[Bug 396347] New: Knetworkmanager dows not connect with wpa-enterprise
https://bugzilla.novell.com/show_bug.cgi?id=396347 Summary: Knetworkmanager dows not connect with wpa-enterprise Product: openSUSE 11.0 Version: RC 1 Platform: x86 OS/Version: openSUSE 11.0 Status: NEW Severity: Major Priority: P5 - None Component: Network AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: tkamps@gmx.de QAContact: qa@suse.de Found By: Other Created an attachment (id=219486) --> (https://bugzilla.novell.com/attachment.cgi?id=219486) Log of Networkmanager I testet openSuse 11.0RC1 kde4-livecd (32Bit) with an netgear wg511t an intep prowireless 3945ABG. In Both cases knetworkmanager does not connect to a wpa-enterprise network. Forom the Log i see: "eap method missing". But i set the eap-method in knetworkmanager. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 Stephan Binner <stbinner@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team-screening@forge.provo.novell.com |hschaa@novell.com -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 Helmut Schaa <hschaa@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #219486|application/octet-stream |text/plain mime type| | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User tkamps@gmx.de added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c1 --- Comment #1 from Thomas Kamps <tkamps@gmx.de> 2008-06-03 01:44:08 MDT --- i testet the gnome-live cd. The networkmanager applet there works well, so its a problem with knetworkmanger. I think, knetworkmanager does not set the eap-method. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User dipeit@gmail.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c2 Di Pe <dipeit@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |dipeit@gmail.com --- Comment #2 from Di Pe <dipeit@gmail.com> 2008-06-05 01:29:04 MDT --- same here, has been a bug also in beta3, all works well with nm-applet Cell 02 - Address: 00:14:A4:23:E8:D0 ESSID:"MySSID" Protocol:IEEE 802.11bg Mode:Master Frequency:2.427 GHz (Channel 4) Encryption key:on Bit Rates:1 Mb/s; 2 Mb/s; 5.5 Mb/s; 6 Mb/s; 9 Mb/s 11 Mb/s; 12 Mb/s; 18 Mb/s; 24 Mb/s; 36 Mb/s 48 Mb/s; 54 Mb/s Quality=31/100 Signal level=-26 dBm IE: WPA Version 1 Group Cipher : WEP-104 Pairwise Ciphers (1) : TKIP Authentication Suites (1) : 802.1x Extra: Last beacon: 816ms ago /var/log/NetworkManager: Jun 4 23:56:02 linux-wsn3 NetworkManager: Missing eap method Jun 4 23:56:07 linux-wsn3 NetworkManager: <WARN> wait_for_connection_expired(): Connection (2) /org/freedesktop/NetworkManagerSettings/Connection/0 failed to activate (timeout): (0) Connection was not provided by any settings service Jun 4 23:58:13 linux-wsn3 NetworkManager: <WARN> wait_for_connection_expired(): Connection (2) /org/freedesktop/NetworkManagerSettings/Connection/0 failed to activate (timeout): (0) Connection was not provided by any settings service wpa_supplicant.log does not show any change during connection attempt [ConnectionSecrets_Nplv7NVK72F87xes_802-1x] Type=802-1x Value_password=<string>********</string>\n [ConnectionSetting_Nplv7NVK72F87xes_802-11-wireless] Type=802-11-wireless Value_mode=<string>infrastructure</string>\n Value_security=<string>802-11-wireless-security</string>\n Value_ssid=<list>\n <byte>77</byte>\n <byte>97</byte>\n <byte>114</byte>\n <byte>99</byte>\n <byte>111</byte>\n <byte>110</byte>\n <byte>105</byte>\n</list>\n [ConnectionSetting_Nplv7NVK72F87xes_802-11-wireless-security] Type=802-11-wireless-security Value_key-mgmt=<string>wpa-eap</string>\n Value_wep-tx-keyidx=<int32>0</int32>\n [ConnectionSetting_Nplv7NVK72F87xes_802-1x] Type=802-1x Value_eap=<string>ttls</string>\n Value_identity=<string>fhcrc\\phsunixwifi</string>\n Value_password=<string></string>\n [ConnectionSetting_Nplv7NVK72F87xes_connection] Type=connection Value_autoconnect=<bool>true</bool>\n Value_id=<string>Marconi</string>\n Value_type=<string>802-11-wireless</string>\n [ConnectionSetting_Nplv7NVK72F87xes_ipv4] Type=ipv4 Value_method=<string>dhcp</string>\n [Connection_Nplv7NVK72F87xes] Id=Nplv7NVK72F87xes Secrets=ConnectionSecrets_Nplv7NVK72F87xes_802-1x Settings=ConnectionSetting_Nplv7NVK72F87xes_connection,ConnectionSetting_Nplv7NVK72F87xes_ipv4,ConnectionSetting_Nplv7NVK72F87xes_802-11-wireless,ConnectionSetting_Nplv7NVK72F87xes_802-11-wireless-security,ConnectionSetting_Nplv7NVK72F87xes_802-1x Type=802-11-wireless -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c3 Helmut Schaa <hschaa@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED --- Comment #3 from Helmut Schaa <hschaa@novell.com> 2008-06-05 01:32:33 MDT --- Thanks fr reporting this. I'll have a look at it but that will not be fixed in GM. