359415420-05122005><FONT face=Arial size=2>I have
ieee80211-1.1.6, ipw2200-1.0.8, ipw-firmware 2.4-7, wpa_supplicant-0.4.7 RHEL
4u2</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005></SPAN> </DIV>
<DIV><SPAN class=359415420-05122005>here is some lsmod output:</SPAN></DIV>
<DIV><SPAN class=359415420-05122005></SPAN> </DIV>
<DIV><SPAN
class=359415420-05122005>ipw2200
102496
0<BR>ieee80211
25416 1
ipw2200<BR>ieee80211_crypt
6660 3
ieee80211_crypt_tkip,ipw2200,ieee80211<BR></SPAN></FONT></SPAN></DIV></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial size=2>CONFIG
FILE</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2>-------------------</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial size=2>This is my
/etc/wpa_supplicant.conf</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2>ctrl_interface=/var/run/wpa_supplicant</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2>network={<BR>ssid="MGC"<BR>key_mgmt=WPA-EAP<BR>eap=PEAP<BR>pairwise=TKIP<BR>group=TKIP<BR>phase2="auth=MSCHAPV2"<BR>identity="ckearney"</FONT></SPAN><SPAN
class=359415420-05122005><FONT face=Arial size=2><BR>password=""<not included
for obvious
reasons"<BR>ca_cert="/usr/share/ssl/certs/CollabSvcsCA.crt"<BR>}</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial size=2>COMMAND
OUTPUT</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2>--------------</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial size=2>For some reason
unless I run iwconfig eth1 essid MGC, wpa_supplicant will tell me that no
suitable AP is found.</FONT></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=359415420-05122005><SPAN class=359415420-05122005><FONT
face=Arial size=2>[root@gadget Dell_700M]# iwconfig eth1 essid
MGC</FONT></SPAN></SPAN></DIV>
<DIV><SPAN class=359415420-05122005><FONT face=Arial size=2>[root@gadget
Dell_700M]# /usr/sbin/wpa_supplicant -d -D ipw -i eth1 -c
/etc/wpa_supplicant.conf<BR>Initializing interface 'eth1' conf
'/etc/wpa_supplicant.conf' driver 'ipw' ctrl_interface 'N/A'<BR>Configuration
file '/etc/wpa_supplicant.conf' -> '/etc/wpa_supplicant.conf'<BR>Reading
configuration file
'/etc/wpa_supplicant.conf'<BR>ctrl_interface='/var/run/wpa_supplicant'<BR>Priority
group 0<BR> id=0 ssid='MGC'<BR>Initializing interface (2)
'eth1'<BR>EAPOL: SUPP_PAE entering state DISCONNECTED<BR>EAPOL: KEY_RX entering
state NO_KEY_RECEIVE<BR>EAPOL: SUPP_BE entering state INITIALIZE<BR>EAP: EAP
entering state DISABLED<BR>EAPOL: External notification -
portEnabled=0<BR>EAPOL: External notification -
portValid=0<BR>wpa_driver_ipw_init is called<BR>SIOCGIWRANGE: too old (short)
data - assuming WPA is not supported<BR>Own MAC address:
00:13:ce:8e:99:2e<BR>wpa_driver_ipw_set_wpa:
enabled=1<BR>wpa_driver_ipw_set_key: alg=none key_idx=0 set_tx=0 seq_len=0
key_len=0<BR>wpa_driver_ipw_set_key: alg=none key_idx=1 set_tx=0 seq_len=0
key_len=0<BR>wpa_driver_ipw_set_key: alg=none key_idx=2 set_tx=0 seq_len=0
key_len=0<BR>wpa_driver_ipw_set_key: alg=none key_idx=3 set_tx=0 seq_len=0
key_len=0<BR>wpa_driver_ipw_set_countermeasures:
enabled=0<BR>wpa_driver_ipw_set_drop_unencrypted: enabled=1<BR>Setting scan
request: 0 sec 100000 usec<BR>Added interface eth1<BR>Wireless event: cmd=0x8b06
len=8<BR>RTM_NEWLINK, IFLA_IFNAME: Interface 'eth1' added<BR>RTM_NEWLINK,
IFLA_IFNAME: Interface 'eth1' added<BR>State: DISCONNECTED ->
SCANNING<BR>Starting AP scan (broadcast SSID)<BR>Wireless event: cmd=0x8b15
len=20<BR>Wireless event: new AP: 00:00:00:00:00:00<BR>Added BSSID
00:00:00:00:00:00 into blacklist<BR>State: SCANNING -> DISCONNECTED<BR>EAPOL:
External notification - portEnabled=0<BR>EAPOL: External notification -
portValid=0<BR>CTRL-EVENT-DISCONNECTED - Disconnect event - remove
keys<BR>wpa_driver_ipw_set_key: alg=none key_idx=0 set_tx=0 seq_len=0
key_len=0<BR>wpa_driver_ipw_set_key: alg=none key_idx=1 set_tx=0 seq_len=0
