Connman fails due to case-sensitive settings
Hi,
I am not an expert at this topic, so I'll try to describe as detailed as possible, how I am able to connect to the WLAN at my university (using my laptop running Arch Linux as well as using my Jolla with a manual configuration/connman disabled) and what seems to be the problem using Jolla with connman.
This is my working wpa_supplicant config file for the laptop:
network={
ssid="eduroam"
key_mgmt=WPA-EAP
eap=TTLS
proto=WPA RSN
identity="myusername"
anonymous_identity="anonymous@uni-xyz.de"
password="mypassword"
ca_cert="/path/to/certificate/Deutsche_Telekom_Root_CA_2.crt"
phase2="auth=PAP"
}
which as well works with wpa_supplicant on my Jolla if I configure the WLAN adapter manually, i.e. step by step:
# first I have to kill connman
devel-su
systemctl stop connman
# setting up wpa_supplicant
wpa_supplicant -Dwext -iwlan0 -c/etc/wpa_supplicant/eduroam.conf
# I get an IP-address with udhcpc that has to be added manually
udhcpc -iwlan0
ip addr add <ip I got from udhcpc/suffix> dev wlan0
# The default gateway and DNS information stay constant
ip route add default via 'address of default gateway at my uni'
# then I add some lines to /etc/resolv.conf:
domain nac.uni-xyz.de
nameserver <nameserver ip>
This leads to a working internet connection but obviously is not very comfortable, because connman has to be stopped...
I have tried to create a connman config file /var/lib/connman/wifi_eduroam.config with the following content but there is a problem while trying to set up the connection.
/var/lib/connman/wifi_eduroam.config
[service_eduroam]
Type=wifi
Name=eduroam
EAP=TTLS
CACertFile=/path/to/certificate/Deutsche_Telekom_Root_CA_2.crt
Phase2=PAP
Identity=myidentity@uni-xyz.de
Passphrase=mypassphrase
I guess, that the connection fail is linked to the lack of a config parameter for anonymous_identity in connman according to connman/connman.git.
Well, as I already said, I am not an expert, so please forgive me, if this problem has been solved already or if there is some stupid mistake ;)
For me personally it would suffice if there was a possibility to avoid having to stop connman while using the eduroam network. Maybe there is some way to tell connman to use my wpa_supplicant config file?
Thank you
Please check: https://together.jolla.com/question/315/wpa-8021x-enterprise-others-gui-wifi-support-needed-workaround/
tigeli ( 2014-09-13 01:42:27 +0200 )editwell, I read this thread, but could not get the workaround using the connman config file working, so I should rather ask, if it is currently possible to get connected to my uni's eduroam using connman. Thanks for your help ;)
stitran ( 2014-09-13 02:38:17 +0200 )editSomething similar has already been discussed here: https://together.jolla.com/question/15645/connman-does-not-support-setting-up-anonymous-or-outer-eap-identity-for-wifi-wpa-enterprise/ There seems to be no fix currently. My university's eduroam also supports connecting without an outer/anonymous identity but the real solution would of course be to include this in connman.
rod ( 2014-09-13 10:33:30 +0200 )editIMO this is a missing features and shouldn't require any workarounds in a proper implication of WLAN connectivity
bennypr0fane ( 2014-09-13 17:09:09 +0200 )edit