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c4 Helmut Schaa <hschaa@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|Knetworkmanager dows not connect with wpa- |Knetworkmanager does not connect with wpa- |enterprise |enterprise (WPA-EAP) --- Comment #4 from Helmut Schaa <hschaa@novell.com> 2008-06-16 03:59:18 MDT --- Adjusting summary. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c5 Joris Snellenburg <jsnel@few.vu.nl> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |jsnel@few.vu.nl --- Comment #5 from Joris Snellenburg <jsnel@few.vu.nl> 2008-06-18 07:42:03 MDT --- Confirming that this bug also affects the tomorrow to be released OpenSUSE 11.0 Gold Master edition, as I documented here: http://forums.opensuse.org/network-internet/386062-networkmanager-issues-ope... -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c6 Helmut Schaa <hschaa@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |grillmm@poczta.fm --- Comment #6 from Helmut Schaa <hschaa@novell.com> 2008-06-18 08:26:22 MDT --- *** Bug 393322 has been marked as a duplicate of this bug. *** https://bugzilla.novell.com/show_bug.cgi?id=393322 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c7 --- Comment #7 from Helmut Schaa <hschaa@novell.com> 2008-06-18 08:31:53 MDT --- Fixed package should be available from my buildservice repo at [1] for testing soon. Currently supported are PEAP and TTLS. [1] http://download.opensuse.org/repositories/home:/hschaa/openSUSE_Factory/ -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c8 --- Comment #8 from Joris Snellenburg <jsnel@few.vu.nl> 2008-06-18 08:54:02 MDT --- Confirming that version 0.7r821737-4.1 of the KNetworkManager application as found in [1] of the previous post does indeed support PEAP and TTLS. For PEAP it's now possible to set MSCHAPv2 and MD5 for Phase2 and for TTLS it's now possible to set "None" for Phase2. I'm eagerly awaiting PAP support for TTLS. Also the settings are now stored and retrieved when editing the connection. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c9 Helmut Schaa <hschaa@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO Info Provider| |jsnel@few.vu.nl --- Comment #9 from Helmut Schaa <hschaa@novell.com> 2008-06-18 09:36:20 MDT --- TTLS should have MSCHAPv2, MSCHAP, CHAP and PAP as phase2 options. Perhaps you've checked TLS instead of TTLS? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c10 Joris Snellenburg <jsnel@few.vu.nl> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED Info Provider|jsnel@few.vu.nl | --- Comment #10 from Joris Snellenburg <jsnel@few.vu.nl> 2008-06-18 10:01:20 MDT --- It could be my settings but this is what happens, and it's quite reproducible. First I am confronted with this window, it's set to TTLS but I can't adjust the Phase2: http://img146.imageshack.us/my.php?image=knetworkmanagerwpaenternm4.png However when I 'change' it to TTLS, then MSCHAPv2, MSCHAP, CHAP and PAP appear and I can set Phase2 to any of those http://img146.imageshack.us/my.php?image=knetworkmanagerwpaentergs0.png However when I save settings, and then try to reedit my settings, I'm back at the first window. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c11 Helmut Schaa <hschaa@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO Info Provider| |jsnel@few.vu.nl --- Comment #11 from Helmut Schaa <hschaa@novell.com> 2008-06-18 10:14:58 MDT --- Could you please try if creating a new connection works fine? Editing connections is still not that well tested. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User bradbilut@u-46.org added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c12 Brad Bilut <bradbilut@u-46.org> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |bradbilut@u-46.org --- Comment #12 from Brad Bilut <bradbilut@u-46.org> 2008-06-18 11:50:51 MDT --- Any idea when or if EAP/GTC will be supported? This option was available in 10.3, but I only seem to see EAP/MSCHAPv2 and one other (don't have my laptop in front of me). I require EAP/GTC in my office. Thanks! -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c13 --- Comment #13 from Helmut Schaa <hschaa@novell.com> 2008-06-19 02:22:33 MDT --- Brad, is EAP/GTC using certificates or identity/password for authentication? If it uses certificates you're out of luck for now. If it uses identity/password that should be trivial to implement. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c14 Joris Snellenburg <jsnel@few.vu.nl> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED Info Provider|jsnel@few.vu.nl | --- Comment #14 from Joris Snellenburg <jsnel@few.vu.nl> 2008-06-19 02:55:02 MDT --- (In reply to comment #11 from Helmut Schaa)
Could you please try if creating a new connection works fine? Editing connections is still not that well tested.
