Difficult connect to WiFI Enterprise

Issues related to configuring your network
Post Reply
nicholaswkc
Posts: 14
Joined: 2023/03/04 01:45:04

Difficult connect to WiFI Enterprise

Post by nicholaswkc » 2023/03/08 06:57:06

Dear All,
I'm using Centos 9 Stream and i need connect my company network which is WiFI Enterprise.
I follow ubuntu forum which setup a file /etc/NetworkManager/system-connections/SriPentas-0fbafd7a-1fe7-4559-a1ba-a30f98383acc.nmconnection
[connection]
id=SriPentas
uuid=0fbafd7a-1fe7-4559-a1ba-a30f98383acc
type=wifi
interface-name=wlp59s0

[wifi]
mode=infrastructure
ssid=SriPentas

[wifi-security]
key-mgmt=wpa-eap

[802-1x]
anonymous-identity=kachon.wong
eap=peap;
identity=kachon.wong
password=XXXXXX
phase2-auth=mschapv2
I even follow this https://github.com/wylermr/NetworkManag ... rise-Setup to create following file:

/etc/wpa_supplicant.conf
network={
ssid="SriPentas"
scan_ssid=1
key_mgmt=WPA-EAP
identity="kachon.wong"
password="xxxxxxxxx"
eap=PEAP
phase1="peaplabel=0"
phase2="auth=MSCHAPV2"
}
sudo wpa_supplicant -i wlp59s0 -c /etc/wpa_supplicant.conf

Below is the log display on console.
wlp59s0: SME: Trying to authenticate with 2c:5a:0f:c7:14:6f (SSID='SriPentas' freq=5765 MHz)
wlp59s0: CTRL-EVENT-DISCONNECTED bssid=2c:5a:0f:c7:14:6f reason=1 locally_generated=1
BSSID 2c:5a:0f:c7:14:6f ignore list count incremented to 2, ignoring for 10 seconds
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=CORE type=WORLD
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=USER type=COUNTRY alpha2=MY
wlp59s0: Trying to associate with 2c:5a:0f:c7:14:6f (SSID='SriPentas' freq=5765 MHz)
wlp59s0: Associated with 2c:5a:0f:c7:14:6f
wlp59s0: CTRL-EVENT-EAP-STARTED EAP authentication started
EAP: buildIdentity: configuration was not available
wlp59s0: CTRL-EVENT-SUBNET-STATUS-UPDATE status=0
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=COUNTRY_IE type=COUNTRY alpha2=MY
wlp59s0: Authentication with 2c:5a:0f:c7:14:6f timed out.
BSSID 2c:5a:0f:c7:14:6f ignore list count incremented to 3, ignoring for 60 seconds
wlp59s0: CTRL-EVENT-DISCONNECTED bssid=2c:5a:0f:c7:14:6f reason=3 locally_generated=1
BSSID 2c:5a:0f:c7:14:6f ignore list count incremented to 4, ignoring for 120 seconds
wlp59s0: CTRL-EVENT-DSCP-POLICY clear_all
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=CORE type=WORLD
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=USER type=COUNTRY alpha2=MY
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=BEACON_HINT type=UNKNOWN
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=BEACON_HINT type=UNKNOWN
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=BEACON_HINT type=UNKNOWN
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=BEACON_HINT type=UNKNOWN
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=BEACON_HINT type=UNKNOWN
wlp59s0: SME: Trying to authenticate with 2c:5a:0f:fa:15:8f (SSID='SriPentas' freq=5805 MHz)
wlp59s0: Trying to associate with 2c:5a:0f:fa:15:8f (SSID='SriPentas' freq=5805 MHz)
wlp59s0: SME: Association request to the driver failed
BSSID 2c:5a:0f:fa:15:8f ignore list count incremented to 2, ignoring for 10 seconds
wlp59s0: CTRL-EVENT-SSID-TEMP-DISABLED id=0 ssid="SriPentas" auth_failures=1 duration=10 reason=CONN_FAILED
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=BEACON_HINT type=UNKNOWN
wlp59s0: CTRL-EVENT-SSID-REENABLED id=0 ssid="SriPentas"
wlp59s0: SME: Trying to authenticate with 00:2c:c8:df:13:6f (SSID='SriPentas' freq=5785 MHz)
wlp59s0: Trying to associate with 00:2c:c8:df:13:6f (SSID='SriPentas' freq=5785 MHz)
wlp59s0: SME: Association request to the driver failed
BSSID 00:2c:c8:df:13:6f ignore list count incremented to 2, ignoring for 10 seconds
wlp59s0: CTRL-EVENT-SSID-TEMP-DISABLED id=0 ssid="SriPentas" auth_failures=2 duration=34 reason=CONN_FAILED
wlp59s0: No network configuration found for the current AP
wlp59s0: CTRL-EVENT-DISCONNECTED bssid=96:df:fa:1c:4f:eb reason=3 locally_generated=1
wlp59s0: CTRL-EVENT-DSCP-POLICY clear_all
wlp59s0: CTRL-EVENT-SUBNET-STATUS-UPDATE status=0
wlp59s0: CTRL-EVENT-SIGNAL-CHANGE above=1 signal=-9999 noise=-97 txrate=0
wlp59s0: CTRL-EVENT-SSID-REENABLED id=0 ssid="SriPentas"
wlp59s0: SME: Trying to authenticate with 2c:5a:0f:fa:15:8f (SSID='SriPentas' freq=5805 MHz)
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=CORE type=WORLD
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=USER type=COUNTRY alpha2=MY
wlp59s0: Trying to associate with 2c:5a:0f:fa:15:8f (SSID='SriPentas' freq=5805 MHz)
wlp59s0: Associated with 2c:5a:0f:fa:15:8f
wlp59s0: CTRL-EVENT-EAP-STARTED EAP authentication started
wlp59s0: CTRL-EVENT-SUBNET-STATUS-UPDATE status=0
wlp59s0: CTRL-EVENT-REGDOM-CHANGE init=COUNTRY_IE type=COUNTRY alpha2=MY
wlp59s0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25
wlp59s0: CTRL-EVENT-EAP-METHOD EAP vendor 0 method 25 (PEAP) selected
wlp59s0: CTRL-EVENT-EAP-PEER-CERT depth=0 subject='/CN=SVRRADSP01' hash=d9f45685ea43fa370afd3ce593205595bbf00e4a2c990ee7adb22ceadd7b426e
wlp59s0: CTRL-EVENT-EAP-PEER-CERT depth=0 subject='/CN=SVRRADSP01' hash=d9f45685ea43fa370afd3ce593205595bbf00e4a2c990ee7adb22ceadd7b426e
wlp59s0: CTRL-EVENT-EAP-PEER-CERT depth=0 subject='/CN=SVRRADSP01' hash=d9f45685ea43fa370afd3ce593205595bbf00e4a2c990ee7adb22ceadd7b426e
wlp59s0: CTRL-EVENT-EAP-PEER-CERT depth=0 subject='/CN=SVRRADSP01' hash=d9f45685ea43fa370afd3ce593205595bbf00e4a2c990ee7adb22ceadd7b426e
wlp59s0: EAP-MSCHAPV2: failure message: '' (retry allowed, error 691)
wlp59s0: CTRL-REQ-IDENTITY-0:Identity needed for SSID SriPentas
wlp59s0: CTRL-REQ-PASSWORD-0:Password needed for SSID SriPentas
Please help me, I need connect to my work network. Thanks in advance.

