How to connect to the WPA2 EAP-TLS network

aus Metalab Wiki, dem offenen Zentrum für meta-disziplinäre Magier und technisch-kreative Enthusiasten.
Zur Navigation springenZur Suche springen

How to connect to the WPA2 accesspoint with EAP-TLS encryption.

You need to create/use a certificate to connect to the WPA2 access point.

## To create it connect to wpa-01.in.metalab.at (10.20.30.25) as root.
# user@host:~# ssh -l root wpa-01.in.metalab.at
# root@wpa-01:~# cd /ca
# root@wpa-01:~# ./mkclient.sh yourname
## enter ca password
## choose secretpassword for your key file
# root@wpa-01:~# exit
# user@host:~# scp -r root@wpa-01.in.metalab.at:/ca/users/yourname /path/to

you are now able to connect to the network by using the ca-certificate, your client certificate and your keyfile to the ca-certficate with the chosen password.

sample wpa_supplicant.conf:

network={
        ssid="metalab-wpa2"
        scan_ssid=1
        key_mgmt=WPA-EAP
        proto=WPA2
        eap=TLS
        pairwise=CCMP
        group=CCMP
        identity="yourname"
        ca_cert="/path/to/ca.crt"
        client_cert="/path/to/yourname.crt"
        private_key="/path/to/yourname.key"
        private_key_passwd="secretpassword"
}