Making a new connection does in fact work, I am now connected to a WPA/WPA2 TKIP/AES EAP-TTLS network using the PAP authentication protocol. Although the edit connection feature doesn't seem to retrieve all the settings (i.e. my TTLS setting and Phase2 setting) it does seem to save this information when I enter it and click Connect&Save or Save in it's configuration files so it does work. Next thing on the list is test it with certificates (CA and radius). With a program for Windows called SecureW2 these certificates can be retrieved from the network automatically, is there also a possibility for this with KNetworkManager or any other program? Also about EAP/GTC, from Wikipedia: ============================== PEAPv1/EAP-GTC was created by Cisco as an alternative to PEAPv0/EAP-MSCHAPv2. It allows the use of an inner authentication protocol other than Microsoft's MSCHAPv2. EAP-GTC (Generic Token Card) is defined in RFC 3748. It carries a text challenge from the authentication server, and a reply which is assumed to be generated by a security token. EAP-GTC does not protect the authentication data in any way. Even though Microsoft (along with RSA and Cisco) co-invented the PEAP standard, Microsoft never added support for PEAPv1 in general, which means PEAPv1/EAP-GTC has no native Windows OS support. Since Cisco has always favored the use of its own less secure proprietary LEAP and EAP-FAST protocols over PEAP and markets them as simpler certificate-less solutions, standardized PEAP is rarely promoted by Cisco. With no interest from Microsoft to support PEAPv1 and little interest from Cisco to promote PEAP in general, PEAPv1 authentication is rarely used. There is no native OS support for this EAP protocol. Although there is no in-built support for PEAP-GTC in MS Windows, it is supported by the Cisco CCX extensions program. CCX compatibility is enabled by default on many vendor-provided 802.11A/B/G clients. This version of PEAP is defined through the IETF internet draft "draft-josefsson-pppext-eap-tls-eap-10". Note that this is an individual submission and not standardized in the IETF. Note that Cisco's implementation of PEAPv1 also supports EAP-SIM as the inner EAP method, other than EAP-GTC. ============================== -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c15 --- Comment #15 from Joris Snellenburg <jsnel@few.vu.nl> 2008-06-19 03:06:11 MDT --- Making a new connection with certificates seems to work, but because when I edit the connection the settings aren't retrieved I can be sure they are used. Also the first time I tried to set certificates KNetworkManager crashed upon the progress bar reached the last pixel, restarting it and trying again (removing the old connection) seemed to work. For the client certificate I used a personal radius.pem certificate (downloaded with SecureW2 for windows then converted with openssl) For the CA certicate I used my CA.pem certificate (also converted with openssl) For reference, how one goes about converting a certificate with openssl: openssl x509 -inform DER -outform PEM -in CA.cer -out CA.pem In summary, everything seems to work for me now, but the edit connection features definitely needs a patch up so that it retrieves the stored settings correctly. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c16 --- Comment #16 from Helmut Schaa <hschaa@novell.com> 2008-06-19 03:10:51 MDT --- (In reply to comment #15 from Joris Snellenburg)
Huh, that's not expected to work! Certificates are not handled currently as I stated in comment #13. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c17 --- Comment #17 from Joris Snellenburg <jsnel@few.vu.nl> 2008-06-19 03:55:03 MDT --- (In reply to comment #16 from Helmut Schaa)
Huh, that's not expected to work! Certificates are not handled currently as I stated in comment #13.
You are correct, but like I said I had no way of verifying the certificates were being used, only that I was able to select them and still get a connection, after studying the configuration file located at ~/.kde/share/config/knetworkmanagerrc I see the only line the certifcates are mentioned is in the recent files: [KFileDialog Settings] Recent Files[$e]=$HOME/wlan/certificates/CA.pem,$HOME/wlan/certificates/radius.pem Luckily the network at my university has a certificates optional policy :) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User bradbilut@u-46.org added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c18 --- Comment #18 from Brad Bilut <bradbilut@u-46.org> 2008-06-19 05:50:42 MDT --- I'm currently just using simple password authentication with PEAP/GTC. I was hoping that when I upgraded to final version of 11 from RC1 that I would get my wireless authentication back, but no suck luck. :-( . Thank you all for another great release... openSuSE rocks! -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User bradbilut@u-46.org added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c19 --- Comment #19 from Brad Bilut <bradbilut@u-46.org> 2008-06-19 06:13:39 MDT --- I also didn't mention that I'm using Gnome NetworkManager. I know this bug is for Knetworkmanager, but it was close to the missing feature that I was seeing so I decided to comment in this bug. Not sure if I should have started my own or not??? Thanks! Brad -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c20 --- Comment #20 from Helmut Schaa <hschaa@novell.com> 2008-06-19 06:20:15 MDT --- Brad, I have just checked in a new package into my build service repo with experimental PEAP-GTC support (not sure if it works). Once the package is ready I'll ping you again. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User tkamps@gmx.de added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c21 --- Comment #21 from Thomas Kamps <tkamps@gmx.de> 2008-06-23 01:30:24 MDT --- For me the knetworkmanager works now. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User bjohnson@blakeanthonyjohnson.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c22 Blake Johnson <bjohnson@blakeanthonyjohnson.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |bjohnson@blakeanthonyjohnson.com --- Comment #22 from Blake Johnson <bjohnson@blakeanthonyjohnson.com> 2008-08-13 11:17:17 MDT --- I'm also having this issue with Gnome NetworkManager. I'd love to know when there is an (new / experimental) package to fix this problem is available. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User nowell.morris@usu.edu added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c23 Nowell Morris <nowell.morris@usu.edu> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |nowell.morris@usu.edu --- Comment #23 from Nowell Morris <nowell.morris@usu.edu> 2008-09-09 11:47:47 MDT --- Can/Will support for PEAP/PAP be added? A Coworker of mine was able to use gnome network manager on Ubuntu to create and use a successful connection to WPA-Enterprise using PEAP as method 1 and PAP as method 2. I see the option of TTLS method 1 and PAP as method 2, but PAP is not available as a second method when using PEAP as method 1. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c24 --- Comment #24 from Helmut Schaa <hschaa@novell.com> 2008-09-10 00:36:58 MDT --- (In reply to comment #23 from Nowell Morris)
Can/Will support for PEAP/PAP be added?
