Project

General

Profile

Feature #2400

WPA Enterprise with identity/password

Added by Mattias Ingered almost 9 years ago. Updated about 1 month ago.

Status:
Feedback
Priority:
Normal
Assignee:
Category:
Wireless
Target version:
Start date:
04/27/2012
Due date:
% Done:

0%

Estimated time:
Release Notes:
Default

Description

WebCfg WiFi Interfaces allows one to connect to just about anything, but connecting to a AD network with identity/password is not possible as of now.

The WPA Config should end up looking like this for it to work in my scenario.

==================================================
network={
ssid="FOOBAR"
key_mgmt=WPA-EAP
eap=PEAP
identity="DOMAINNAME\USERNAME"
password="My ActiveDirectory Password"
phase1="peaplabel=0"
phase2="auth=MSCHAPV2"
}

==================================================

The GUI "needs" the following options to work as client for WPA-Enterprise PEAP environments.

  • Identity: [Text field where one put in their AD account for example)
  • Password: [Text field where one put in their AD password, for example)
  • PEAP version: (auto,) 0 and 1
  • Inner authentication: MSCHAPv2, MD5, GTC
  • Possibly also a choice of certificate.

I got this working by hacking /etc/inc/interfaces.inc slightly.

See this thread for a more detailed scenario description:
[[http://forum.pfsense.org/index.php/topic,44801.0.html]]

Associated revisions

Revision 5f120301 (diff)
Added by Viktor Gurov about 2 months ago

WPA Enterprise (PEAP/TLS/TTLS) client mode. Feature #2400

Revision 296c5881 (diff)
Added by Viktor Gurov about 1 month ago

WPA Enterprise PAP inner method support. Issue #2400

History

#1 Updated by Chris Buechler almost 9 years ago

  • Project changed from pfSense tools to pfSense

#2 Updated by Chris Buechler about 5 years ago

  • Category set to Interfaces

#3 Updated by Jim Pingle over 1 year ago

  • Category changed from Interfaces to Wireless

#5 Updated by Jim Pingle about 2 months ago

  • Status changed from New to Pull Request Review
  • Target version set to 2.6.0

#6 Updated by Renato Botelho about 2 months ago

  • Status changed from Pull Request Review to Feedback
  • Assignee set to Viktor Gurov

PR has been merged. Thanks!

#7 Updated by Tim Cappalli about 2 months ago

The PAP inner method is missing from EAP-TTLS in the pull request. PAP and MSCHAPv2 are the two most common inner methods.

#8 Updated by Viktor Gurov about 2 months ago

Tim Cappalli wrote:

The PAP inner method is missing from EAP-TTLS in the pull request. PAP and MSCHAPv2 are the two most common inner methods.

https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/155

#9 Updated by Jim Pingle about 2 months ago

  • Status changed from Feedback to Pull Request Review

#10 Updated by Renato Botelho about 1 month ago

  • Status changed from Pull Request Review to Feedback

PR has been merged. Thanks!

Also available in: Atom PDF