[Bug 798793] New: NetworkManager no longer connects to 802.1x networks (Novell network)
https://bugzilla.novell.com/show_bug.cgi?id=798793 https://bugzilla.novell.com/show_bug.cgi?id=798793#c0 Summary: NetworkManager no longer connects to 802.1x networks (Novell network) Classification: openSUSE Product: openSUSE Factory Version: 12.3 Beta 1 Platform: Other OS/Version: Other Status: NEW Severity: Major Priority: P5 - None Component: GNOME AssignedTo: bnc-team-gnome@forge.provo.novell.com ReportedBy: idonmez@suse.com QAContact: qa-bugs@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.27 (KHTML, like Gecko) Chrome/26.0.1385.0 Safari/537.27 In the Nuremberg office I am trying to connect to "Novell" network which uses Protected EAP MSCHAPv2 What happens is, 1. I enter my username/password 2. Click "Connect". 3. It shows the warning dialog "No Certificate Authority Certificate chosen" 4. I click "Ignore" and nothing happens, nothing in the NetworkManager log either (with log level DEBUG). Reproducible: Always -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c
Ismail Donmez
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c
Li Bin
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c1
Li Bin
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c2
Ismail Donmez
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c3
Ismail Donmez
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c
Ismail Donmez
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c4
--- Comment #4 from Ismail Donmez
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c5
--- Comment #5 from Bernhard Wiedemann
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c6
Gary Ching-Pang Lin
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c8
--- Comment #8 from Gary Ching-Pang Lin
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c9
--- Comment #9 from Bernhard Wiedemann
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c10
Michael Catanzaro
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c11
--- Comment #11 from Gary Ching-Pang Lin
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c12
--- Comment #12 from Michael Catanzaro
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c13
Gary Ching-Pang Lin
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c14
--- Comment #14 from Swamp Workflow Management
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c15
Michael Catanzaro
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c16
--- Comment #16 from Gary Ching-Pang Lin
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c17
Gary Ching-Pang Lin
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c18
Michael Catanzaro
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c19
--- Comment #19 from Gary Ching-Pang Lin
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c20
--- Comment #20 from Michael Catanzaro
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c21
--- Comment #21 from Gary Ching-Pang Lin
Gary, I'm sorry, I thought that's exactly what I had done, but perhaps I missed something. At any rate, after playing with my packages a bit more, it's working perfectly: I got the dialog for accepting the server hash, which I'd never seen before, and was able to connect fine. And on the Wireless Security tab, I see the server hash in the Subject line. Thanks a bunch for the fix - I'd love to see it in an update for 12.2 and 12.3.
Good! I'll push the fix.
A quick question about how this works - does checking the server hash guarantee security so long as the very first time I connect to the network, I happen to be connecting to the correct server (and therefore am getting the correct hash)? i.e. nobody can intercept my communications unless they are doing so when I am adding the network for the first time? The server hash is the fingerprint of the radius server, and we can use it verify the server to avoid connecting to a fake radius server. Since the communication will be encrypted by the key exchanged between the client and the server, your communication shall be safe if the radius server is genuine.
-- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c22
Gary Ching-Pang Lin
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c23
Will Stephenson
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c
Will Stephenson
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c24
Gary Ching-Pang Lin
https://bugzilla.novell.com/show_bug.cgi?id=798793
https://bugzilla.novell.com/show_bug.cgi?id=798793#c25
Gary Ching-Pang Lin
participants (1)
-
bugzilla_noreply@novell.com