Should be easy to fix. Target is 11.1. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User zajec5@gmail.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c25 Rafał Miłecki <zajec5@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |zajec5@gmail.com --- Comment #25 from Rafał Miłecki <zajec5@gmail.com> 2008-09-29 09:35:08 MDT --- Helmut: what about support for certificates in time of 11.1? This stupid regression already made me skipping 11.0 on many machines. Situation's now even worse as support for 10.3 was terminated on 19 Sep 2008! Please, consider working on this before 11.1 GM :| -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User anubis1@linux-ecke.de added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c26 Thomas Kamps <anubis1@linux-ecke.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |FIXED --- Comment #26 from Thomas Kamps <anubis1@linux-ecke.de> 2008-09-29 11:18:36 MDT --- It is already fixed. Just make an online update :) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User zajec5@gmail.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c27 --- Comment #27 from Rafał Miłecki <zajec5@gmail.com> 2008-09-29 12:18:27 MDT --- I'm afraid it doesn't work for me (updated 11.0). zajec@sony:~> rpm -qa | grep Netwo NetworkManager-0.7.0.r3685-7.2 NetworkManager-glib-0.7.0.r3685-7.2 NetworkManager-kde-0.7r821737-0.3 NetworkManager-devel-0.7.0.r3685-7.2 I do [RMB] → Edit connections → [highlight] → Edit Connection → Next: 1) I browse for my .p12 certificate in "Private Keyfile" 2) I enter password for this .p12 in ""Private Secret Key" 3) I save configuration When I open edit dialog again, both "Private Keyfile" and "Private Secret Key" fields are empty as before editing. I'm sure I type correct key for certificate - I tested this with KCertPart. Am I doing something wrong? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User anubis1@linux-ecke.de added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c28 --- Comment #28 from Thomas Kamps <anubis1@linux-ecke.de> 2008-09-29 15:17:08 MDT --- Did you try the gnome-networkmanager? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User zajec5@gmail.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c29 --- Comment #29 from Rafał Miłecki <zajec5@gmail.com> 2008-09-30 06:31:48 MDT ---
Did you try the gnome-networkmanager?
Using gnome-networkmanager (nm-applet) I was able to connect to this WPA-EAP wifi. Howeven I needed to convert .p12 certificate to .pem: openssl pkcs12 -in raf\@poznan.pl.p12 -out new.pem as nm-applet doesn't accept ".p12" in configuration window. Then I tried using .pem in KNetworkManager, but it still doesn't save my choice in edit window and doesn't connect. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User zajec5@gmail.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c30 Rafał Miłecki <zajec5@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|FIXED | --- Comment #30 from Rafał Miłecki <zajec5@gmail.com> 2008-09-30 06:41:38 MDT --- After I configured connection and clicked "Save & Connect" Sep 30 14:35:14 sony NetworkManager: verify_tls: client certificate invalid Sep 30 14:35:18 sony NetworkManager: <WARN> wait_for_connection_expired(): Connection (2) /org/freedesktop/NetworkManagerSettings/Connection/4 failed to activate (timeout): (0) Connection was not provided by any settings service -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 Andreas Jaeger <aj@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team-screening@forge.provo.novell.com |zoz@novell.com Status|REOPENED |NEW -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 Christian Zoz <zoz@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |helmut.schaa@gmail.com, wstephenson@novell.com AssignedTo|zoz@novell.com |anaumov@novell.com Priority|P5 - None |P4 - Low -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c32 --- Comment #32 from Joris Snellenburg <jsnel@few.vu.nl> 2008-12-03 13:57:21 MST --- Ok, this is a bit strange. At some point, using the version of KNetworkManager in the repository mentioned in Comment #7 worked for me, I tried updating serveral times during the past year but always found the older version to work better so I reverted. Now I've upgraded to openSUSE 11.1 I RC1 no longer have that version (whatever it was) but I have version 0.7r848570-23.2.i586 Connecting to a WPA Enterprise network with EAP-TTLS doesn't work anymore, and looking at the logs it seems because even if I don't specify a certificate (it is not mandatory on our network) it still passes a path to the wpa_supplicant. I have pasted some (excerpts of) logs below. I hope it helps to get it working again. ######## /var/log/networkmanager ######## Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0) starting connection 'VU-Campusnet' Dec 3 15:40:41 linux-o0ib NetworkManager: <info> (wlan0): device state change: 3 -> 4 Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0) Stage 1 of 5 (Device Prepare) scheduled... Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0) Stage 1 of 5 (Device Prepare) started... Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0) Stage 2 of 5 (Device Configure) scheduled... Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0) Stage 1 of 5 (Device Prepare) complete. Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0) Stage 2 of 5 (Device Configure) starting... Dec 3 15:40:41 linux-o0ib NetworkManager: <info> (wlan0): device state change: 4 -> 5 Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0/wireless): access point 'VU-Campusnet' has security, but secrets are required. Dec 3 15:40:41 linux-o0ib NetworkManager: <info> (wlan0): device state change: 5 -> 6 Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0) Stage 2 of 5 (Device Configure) complete. Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0) Stage 1 of 5 (Device Prepare) scheduled... Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0) Stage 1 of 5 (Device Prepare) started... Dec 3 15:40:41 linux-o0ib NetworkManager: <info> (wlan0): device state change: 6 -> 4 Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0) Stage 2 of 5 (Device Configure) scheduled... Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0) Stage 1 of 5 (Device Prepare) complete. Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0) Stage 2 of 5 (Device Configure) starting... Dec 3 15:40:41 linux-o0ib NetworkManager: <info> (wlan0): device state change: 4 -> 5 Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0/wireless): connection 'VU-Campusnet' has security, and secrets exist. No new secrets needed. Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Config: added 'ssid' value 'VU-Campusnet' Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Config: added 'scan_ssid' value '1' Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Config: added 'key_mgmt' value 'WPA-EAP' Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Config: added 'proto' value 'RSN' Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Config: added 'password' value '<omitted>' Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Config: added 'eap' value 'TTLS' Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Config: added 'fragment_size' value '1300' Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Config: added 'phase2' value 'auth=PAP' Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Config: added 'identity' value 'CENSORED@vu.nl' Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Config: added 'ca_path' value '/etc/ssl/certs' Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Activation (wlan0) Stage 2 of 5 (Device Configure) complete. Dec 3 15:40:41 linux-o0ib NetworkManager: <info> Config: set interface ap_scan to 1 Dec 3 15:40:41 linux-o0ib NetworkManager: <info> (wlan0): supplicant connection state: disconnected -> scanning Dec 3 15:40:45 linux-o0ib NetworkManager: <info> (wlan0): supplicant connection state: scanning -> associating Dec 3 15:40:45 linux-o0ib NetworkManager: <info> (wlan0): supplicant connection state: associating -> associated Dec 3 15:40:55 linux-o0ib NetworkManager: <info> (wlan0): supplicant connection state: associated -> disconnected Dec 3 15:40:55 linux-o0ib NetworkManager: <info> (wlan0): supplicant connection state: disconnected -> scanning Dec 3 15:40:56 linux-o0ib NetworkManager: <info> (wlan0): supplicant connection state: scanning -> associated Dec 3 15:41:06 linux-o0ib NetworkManager: <info> (wlan0): supplicant connection state: associated -> disconnected Dec 3 15:41:06 linux-o0ib NetworkManager: <info> (wlan0): supplicant connection state: disconnected -> scanning Dec 3 15:41:06 linux-o0ib NetworkManager: <info> Activation (wlan0/wireless): association took too long. Dec 3 15:41:06 linux-o0ib NetworkManager: <info> (wlan0): device state change: 5 -> 6 Dec 3 15:41:06 linux-o0ib NetworkManager: <info> Activation (wlan0/wireless): asking for new secrets Dec 3 15:41:06 linux-o0ib NetworkManager: <info> (wlan0): supplicant connection state: scanning -> disconnected Dec 3 15:41:06 linux-o0ib NetworkManager: <WARN> get_secrets_cb(): Couldn't get connection secrets: Requested setting is empty. Dec 3 15:41:06 linux-o0ib NetworkManager: <info> (wlan0): device state change: 6 -> 9 Dec 3 15:41:06 linux-o0ib NetworkManager: <info> Activation (wlan0) failed for access point (VU-Campusnet) Dec 3 15:41:06 linux-o0ib NetworkManager: <info> Marking connection 'VU-Campusnet' invalid. Dec 3 15:41:06 linux-o0ib NetworkManager: <info> Activation (wlan0) failed. Dec 3 15:41:06 linux-o0ib NetworkManager: <info> (wlan0): device state change: 9 -> 3 Dec 3 15:41:06 linux-o0ib NetworkManager: <info> (wlan0): deactivating device (reason: 0). ######## END OF /var/log/networkmanager ######## ######## Output of dmesg ########### wlan0: authenticate with AP 00:12:7f:c2:00:b0 wlan0: authenticate with AP 00:12:7f:c2:00:b0 wlan0: authenticated wlan0: associate with AP 00:12:7f:c2:00:b0 wlan0: associate with AP 00:12:7f:c2:00:b0 wlan0: RX AssocResp from 00:12:7f:c2:00:b0 (capab=0x411 status=0 aid=1) wlan0: associated wlan0: deauthenticated wlan0: authenticate with AP 00:12:7f:c2:00:b0 wlan0: authenticated wlan0: associate with AP 00:12:7f:c2:00:b0 wlan0: RX ReassocResp from 00:12:7f:c2:00:b0 (capab=0x411 status=0 aid=1) wlan0: associated wlan0: deauthenticated ######## END OF Output of dmesg ########### I will attached the output of wpa_supplicant's log in the next post on the count of it being very long. