Connecting to ND-Secure Wireless on Linux

OIT recommends utilizing the NetworkManager application to manage your wireless in Red Hat Linux 4 or 5. The NetworkManager application is also available for Debian and Fedora distributions, but is not supported by OIT.

For information on installing and using the NetworkManager application, please refer to the following web site.

http://www.redhat.com/magazine/003jan05/features/networkmanager/

Below is a sample setup of Red Hat Enterprise Linux 5 setup for ND-secure using NetworkManager. (Instructions assume NetworkManager application is installed) Ensure you have the latest drivers installed for your wireless adapter before proceeding.

1. Start the NetworkManager application with the following command:

#service NetworkManager start

2. Select ND-secure from the NetworkManager icon that appears in the notification bar by clicking on the icon and selecting ND-secure. (Icon between battery and clock)

3. In the Configuration window pops-up enter the following:

• Wireless Security: WPA Enterprise or WPA2 Enterprise
• EAP Method: PEAP
• Key Type: Automatic (Default)
• Identity: Notre Dame netID (your netID)
• Password: Notre Dame netID Password
• Anonymous Identity: Leave Blank
• Client Certificate File: Leave as (None)
• CA Certificate File: Leave as (None)
• Private Key File: Leave as (None)

Then click "Login to Network"

4. The Default Keyring may popup asking you to enter a password for the default keyring. Enter a password to secure your keyring. Once you enter a password or if you are not presented with the pop-up window, continue.

5. Once connected, the NetworkManager notification icon will show a stair-step icon representing the signal level for your connection to the ND-secure wireless network.

 

If you cannot run the NetworkManager application or would prefer to utilize a direct 802.1x supplicant such as wpa_supplicant the necessary information is provided below.

• SSID: ND-secure
• 802.1x or WPA Enterprise or WPA2 Enterprise
• Encryption: AES or TKIP
• EAP Type: PEAP (MSCAP-V2)

Intructions for Linux wpa_supplicant:

*Note: OIT does not recommend storing your netID password in a plain text format including configuration files such as those needed for the wpa_supplicant.

1. Edit your wpa_supplicant.conf file, usually located in /etc/wpa_supplicant/.
2. Add the following lines at the end of the existing information in the file:
   
   eapol_version=1
   ap_scan=1
   fast_reauth=1
   network={
        ssid="ND-secure"
        key_mgmt=IEEE8021X WPA-EAP
        eap=PEAP
        identity="netid"
        password="netid_password"
        priority=2
        phase2="auth=MSCHAPV2"
   }
   
   Note: Replace "netid" with your ND NetID and "netid_password" with your NetID password.
   
   
3. Start the wpa daemon.
   
4. Open a Terminal window.
5. 'su' as root.
6. Enter 'wpa_supplicant -c /etc/wpa_supplicant/wpa_supplicant.conf -i your_wireless interface -D your_driver -Bw' and hit enter.
• This assumes your wpa_supplicant.conf file is in /etc/wpa_supplicant
• Replace "your_wireless_interface" with the correct interface for the wireless. (For example: eth1)
• Replace "your_driver" with the correct driver for your wireless care (For example: ipw)
7. Get DHCP IP address:
   In the same Terminal Window enter "dhclient your_wireless_interface" and hit enter.
   • Replace "your_wireless_interface" with the correct interface for your wireless card. (For example: eth1)

You can now use the wireless network as you normally would. If you have any questions or problems connecting to the Notre Dame secure wireless network, please contact your departmental IT support staff or the OIT Help Desk at 574-631-8111.