key_len=0<BR>wpa_driver_ipw_set_key: alg=none key_idx=2 set_tx=0 seq_len=0
key_len=0<BR>wpa_driver_ipw_set_key: alg=none key_idx=3 set_tx=0 seq_len=0
key_len=0<BR>wpa_driver_ipw_set_key: alg=none key_idx=0 set_tx=0 seq_len=0
key_len=0<BR>RTM_NEWLINK, IFLA_IFNAME: Interface 'eth1' added<BR>Scan timeout -
try to get results<BR>Received 1175 bytes of scan results (5 BSSes)<BR>Scan
results: 5<BR>Selecting BSS from priority group 0<BR>0: 00:13:60:d4:e6:00
ssid='MGC' wpa_ie_len=26 rsn_ie_len=0 caps=0x11<BR> selected based
on WPA IE<BR>Trying to associate with 00:13:60:d4:e6:00 (SSID='MGC' freq=0
MHz)<BR>Cancelling scan request<BR>WPA: clearing own WPA/RSN IE<BR>Automatic
auth_alg selection: 0x1<BR>wpa_driver_ipw_set_auth_alg: auth_alg=0x1<BR>WPA:
using IEEE 802.11i/D3.0<BR>WPA: Selected cipher suites: group 8 pairwise 8
key_mgmt 1<BR>WPA: set AP WPA IE - hexdump(len=26): dd 18 00 50 f2 01 01 00 00
50 f2 02 01 00 00 50 f2 02 01 00 00 50 f2 01 28 00<BR>WPA: clearing AP RSN
IE<BR>WPA: using GTK TKIP<BR>WPA: using PTK TKIP<BR>WPA: using KEY_MGMT
802.1X<BR>WPA: Set own WPA IE default - hexdump(len=24): dd 16 00 50 f2 01 01 00
00 50 f2 02 01 00 00 50 f2 02 01 00 00 50 f2 01<BR>No keys have been configured
- skip key clearing<BR>wpa_driver_ipw_set_drop_unencrypted: enabled=1<BR>State:
DISCONNECTED -> ASSOCIATING<BR>Setting authentication timeout: 10 sec 0
usec<BR>EAPOL: External notification - portControl=Auto<BR>Wireless event:
cmd=0x8b1a len=16<BR>Wireless event: cmd=0x8b15 len=20<BR>Wireless event: new
AP: 00:13:60:d4:e6:00<BR>State: ASSOCIATING -> ASSOCIATED<BR>Associated to a
new BSS: BSSID=00:13:60:d4:e6:00<BR>No keys have been configured - skip key
clearing<BR>Associated with 00:13:60:d4:e6:00<BR>WPA: Association event - clear
replay counter<BR>EAPOL: External notification - portEnabled=0<BR>EAPOL:
External notification - portValid=0<BR>EAPOL: External notification -
portEnabled=1<BR>EAPOL: SUPP_PAE entering state CONNECTING<BR>EAPOL: SUPP_BE
entering state IDLE<BR>EAP: EAP entering state INITIALIZE<BR>EAP: EAP entering
state IDLE<BR>Setting authentication timeout: 10 sec 0 usec<BR>RTM_NEWLINK,
IFLA_IFNAME: Interface 'eth1' added<BR>RX EAPOL from
00:13:60:d4:e6:00<BR>Setting authentication timeout: 70 sec 0 usec<BR>EAPOL:
Received EAP-Packet frame<BR>EAPOL: SUPP_PAE entering state RESTART<BR>EAP: EAP
entering state INITIALIZE<BR>EAP: EAP entering state IDLE<BR>EAPOL: SUPP_PAE
entering state AUTHENTICATING<BR>EAPOL: SUPP_BE entering state REQUEST<BR>EAPOL:
getSuppRsp<BR>EAP: EAP entering state RECEIVED<BR>EAP: Received EAP-Request
method=1 id=1<BR>EAP: EAP entering state IDENTITY<BR>CTRL-EVENT-EAP-STARTED EAP
authentication started<BR>EAP: EAP-Request Identity data -
hexdump_ascii(len=40):<BR> 00 6e 65 74 77 6f 72 6b 69 64
3d 4d 47 43 2c 6e _networkid=MGC,n<BR> 61 73
69 64 3d 77 76 6c 61 6e 61 70 31 30 31 2c
asid=wvlanap101,<BR> 70 6f 72 74 69 64 3d
30
portid=0<BR>EAP: using real identity -
hexdump_ascii(len=8):<BR> 63 6b 65 61 72 6e 65
79
ckearney<BR>EAP: EAP entering state SEND_RESPONSE<BR>EAP: EAP entering state
IDLE<BR>EAPOL: SUPP_BE entering state RESPONSE<BR>EAPOL: txSuppRsp<BR>EAPOL:
SUPP_BE entering state RECEIVE<BR>RX EAPOL from 00:13:60:d4:e6:00<BR>EAPOL:
Received EAP-Packet frame<BR>EAPOL: SUPP_BE entering state REQUEST<BR>EAPOL:
getSuppRsp<BR>EAP: EAP entering state RECEIVED<BR>EAP: Received EAP-Request
method=25 id=2<BR>EAP: EAP entering state GET_METHOD<BR>EAP: initialize selected
EAP method (25, PEAP)<BR>EAP-PEAP: Phase2 EAP types - hexdump(len=1):
1a<BR>OpenSSL: tls_connection_ca_cert - Failed to load root certificates
error:00000000:lib(0):func(0):reason(0)<BR>TLS: Failed to set TLS connection
parameters<BR>EAP-PEAP: Failed to initialize SSL.<BR><BR></DIV>
<DIV><BR></DIV></FONT></SPAN>
<DIV><SPAN class=359415420-05122005><FONT face=Arial
size=2> </DIV></FONT></SPAN></BODY></HTML>