Ask Your Question

Trouble connecting to WPA2 Enterprise Network (trusted certificate issue)

asked 2017-07-26 08:39:41 -0500

My company has a wireless network that is protected by WPA2 Enterprise security. I've been trying to connect to it from my Linux installation lately, without any success. I have a personal identification certificate that I was given by the company (with an associated private key), as well as two CA certificates (two .cer files) that I was told to list as "trusted" in my system (move to /etc/pki/ca-trust/sources/anchors and then run sudo update-ca-trust extract). However, even after setting everything up properly I still can't connect to the network.

I managed to get in touch with the network admin who did a packet capture for me and basically told me that when I attempted to perform a TLS handshake with the authentication server, the server was presenting its certificates to my system, which wasn't presenting its own certificates back. He also said that this was due to my system not trusting the CA that signed/issued the certificate presented from the server, even though I imported those CA certs into my system.

I've tried importing the certs by just running sudo-update-ca-trust, and also temporarily disabled SELinux at the suggestion of a coworker. I also added the CAs as "trusted" in Kleopatra, which didn't make a difference either. Is there anything that I'm missing to be able to add a CA as trusted?

edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted

answered 2017-07-26 15:20:52 -0500

ssieb gravatar image

You shouldn't have to add the certificates to the global store. It looks like you might be using KDE and I don't know anything about network configuration there. But if you can use the Gnome network configuration tool and you pick the TLS method, you can enter the certificates and keys that you need to use. I have used connections with WPA2 Enterprise and it worked, but it was a different configuration type, not TLS.

edit flag offensive delete link more

Question Tools


Asked: 2017-07-26 08:39:41 -0500

Seen: 223 times

Last updated: Jul 26 '17