Wireless Connection - Instructions for Eduroam (802.1x)
-Linux-

Gui / Command line

Notes

alert These instructions were tested on Ubuntu 12.04
alert Authentication account - authentication is with a HUJI connection account: username@huji.ac.il.
If you havn't got an account, register at : http://rap.huji.ac.il. You can access it from the HUJI-guest wireless network.



What is Eduroam?

Eduroam allows students, researchers and staff to connect to the Internet via wireless connection across campus and when visiting other participating institutions. Click here for the eduroam website.


 

Gui via NetworkManager
Step

 

#~>NetworkManager&

 

 

  • Load the Knetworkmanager
    NetworkManager&

Step

  • Click on eduroam.


Step

 

  • Choose Wireless Security: WPA & WPA2 Enterprise

  • Choose Authentication: Protected EAP (PEAP)

  • In Anonymous identity: type anonymous@huji.ac.il

  • In Username: type your username in the following format: username@huji.ac.il

  • In Password type password
    Note: an otp password is unusable

  • In CA certificate choose the location* of your certificate

  • Click Connect



    Note:
    * In CA Certificate File type the location of your certificate
    To find the location type the command:
    locate *.pem|grep AddTrust (or AddTrust_External).
    Note that in Ubuntu the command is locate *.pem|grep /etc/ssl/certs/AddTrust (or AddTrust_External).

 

Command Line via wpa supplicant
Step

#~> cat >>/etc/wpa_supplicant/wpa_supplicant.conf
ctrl_interface=/var/run/wpa_supplicant
network={
   scan_ssid=1
   ssid="eduroam"
   key_mgmt=WPA-EAP
   eap=PEAP
   identity=" xxx@huji.ac.il"
   password="XXXXXX"
   ca_cert="/etc/ssl/certs/AddTrust_External_Root.pem"
   phase1="peaplabel=0"
   phase2="auth=MSCHAPV2"
}


#~>

  • Login as root

  • Create a file
    /etc/wpa_supplicant/wpa_supplicant.conf

  • Type the following parameters:
    ctrl_interface=/var/run/wpa_supplicant
    network={
       scan_ssid=1
       ssid="eduroam"
       key_mgmt=WPA-EAP
       eap=PEAP
       identity="xxx@huji.ac.il"
       password="XXXXXX"
       ca_cert="$CERT.pem"
       phase1="peaplabel=0"
       phase2="auth=MSCHAPV2"
    }


    Note:
    - In ca_cert you need to replace the $CERT with the location of your certificate
    (To find the location type the command:
    locate *.pem|grep AddTrust (or AddTrust_External)
    Note that in Ubuntu the command is locate *.pem|grep /etc/ssl/certs/AddTrust or AddTrust_External)
    - In identity type your username@huji.ac.il
    - In password type your password


Step

#~> wpa_supplicant -i wlan0 -D wext -c /etc/wpa_supplicant/wpa_supplicant.conf&
#~>
#~> dhclient
#~>

  • Run the command:
    wpa_supplicant -i $WLAN -D wext -c /etc/wpa_supplicant/wpa_supplicant.conf&

    Note:
    Insted of $WLAN type your interface name.
    To view the name type iwconfig

  • Wait until the authentication is complited.

  • To receive an IP address type: dhclient

  • To view if you are connected type:
    ifconfig -a

 

Disconnect
Step

#~>
#~> ifconfig wlan0 down
#~>

 

  • Type the command:
    ifconfig $WLAN down

    Note:
    Insted of $WLAN type your interface name.



If you need further help you may contact our support centers: 02-6585555, 02-5883450.


Last modified: 14/09/2016