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c33 --- Comment #33 from Joris Snellenburg <jsnel@few.vu.nl> 2008-12-03 14:02:33 MST --- Created an attachment (id=257858) --> (https://bugzilla.novell.com/attachment.cgi?id=257858) Log of wpa_supplicant when failing to connect to WPA-Enterprise EAP-TTLS The settings used have worked before in a previous version of KNetworkManager. Please note I have censored logins and passwords. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User wappler@wappler.eu added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c34 Sven Wappler <wappler@wappler.eu> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |wappler@wappler.eu --- Comment #34 from Sven Wappler <wappler@wappler.eu> 2008-12-08 04:52:52 MST --- KNetworkManager doesn't save the settings (path to cert-file or phase2 method. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 Christian Zoz <zoz@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Component|Network |KDE3 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User info@cyrilbrosch.net added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c35 Cyril Brosch <info@cyrilbrosch.net> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |exmons@gmx.de --- Comment #35 from Cyril Brosch <info@cyrilbrosch.net> 2009-01-15 08:52:30 MST --- *** Bug 464870 has been marked as a duplicate of this bug. *** https://bugzilla.novell.com/show_bug.cgi?id=464870 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User info@cyrilbrosch.net added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c36 Cyril Brosch <info@cyrilbrosch.net> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |info@cyrilbrosch.net --- Comment #36 from Cyril Brosch <info@cyrilbrosch.net> 2009-01-15 15:26:26 MST --- Actually, I don't think the severity is only "low" - it is a real obstacle when changing working place (not so uncommon with a laptop...). The problem obviously remains in KDE4. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c37 --- Comment #37 from Joris Snellenburg <jsnel@few.vu.nl> 2009-01-16 01:54:58 MST --- I agree with Cyril Brosch. It is now more than 6 months after my initial comment, I'm running openSUSE 11.1 by now, and yet I still cannot connect to my university's wireless network out-of-the-box - is that because anything changed in the configuration of my university's network? No, it's still running WPA(2) - EAP-TTLS with TKIP (AES). It doesn't even require certificates to connect, but somehow I still can't connect out of the box, even though it was (once) fixed in development version 0.7r821737-4.1. Strange, huh? I vote this to be 2 levels higher priority - how can I sell this to my colleagues here if I can't even guarantee them for wireless to work? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c38 Helmut Schaa <hschaa@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |hschaa@novell.com --- Comment #38 from Helmut Schaa <hschaa@novell.com> 2009-01-16 02:21:38 MST --- (In reply to comment #37)
No, it's still running WPA(2) - EAP-TTLS with TKIP (AES).
I use EAP-TTLS every day and have no problems at all with KNM, NM and wpa_supplicant. The phase2-not-saved error is fixed in Factory already. The only non-working EAP-method I'm aware of is EAP-TLS. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c39 --- Comment #39 from Joris Snellenburg <jsnel@few.vu.nl> 2009-01-16 05:32:58 MST --- (In reply to comment #38)
Because you said it should be working I decided to look into the NetworkManager and wpa_supplicant logs again. It seems the problem is with the Certificate. Even though I have configured the NetworkManager *not* to use any certificate (it is not mandatory on our Network and NetworkManager always worked without it before) it is still looking for a certificate, or so it seems. Is this not a bug? I will try to fix it by installing the certificates onto my computer. On Windows - using the SecureW2 program these certificates are automatically downloaded from the Network, I don't suppose that's possible on openSUSE ... or is it? Anyways, here are the logs attached: ############### /var/log/NetworkManager ##################### Jan 16 13:00:40 linux-4de5 NetworkManager: <info> Activation (wlan0) starting connection 'VU-Campusnet' Jan 16 13:00:40 linux-4de5 NetworkManager: <info> (wlan0): device state change: 3 -> 4 Jan 16 13:00:40 linux-4de5 NetworkManager: <info> Activation (wlan0) Stage 1 of 5 (Device Prepare) scheduled... Jan 16 13:00:40 linux-4de5 NetworkManager: <info> Activation (wlan0) Stage 1 of 5 (Device Prepare) started... Jan 16 13:00:40 linux-4de5 NetworkManager: <info> Activation (wlan0) Stage 2 of 5 (Device Configure) scheduled... Jan 16 13:00:40 linux-4de5 NetworkManager: <info> Activation (wlan0) Stage 1 of 5 (Device Prepare) complete. Jan 16 13:00:40 linux-4de5 NetworkManager: <info> Activation (wlan0) Stage 2 of 5 (Device Configure) starting... Jan 16 13:00:40 linux-4de5 NetworkManager: <info> (wlan0): device state change: 4 -> 5 Jan 16 13:00:40 linux-4de5 NetworkManager: <info> Activation (wlan0/wireless): access point 'VU-Campusnet' has security, but secrets are required. Jan 16 13:00:40 linux-4de5 NetworkManager: <info> (wlan0): device state change: 5 -> 6 Jan 16 13:00:40 linux-4de5 NetworkManager: <info> Activation (wlan0) Stage 2 of 5 (Device Configure) complete. Jan 16 13:00:40 linux-4de5 