How can I fix my WPA-EAP certificate problem?

wireless networking ssl wpa2

I'm trying to connect my school's WiFi which has WPA-EAP. Everything else can connect to it except my ubuntu machine. I can connect on my HTC ONE X Android, OS X, Windows XP & 7, and iOS devices.

So the problem seems to be about either mine or their certificate. I don't really care if they have a valid certificate or not (I'll deal with that in another way). So if this certificate check can be disabled but I can connect, I'm cool with it.

In their own documentation for connecting, they mentioned no certificate from my side is needed.

Here's my syslog.

I'm having Ubuntu 13.04 64bit on a lenovo E135 laptop and some more info:

alfred-nsh@alFiPad:~/repos$ lspci | grep Network
02:00.0 Network controller: Broadcom Corporation BCM43142 802.11b/g/n (rev 01)

alfred-nsh@alFiPad:~/repos$ uname -a
Linux alFiPad 3.8.0-19-generic #29-Ubuntu SMP Wed Apr 17 18:16:28 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux

I am using the propitiatory driver, but I don't really have problem connecting to other networks.


I have the same issue here (UQAM), it should have a certificate but, it does not. When you connect for the first time, it wont set it properly so, you need to go to /etc/NetworkManager/system-connections and find your connection name, edit the file. You should see this line:

system-ca-certs=true

change it to 

system-ca-certs=false

If the line does not exist, add it below the [802-1x] section.


I had a similar problem, using Protected EAP (PEAP), not LEAP or FAST or Tunneled TLS in my case, and got it working by leaving "Anonymous identity" (huh?) empty, PEAP version: Automatic, Inner authentication: MSCHAPv2.

Then chose No CA Certificate Authority certificate .... and confirm the subsequent warning with Ignore. (Even a friendly soul at your IT provides you a *.cer, try without first; the trouble is that if it’s self-signed or it’s Verified By root isn't known to your Ubuntu, this causes more trouble than it helps you.)

PS: The system-ca-certs option doesn't seem to appear (anymore?) in /etc/NetworkManager/system-connections/* on Ubuntu 14.04.


It seems that you don't have a certificat installed on your laptop

TLS: Certificate verification failed, error 20 (unable to get local issuer certificate) depth 0 for '/C=MY/ST=Kuala Lumpur/L=Mont Kiara/O=Funk Software Asia Pacific/OU=Technical Department/CN=Server'
Apr 29 17:16:22 alFiPad wpa_supplicant[952]: eth1: CTRL-EVENT-EAP-TLS-CERT-ERROR reason=1 depth=0 subject='/C=MY/ST=Kuala Lumpur/L=Mont Kiara/O=Funk Software Asia Pacific/OU=Technical Department/CN=Server' err='unable to get local issuer certificate'

could you check if you have a certificat in your store ?

Do you use wpa_supplicant ?

Nikos

Related

How to revert unity and remove gnome desktop?
Rotate touchscreen and disable the touchpad on Yoga 2 Pro in rotated mode
How to properly install Microsoft Office in Ubuntu 14.04 with wine?
How do I get a Qualcomm Atheros Killer E2200 gigabit ethernet card working?
How to downgrade PHP from 5.5.9 to 5.4 in Ubuntu 14.04 (Installed with LAMP)
Missing Bluetooth indicator [duplicate]
Screen tearing on Nvidia GTX960m
How I can install "Internet Download Manager" on Ubuntu 14.04?
Logitech MX Master 2s via bluetooth change pointer speed
Ubuntu randomly started blinking the screen on boot
TP-Link AC600 driver on Ubuntu 14.04 LTS x64
Ubuntu 16.04 Realtek RTL8111/8168/8411 Ethernet driver is not maintaining a persistent connection