Wireless Connection - Instructions for HUJI-netX (802.1x)
-Linux-

Gui / Command line

Notes

alert These instructions were tested on Sled 10 and Open SuSE 11
alert Authentication account - authentication is with a HUJI connection account: username%ra.
If you havn't got an account, register at : http://rap.huji.ac.il. You can access it from the HUJI-guest wireless network.


 

Gui via NetworkManager
Step

 

#~>NetworkManager&

 

 

  • Load the Knetworkmanager
    NetworkManager&

Step

  • Click on HUJI-netX.


Step

 

  • Choose Wireless Security: WPA2 Enterprise

  • Choose EAP Method: PEAP

  • Choose Key Type: AES-CCMP

  • In Identity type username%ra

  • In Password type password
    Note: an otp password is unusable

  • In CA Certificate File choose the location* of your certificate

  • Click Login to Network



    Note:
    * In CA Certificate File type the location of your certificate
    To find the location type the command:
    locate *.pem|grep AddTrust (or AddTrust_External).
    Note that in Ubuntu the command is locate *.pem|grep /etc/ssl/certs/AddTrust (or AddTrust_External).

 

Command Line via wpa supplicant
Step

#~> cat >>/etc/wpa_supplicant/wpa_supplicant.conf
ctrl_interface=/var/run/wpa_supplicant
network={
   scan_ssid=1
   ssid="HUJI-netX"
   key_mgmt=WPA-EAP
   eap=PEAP
   identity="XXXXXX%ra@huji.ac.il"
   password="XXXXXX"
   ca_cert="/etc/ssl/certs/AddTrust_External_Root.pem"
   phase1="peaplabel=0"
   phase2="auth=MSCHAPV2"
}


#~>

  • Login as root

  • Create a file
    /etc/wpa_supplicant/wpa_supplicant.conf

  • Type the following parameters:
    ctrl_interface=/var/run/wpa_supplicant
    network={
       scan_ssid=1
       ssid="HUJI-netX"
       key_mgmt=WPA-EAP
       eap=PEAP
       identity="XXXXXX%ra@huji.ac.il"
       password="XXXXXX"
       ca_cert="$CERT.pem"
       phase1="peaplabel=0"
       phase2="auth=MSCHAPV2"
    }


    Note:
    - In ca_cert you need to replace the $CERT with the location of your certificate
    (To find the location type the command:
    locate *.pem|grep AddTrust (or AddTrust_External)
    Note that in Ubuntu the command is locate *.pem|grep /etc/ssl/certs/AddTrust or AddTrust_External)
    - In identity type your username%ra
    - In password type your password


Step

#~> wpa_supplicant -i wlan0 -D wext -c /etc/wpa_supplicant/wpa_supplicant.conf&
#~>
#~> dhclient
#~>

  • Run the command:
    wpa_supplicant -i $WLAN -D wext -c /etc/wpa_supplicant/wpa_supplicant.conf&

    Note:
    Insted of $WLAN type your interface name.
    To view the name type iwconfig

  • Wait until the authentication is complited.

  • To receive an IP address type: dhclient

  • To view if you are connected type:
    ifconfig -a

 

Disconnect
Step

#~>
#~> ifconfig wlan0 down
#~>

 

  • Type the command:
    ifconfig $WLAN> down

    Note:
    Insted of $WLAN type your interface name.



If you need further help you may contact our support centers: 02-6585555, 02-5883450.


Last modified: 14/09/2016