NetworkManager: <info> Activation (wlan0) Stage 1 of 5 (Device Prepare) scheduled... Jan 16 13:00:41 linux-4de5 NetworkManager: <info> Activation (wlan0) Stage 1 of 5 (Device Prepare) started... Jan 16 13:00:41 linux-4de5 NetworkManager: <info> (wlan0): device state change: 6 -> 4 Jan 16 13:00:41 linux-4de5 NetworkManager: <info> Activation (wlan0) Stage 2 of 5 (Device Configure) scheduled... Jan 16 13:00:41 linux-4de5 NetworkManager: <info> Activation (wlan0) Stage 1 of 5 (Device Prepare) complete. Jan 16 13:00:41 linux-4de5 NetworkManager: <info> Activation (wlan0) Stage 2 of 5 (Device Configure) starting... Jan 16 13:00:41 linux-4de5 NetworkManager: <info> (wlan0): device state change: 4 -> 5 Jan 16 13:00:41 linux-4de5 NetworkManager: <info> Activation (wlan0/wireless): connection 'VU-Campusnet' has security, and secrets exist. No new secrets needed. Jan 16 13:00:41 linux-4de5 NetworkManager: <info> Config: added 'ssid' value 'VU-Campusnet' Jan 16 13:00:41 linux-4de5 NetworkManager: <info> Config: added 'scan_ssid' value '1' Jan 16 13:00:41 linux-4de5 NetworkManager: <info> Config: added 'key_mgmt' value 'WPA-EAP' Jan 16 13:00:41 linux-4de5 NetworkManager: <info> Config: added 'proto' value 'RSN' Jan 16 13:00:43 linux-4de5 NetworkManager: <info> Config: added 'pairwise' value 'TKIP CCMP' Jan 16 13:00:43 linux-4de5 NetworkManager: <info> Config: added 'group' value 'TKIP CCMP' Jan 16 13:00:43 linux-4de5 NetworkManager: <info> Config: added 'password' value '<omitted>' Jan 16 13:00:43 linux-4de5 NetworkManager: <info> Config: added 'eap' value 'TTLS' Jan 16 13:00:43 linux-4de5 NetworkManager: <info> Config: added 'fragment_size' value '1300' Jan 16 13:00:43 linux-4de5 NetworkManager: <info> Config: added 'phase2' value 'auth=PAP' Jan 16 13:00:43 linux-4de5 NetworkManager: <info> Config: added 'identity' value 'username@domain.tld' Jan 16 13:00:43 linux-4de5 NetworkManager: <info> Config: added 'ca_path' value '/etc/ssl/certs' Jan 16 13:00:43 linux-4de5 NetworkManager: <info> Activation (wlan0) Stage 2 of 5 (Device Configure) complete. Jan 16 13:00:43 linux-4de5 NetworkManager: <info> Config: set interface ap_scan to 1 Jan 16 13:00:43 linux-4de5 NetworkManager: <info> (wlan0): supplicant connection state: inactive -> scanning Jan 16 13:00:45 linux-4de5 NetworkManager: <info> (wlan0): supplicant connection state: scanning -> associating Jan 16 13:00:55 linux-4de5 NetworkManager: <info> (wlan0): supplicant connection state: associating -> disconnected Jan 16 13:00:55 linux-4de5 NetworkManager: <info> (wlan0): supplicant connection state: disconnected -> scanning Jan 16 13:00:58 linux-4de5 NetworkManager: <info> (wlan0): supplicant connection state: scanning -> associating Jan 16 13:00:58 linux-4de5 NetworkManager: <info> (wlan0): supplicant connection state: associating -> associated Jan 16 13:01:08 linux-4de5 NetworkManager: <info> Activation (wlan0/wireless): association took too long. Jan 16 13:01:08 linux-4de5 NetworkManager: <info> (wlan0): device state change: 5 -> 6 Jan 16 13:01:08 linux-4de5 NetworkManager: <info> Activation (wlan0/wireless): asking for new secrets Jan 16 13:01:08 linux-4de5 NetworkManager: <info> (wlan0): supplicant connection state: associated -> disconnected Jan 16 13:01:08 linux-4de5 NetworkManager: <WARN> get_secrets_cb(): Couldn't get connection secrets: Requested setting is empty. Jan 16 13:01:08 linux-4de5 NetworkManager: <info> (wlan0): device state change: 6 -> 9 Jan 16 13:01:08 linux-4de5 NetworkManager: <info> Activation (wlan0) failed for access point (VU-Campusnet) Jan 16 13:01:08 linux-4de5 NetworkManager: <info> Marking connection 'VU-Campusnet' invalid. Jan 16 13:01:08 linux-4de5 NetworkManager: <info> Activation (wlan0) failed. Jan 16 13:01:08 linux-4de5 NetworkManager: <info> (wlan0): device state change: 9 -> 3 Jan 16 13:01:08 linux-4de5 NetworkManager: <info> (wlan0): deactivating device (reason: 0). ###################################################### It looks like the problem is where it says: Jan 16 13:00:43 linux-4de5 NetworkManager: <info> Config: added 'ca_path' value '/etc/ssl/certs' But I have configured no certificates whatsoever (the field is blank, empty) and apparently some default value is used. ############### OUTPUT OF: dmesg ##################### wlan0: authenticate with AP 00:12:7f:50:a2:a0 wlan0: authenticate with AP 00:12:7f:50:a2:a0 wlan0: authenticated wlan0: associate with AP 00:12:7f:50:a2:a0 wlan0: RX AssocResp from 00:12:7f:50:a2:a0 (capab=0x411 status=0 aid=1) wlan0: associated wlan0: disassociating by local choice (reason=3) ###################################################### ############### /var/log/wpa_supplicant.log ##################### Trying to associate with 00:12:7f:50:a2:a0 (SSID='VU-Campusnet' freq=2412 MHz) Associated with 00:12:7f:50:a2:a0 CTRL-EVENT-EAP-STARTED EAP authentication started CTRL-EVENT-EAP-METHOD EAP vendor 0 method 21 (TTLS) selected TLS: Certificate verification failed, error 19 (self signed certificate in certificate chain) depth 1 for '/C=NL/ST=NH/L=Amsterdam/O=VU/OU=IT/CN=CA-VU' SSL: SSL3 alert: write (local SSL3 detected an error):fatal:unknown CA OpenSSL: tls_connection_handshake - SSL_connect error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed CTRL-EVENT-EAP-FAILURE EAP authentication failed ###################################################### -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User info@cyrilbrosch.net added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c40 --- Comment #40 from Cyril Brosch <info@cyrilbrosch.net> 2009-01-16 05:38:35 MST --- Adding the certificate in knetworkmanager didn't do it for me, it is not saved. