Project

General

Profile

Feature #2400

GUI options for WPA Enterprise with identity/password

Added by Mattias Ingered about 9 years ago. Updated 15 days ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Wireless
Target version:
Start date:
04/27/2012
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
21.05
Release Notes:
Default

Description

WebCfg WiFi Interfaces allows one to connect to just about anything, but connecting to a AD network with identity/password is not possible as of now.

The WPA Config should end up looking like this for it to work in my scenario.

==================================================
network={
ssid="FOOBAR"
key_mgmt=WPA-EAP
eap=PEAP
identity="DOMAINNAME\USERNAME"
password="My ActiveDirectory Password"
phase1="peaplabel=0"
phase2="auth=MSCHAPV2"
}

==================================================

The GUI "needs" the following options to work as client for WPA-Enterprise PEAP environments.

  • Identity: [Text field where one put in their AD account for example)
  • Password: [Text field where one put in their AD password, for example)
  • PEAP version: (auto,) 0 and 1
  • Inner authentication: MSCHAPv2, MD5, GTC
  • Possibly also a choice of certificate.

I got this working by hacking /etc/inc/interfaces.inc slightly.

See this thread for a more detailed scenario description:
[[http://forum.pfsense.org/index.php/topic,44801.0.html]]

Associated revisions

Revision 5f120301 (diff)
Added by Viktor Gurov 4 months ago

WPA Enterprise (PEAP/TLS/TTLS) client mode. Feature #2400

Revision 296c5881 (diff)
Added by Viktor Gurov 4 months ago

WPA Enterprise PAP inner method support. Issue #2400

History

#1 Updated by Chris Buechler about 9 years ago

  • Project changed from pfSense tools to pfSense

#2 Updated by Chris Buechler over 5 years ago

  • Category set to Interfaces

#3 Updated by Jim Pingle almost 2 years ago

  • Category changed from Interfaces to Wireless

#5 Updated by Jim Pingle 4 months ago

  • Status changed from New to Pull Request Review
  • Target version set to 2.6.0

#6 Updated by Renato Botelho 4 months ago

  • Status changed from Pull Request Review to Feedback
  • Assignee set to Viktor Gurov

PR has been merged. Thanks!

#7 Updated by Tim Cappalli 4 months ago

The PAP inner method is missing from EAP-TTLS in the pull request. PAP and MSCHAPv2 are the two most common inner methods.

#8 Updated by Viktor Gurov 4 months ago

Tim Cappalli wrote:

The PAP inner method is missing from EAP-TTLS in the pull request. PAP and MSCHAPv2 are the two most common inner methods.

https://gitlab.netgate.com/pfSense/pfSense/-/merge_requests/155

#9 Updated by Jim Pingle 4 months ago

  • Status changed from Feedback to Pull Request Review

#10 Updated by Renato Botelho 4 months ago

  • Status changed from Pull Request Review to Feedback

PR has been merged. Thanks!

#11 Updated by Jim Pingle about 1 month ago

  • Plus Target Version set to 21.05

#12 Updated by Jim Pingle about 1 month ago

Already in 21.05 branch.

#13 Updated by Jim Pingle about 1 month ago

  • Subject changed from WPA Enterprise with identity/password to GUI options for WPA Enterprise with identity/password

Updating subject for release notes.

#14 Updated by Jim Pingle 22 days ago

  • Target version changed from 2.6.0 to 2.5.2

#15 Updated by Jim Pingle 15 days ago

  • Status changed from Feedback to Closed

Also available in: Atom PDF