wireless en new

8/3/2019 Wireless en New

1/15

Wireless configuration for Linux and Windows 7

1 Download certificate

ATTENTION

If you are a Windows 7 or Windows Vista user download the certificate using Firefox.In this way will be possible to export and install the certificate on the system.

Connect to PoliCO-Open Network.

Open Firefox and type an url in the address bar.You will be redirected to a page where you can choose the language of the guidelines for the certificatedownload.

Click Enter, a page with a short description of the wireless service will be shown.

1


2/15

Select Click here to request the personal certificate.

A pop-up window will ask for your credentials.

2


3/15

Insert the username and password you received via e-mail when you subscribed to the wirelessservice.The page with the certificate request will be shown .

Select Request a Certificate.

Another page will be shown.

3


4/15

Select User Certificate.On the next window click Submit.

On the next window select Install this Certificate.

2 Backup the certificate

In Firefox Linux select Edit Preferences Advanced .In Firefox Windows select Tool Options Advanced.Select Encryption tab. Click on View Certificates.

4


5/15

In the tab Your Certificates select the certificate under rds1 and click Backup.

Select a name for the file (eg. certificate), select a directory and save the certificate. The file will besaved with .p12 extension.

5


6/15

A popup window, Choose a Certificate Backup Password, will prompt you for a passwordbackup password or Import password

Insert a password of your choice, this password will be required later.

Once backup the certificate go to the network configuration.For linux configuration:Linux ConfigurationFor Windows configuration:Windows Configuration

3 Network Configuration, LinuxNetwork configuration could be performed using the Network Manager if you are using Ubuntu 10.04distribution.For other distribution, or if you cannot insert all the required data for autentication using the graphicalinterface, is it possible to configure the network using a shell.

3.1 Configuration using Network Manager

For the autentication using the Network Manager it is mandatory to modify the certificate. Go to thecertificate directory

linuxuser@ubuntu: cd path/to/certifiacate/

6


7/15

well find the certificate file certificate.p12.Modify the certificate with openssl.

For Ubuntu 10.04 you need to transform the certificate in .pem format with the following instruction.Attention, the Import password is requiredThe first command it is to extract the key in .pem format.

linuxuser@ubuntu:/path/to/certificate$ openssl pkcs12 -nocerts -in certificato.p12

-out userkey.pem

[sudo] password for linuxuser:

Enter Import Password:

Enter the Import password.youll be asked for another password Enter PEM pass phrase: insert a password PEM pass phrase4 chars at least.verify you got the file certificate.pem without error messages.Now extract the certificate in .pem format.

linuxuser@ubuntu:/path/to/certificate$ openssl pkcs12 -clcerts -nokeys -in certificato.p12

-out usercer.pem

Once you have modified the certificate start the connection to the PoliCO-Auth selecting it from theNetwork Manager.Per Ubuntu 10.04 fill the fields like the following window.

7


8/15

Click on Connect.

A pop-up window suggest no CA certificate was selected.

Clicchiamo on Ignore. Wait to be connected to PoliCO-Auth network.Now go to Proxy Configuration.

3.2 Configuration using a shell

It is possible to configure the network using a shell. This step does not require to convert the certificate.If you are using a Network Manager it is better to deactivate the wireless to avoid conflict.Create a file wpasupplicant.conf, with an editor of your choice, with the following information.

Code 1 Configuration file for wpa supplicant wpasupplicant.conf (Thanks Luca)

ap_scan=1

ctrl_interface=/var/run/wpa_supplicant

network={ssid="PoliCO-Auth"

key_mgmt=WPA-EAP

pairwise=TKIP

group=TKIP

eap=PEAP

identity="username"

password="password"

private_key2="/path/to/certificato.p12"

private_key2_passwd="password_certificato"

phase2="auth=TLS"

}

Start wpa supplicant like daemon, -B option, -i define the wireless interface, usually wlan0, -c isconfiguration file path, -D is the driver option.

sudo wpa supplicant -B -i wlan0 -c /wpasupplicant.conf -D wext

Once connected ask for an ip address with the command:

sudo dhclient wlan0

Go to Proxy configuration.

8


9/15

4 Network Configuration, Windows 7

Go to the directory where you saved the certificate.Install the certificate on the sitem double clicking on it.A wizard will start, dont change anything you have only to insert the Import Password when required.At the end of the wizard the certificate is installed on the system.

Once the certificate is installed you need to configure the network connection.

Click on wireless network icon. Select Open Network Sharing Center.

Or Start Control Panel Network and Internet Network and Sharing Center

Select Set up a new connection or network.

9


10/15

Select Manually connect to a wireless network.

Set up the connection like in figure pay attention to exactly match the network name (case sensitive).Click on Next.A pop-up window suggest to modify the connection parameters.

10


11/15

Click on Change connection Settings.

In the PoliCO-Auth Wireless Network Properties select the tab Security e configure it likethe figure.

Click on Settings.

Figure 1: PoliCO-Auth Wireless Network Properties

Configure Protected EAP Properties panel like figure 2.Uncheck Validate Server Certificate.Select Smart Card or other certificate in the combobox.Click on Configure.

11


12/15

Figure 2: Protected EAP Properties

In the Smart Card or other Certificate Properties panel (figure 3)Uncheck Validate Server Certificate.

Click Ok and then OK to come back to Network and Sharing Center.Connect to PoliCO-Auth network.

Go to Proxy configuration.

12


13/15

Figure 3: Smart Card or other Certificate Properties

Only for Windows 7

Referring to figure 1.Click on Advanced Settings button and configure the tab like the figure.

13


14/15

5 Proxy configuration

To surf the network you need to set the proxy inside the browser.In Firefox Linux select Edit Preferences Advanced.In Firefox Windows select Tool Options Advanced.

Select Network tab.

Click on Settings configure it like in figure.

14


15/15

15

wireless en new

Documents