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c41 --- Comment #41 from Joris Snellenburg <jsnel@few.vu.nl> 2009-01-16 05:43:55 MST --- I will try to add the certificates to the path /etc/ssl/certs then, after I figure out what encoding should be used. I will let you know if that works. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c42 --- Comment #42 from Joris Snellenburg <jsnel@few.vu.nl> 2009-01-16 06:32:50 MST --- It didn't seem to have worked, I keep getting this error message: ########## CTRL-EVENT-EAP-STARTED EAP authentication started CTRL-EVENT-EAP-METHOD EAP vendor 0 method 21 (TTLS) selected TLS: Certificate verification failed, error 19 (self signed certificate in certificate chain) depth 1 for '/C=NL/ST=NH/L=Amsterdam/O=VU/OU=IT/CN=CA-VU' SSL: SSL3 alert: write (local SSL3 detected an error):fatal:unknown CA OpenSSL: tls_connection_handshake - SSL_connect error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed CTRL-EVENT-EAP-FAILURE EAP authentication failed ########## Is this part of the bug, or is it a configuration issue on my laptop? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c43 --- Comment #43 from Helmut Schaa <hschaa@novell.com> 2009-01-16 06:42:29 MST --- Argh, this is another bug introduced in NM :( That should also be fixed in Factory. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c44 --- Comment #44 from Joris Snellenburg <jsnel@few.vu.nl> 2009-01-16 07:14:24 MST --- Do you mean that it "should still be fixed" in Factory, or that it "should already be fixed" in Factory? And by Factory you mean your buildservice? http://download.opensuse.org/repositories/home:/hschaa/openSUSE_Factory/ provides org.freedesktop.ModemManager needed by NetworkManager-0.7.0.r4359-2.5", so I stuck with the version from the openSUSE 11.1 OSS repo (NetworkManager-0.7.0.r4323-1.13). Can you tell me what combination of NetworkManager, NetworkManager-kde and other files I need to make it work with WPA-Enterprise? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c45 --- Comment #45 from Helmut Schaa <hschaa@novell.com> 2009-01-16 07:34:04 MST --- I meant "already fixed in Factory". The NetworkManager-kde from my home has the fix, yes. But a new NetworkManager is also needed. (In reply to comment #44)
If you don't use any UMTS or GSM connections you can safely ignore that error for now. I'm not sure if a fixed NetworkManager is already available for 11.1 or only for Factory. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User jsnel@few.vu.nl added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c46 --- Comment #46 from Joris Snellenburg <jsnel@few.vu.nl> 2009-01-23 05:33:23 MST --- I would just like to confirm that things are now working for me, meaning I *can* connect to a WPA-EAP TTLS with PAP verification network. THe only thing that is not working yet is the automatic retrieval of certificates from the network. This does work on Windows using the SecureW2 [1] program, which is open source. It might be interesting to look into that. For anyone's information I am using the following versions to make things work: NetworkManager = 0.7.0.r4359-40.5 (from GNOME:Factory / openSUSE_Factory) NetworkManager-kde = 0.7r848570-41.10 (from home:hschaa / openSUSE_Factory Comment #7) It might be that other versions work too but I have had difficulty with that in the past, at least for this combination I know it works. [1] http://www.securew2.com -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c47 Helmut Schaa <hschaa@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED --- Comment #47 from Helmut Schaa <hschaa@novell.com> 2009-01-23 05:36:16 MST --- Great, thanks for that information. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c48 --- Comment #48 from Helmut Schaa <hschaa@novell.com> 2009-01-23 05:38:19 MST --- (In reply to comment #46)
You could open a feature request for that at [1]. [1] https://features.opensuse.org/ -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User branislav.klocok@orava.sk added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c49 Branislav Klocok <branislav.klocok@orava.sk> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |branislav.klocok@orava.sk --- Comment #49 from Branislav Klocok <branislav.klocok@orava.sk> 2009-02-09 08:54:25 MST --- Can somebody back-port the solution to 11.1? It would be great to have a possibility to connect to my company's wls again without tweaking too much. Thanks -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=396347 User hschaa@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=396347#c50 --- Comment #50 from Helmut Schaa <hschaa@novell.com> 2009-02-09 08:59:19 MST --- (In reply to comment #49)
Can somebody back-port the solution to 11.1?
That's already planned but it has to wait until SLED11 is finished. Sorry. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com