BShT
Posts: 584
Joined: 2019/10/09 12:31:40

Re: Difficult connect to WiFI Enterprise

Post by BShT » 2023/03/08 13:22:41

error 691 "The remote connection was denied because the user name and password combination you provided is not recognized, or the selected authentication protocol is not permitted on the remote access server"

nicholaswkc
Posts: 14
Joined: 2023/03/04 01:45:04

Re: Difficult connect to WiFI Enterprise

Post by nicholaswkc » 2023/03/11 09:37:24

BShT wrote:
2023/03/08 13:22:41
error 691 "The remote connection was denied because the user name and password combination you provided is not recognized, or the selected authentication protocol is not permitted on the remote access server"
I'm sure that the usernam and password input is correct. The authentication protocol is PEAP. I'm sure because when using Ubuntu 23 i can connect once but after disconnect and it cannot connect back.

Any clues to solve it as my System Admin has no ideas as well. Thanks in advance.

BShT
Posts: 584
Joined: 2019/10/09 12:31:40

Re: Difficult connect to WiFI Enterprise

Post by BShT » 2023/03/12 15:37:15

I already had problems connecting wifi on channel 13, in my country it is allowed to use this channel but the linux driver does not connect

User avatar
TrevorH
Site Admin
Posts: 33202
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Difficult connect to WiFI Enterprise

Post by TrevorH » 2023/03/12 15:54:24

I'm also wondering about the cert it is mentioning in that log. Is it self signed? Or perhaps using an algorithm that is deprecated like SHA1 or md5?
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

User avatar
jlehtone
Posts: 4523
Joined: 2007/12/11 08:17:33
Location: Finland

Re: Difficult connect to WiFI Enterprise

Post by jlehtone » 2023/03/12 19:31:56

The Stream 9 does, like RHEL 9, has openssl 3 and lacks support for older security protocols.
In (openssl 1.1.1 -based) RHEL 8 older "LEGACY" protocols did still exist, but had to be explicitly enabled.

However, the log does not contain the type of errors ("unsupported") that I have encountered due to the above-mentioned lack.


If the OP's issue is with SHA1 (that is disabled in DEFAULT), then solution is in https://access.redhat.com/documentation ... c-policies

Post Reply