We have moved to a new Sailfish OS Forum. Please start new discussions there.
4

Linux newbie trying to eduroam, please help [answered]

asked 2014-01-12 18:40:35 +0300

Vinyl gravatar image

updated 2014-01-12 23:46:57 +0300

Jan Wellmann gravatar image

Okay, so at my university we have eduroam. And I'd like to connect to it using my Jolla. Apparantly it's currently not possible to officially edit wifi settings. So I tried this: Click me :D. But I really wouldn't know how to get the appropriate certificate. There are some manuals for different mobile platforms, but none of them mention any certificate coding. There is a certificate for Symbian though. But idk how to get the coding (I'm hopeless at anything coding related lol). It can be found here: Symbian CAroot.

And uhm, I managed to find some security setting (I think?): WLAN securitymode: 802.1x EAP-PEAP EAP-MSCHAPV2 Crypt settings?: RSA, AES, SHA; DHE-RSA, AES, SHA; DHE-DSS, AES, SHA

Please help me :c

edit retag flag offensive reopen delete

The question has been closed for the following reason "the question is answered, an answer was accepted" by Vinyl
close date 2014-01-14 16:46:38.356041

Comments

What happened to my answer I typed yesterday? Suddenly it is gone? :-(

raimue ( 2014-01-13 11:16:33 +0300 )edit

Yeah, I noticed. Someone probably removed it.

Vinyl ( 2014-01-13 11:47:04 +0300 )edit

Try pkcon install openssl Pkcon will ask to install some additional packages, that's ok.

Jan Wellmann ( 2014-01-13 12:31:44 +0300 )edit

1 Answer

Sort by » oldest newest most voted
2

answered 2014-01-12 23:39:56 +0300

Jan Wellmann gravatar image

updated 2014-01-12 23:47:22 +0300

@Vinyl What are your authentication settings for eduroam at the university? The list you provided below seems to be not very specific. On our university we have (provided by the staff there):

Authentification: WPA2 Enterprise
Encryption: AES
Authentification: PEAP
Auth-Protokoll: MS-CHAP-V2

Should look similar at your place, but as mentioned in https://together.jolla.com/question/315/wpa2-pskaesothers-wifi-support-needed-workaround/, a lot of different auth-methods are common.

So first you have to download, extract and copy the certificate to /etc/ssl/certs. I assume you already enabled the developer mode, so the next step is to extract the certificate. There is no App for this, sling to the terminal and find the CAroot.zip in /home/nemo/Downloads (caption does matter) and extract it to /etc/ssl/cert (you may use tab to autocomplete your input). We are lucky, Jolla comes with good'ol unzip:

unzip /home/nemo/Downloads/CAroot.zip /etc/ssl/certs/

and then follow the instructions in https://together.jolla.com/question/315/wpa2-pskaesothers-wifi-support-needed-workaround/ using the auth-methods provided by your university, set the path to /etc/ssl/cert/CAroot.crt and do not forget to add your university's domain after your username :).

hope this helps.

edit flag offensive delete publish link more

Comments

One thing to add: There is no certificate named CAroot.crt on Jolla by default, but if you find one, you should rename the new certificate.

Jan Wellmann ( 2014-01-12 23:45:04 +0300 )edit

Well, that sucks. I tried extracting the certificate. But it wouldn't unzip it, got the following error: Caution: filename not matched. I tried unzipping it without specifying the directory and it unzipped it. But now I'm left with a certificate which I can't remove from /.

Vinyl ( 2014-01-13 11:46:20 +0300 )edit

As I wrote in the answer that got deleted, the CA certificate you have is in the wrong format. You need to convert it to PEM format, for example: openssl x509 -in CAroot.cer -inform DER -outform PEM -out CAroot.pem Also, certificates can be in any path, no need to put it into /etc/ssl/certs.

raimue ( 2014-01-13 11:51:00 +0300 )edit

So, you now have a CAroot.crt in home/nemo/Downloads? You can move it to the needed location by (I assume you are in that folder)

mv CAroot.crt /etc/ssl/certs/CAroot.crt

or delete it using rm CAroot.crt

Jan Wellmann ( 2014-01-13 11:51:46 +0300 )edit

@raimue, your right. Sorry, I haven't seen your answer.

Jan Wellmann ( 2014-01-13 11:53:13 +0300 )edit

Question tools

Follow
4 followers

subscribe to rss feed

Stats

Asked: 2014-01-12 18:40:35 +0300

Seen: 1,725 times

Last updated: Jan 13 '14

Related questions

self-signed SSL certificates should be accepted for Exchange sync [answered]

certificate details in Browser

Do not automatically accept all SSL certificates [released]

Email certificate issue (dovecot) [answered]

CalDAV sync with CACert SSL certificate

Connman fails due to case-sensitive settings

CA installed and working for OpenSSL but fails with Email app [answered]

SSL certificate used by dukgo.com XMPP-server untrusted? [answered]

How do I install a trusted root certificate?

[solved] SSL problems after upgrading to 1.1.4.29

Copyright © Jolla Ltd. 2013-2019. All rights reserved.
about | faq | help | privacy policy | terms of service | give feedback
Powered by Askbot version 0.7.49