rohieb · September 15, 2016 02:23
diff --git a/NetworkManager connection b/NetworkManager connection
 # NetworkManager WiFi connection
 # change all paths, put this into
 # /etc/NetworkManager/system-connections/SielNet, without these first comment
 # lines, and set file permissions to user root:root, mode 600 (readable only for
 # root). You may need to restart NetworkManager afterwards.

 [connection]
 id=SielNet
 uuid=5628f3a8-fefe-478d-6d0e-c67b0efa5df5
 type=wifi
 permissions=
 secondaries=

 [wifi]
 mac-address-blacklist=
 mac-address-randomization=1
 mode=infrastructure
 seen-bssids=
 ssid=SielNet

 [wifi-security]
 group=
 key-mgmt=wpa-eap
 pairwise=
 proto=

 [802-1x]
 altsubject-matches=
 ca-cert=/path/to/sielnet/ca.pem
 client-cert=/path/to/sielnet/[email protected]
 eap=tls;
 identity=your_identity
 phase2-altsubject-matches=
 private-key=/path/to/sielnet/@sielnet.de.pem
 private-key-password-flags=1

 [ipv4]
 dns-search=
 method=auto

 [ipv6]
 addr-gen-mode=eui64
 dns-search=
 ip6-privacy=2
 method=auto
diff --git a/wpa_supplicant.conf b/wpa_supplicant.conf
 # start with: sudo wpa_supplicant -B -Dnl80211 -i wlan0 -c wpa_supplicant.conf 
 # or for LAN: sudo wpa_supplicant -B -Dwired   -i eth0  -c wpa_supplicant.conf 
 # then use `sudo wpa_cli` or `sudo wpa_cli status'

 ctrl_interface=/var/run/wpa_supplicant
 ctrl_interface_group=0

 network={
 	ssid="SielNet"
 	key_mgmt=WPA-EAP                  # use WPA-EAP for Wireless LAN, or IEEE8021X for wired LAN
 	eap=TLS
 # TODO: fill this in (and take care for the right values):
 	identity="identity"
 	ca_cert="/path/to/sielnet/ca.pem"
 	client_cert="/path/to/sielnet/[email protected]"
 	private_key="/path/to/sielnet/[email protected]"
 	private_key_passwd="xxxxxxxx"
 }
	# NetworkManager WiFi connection
	# change all paths, put this into
	# /etc/NetworkManager/system-connections/SielNet, without these first comment
	# lines, and set file permissions to user root:root, mode 600 (readable only for
	# root). You may need to restart NetworkManager afterwards.

	[connection]
	id=SielNet
	uuid=5628f3a8-fefe-478d-6d0e-c67b0efa5df5
	type=wifi
	permissions=
	secondaries=

	[wifi]
	mac-address-blacklist=
	mac-address-randomization=1
	mode=infrastructure
	seen-bssids=
	ssid=SielNet

	[wifi-security]
	group=
	key-mgmt=wpa-eap
	pairwise=
	proto=

	[802-1x]
	altsubject-matches=
	ca-cert=/path/to/sielnet/ca.pem
	client-cert=/path/to/sielnet/[email protected]
	eap=tls;
	identity=your_identity
	phase2-altsubject-matches=
	private-key=/path/to/sielnet/@sielnet.de.pem
	private-key-password-flags=1

	[ipv4]
	dns-search=
	method=auto

	[ipv6]
	addr-gen-mode=eui64
	dns-search=
	ip6-privacy=2
	method=auto
	# start with: sudo wpa_supplicant -B -Dnl80211 -i wlan0 -c wpa_supplicant.conf
	# or for LAN: sudo wpa_supplicant -B -Dwired -i eth0 -c wpa_supplicant.conf
	# then use `sudo wpa_cli` or `sudo wpa_cli status'

	ctrl_interface=/var/run/wpa_supplicant
	ctrl_interface_group=0

	network={
	ssid="SielNet"
	key_mgmt=WPA-EAP # use WPA-EAP for Wireless LAN, or IEEE8021X for wired LAN
	eap=TLS
	# TODO: fill this in (and take care for the right values):
	identity="identity"
	ca_cert="/path/to/sielnet/ca.pem"
	client_cert="/path/to/sielnet/[email protected]"
	private_key="/path/to/sielnet/[email protected]"
	private_key_passwd="xxxxxxxx"
	}