@DistroJunkie Yea, and I've tried it, but they do something with their wireless here that I haven't been able to figure out. I just can't get it to connect to the corporate wireless. I can get it on the Guess wireless, but that doesn't give me access to the internal network. I haven't spent a TON of time on it because I have work to do, but unsuccessful so far.

@mike @DistroJunkie do you know what EAP method they are using? If it is PEAP or TTLS you would need to have the CA public key to connect as you'd need to trust it.

If they are doing EAP-TLS depending on how they are storing the machine keys you might be able to export them and import them on Linux. Now if they are using the TPM and you can see/access it from Linux could be easier, but if not your SoL on that option.

@darrel According to the Windows box I have (that's been annoying me endlessly), it's PEAP and it's authenticating with EAP-MSCHAP v2. It's my guess that this is the part that's hosing me up.


@mike @DistroJunkie That is easy then. All you need to do is extract the associated CA bundle for the connection from the keystore and either import it on the system store in Linux or specify the CA file in NetworkManager. As long as there is no NAC that is all the more you'd need to do.


@darrel I'm glad it's easy, because I have no idea how to do that. Is there a FAQ or HowTo you can recommend?


@mike @DistroJunkie I'll see if I can find one, I haven't touched a Windows box in a number of years. It might also be possible to tell NetworkManager to accept any presented CA, but that presents some risk.

Sign in to participate in the conversation

Fosstodon is a Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.