This shows you the differences between two versions of the page.
Both sides previous revision Previous revision | Next revision Both sides next revision | ||
networkconfigurationsettings [2020/11/19 06:33] Andrew Zaborowski [802.1x (WPA/WPA2 Enterprise) settings] Readd formatting |
networkconfigurationsettings [2020/11/26 18:43] Andrew Zaborowski Mention EAP-PEAP-Phase2-Method specifically, link to [[ipconfiguration]] |
||
---|---|---|---|
Line 15: | Line 15: | ||
| ''AlwaysRandomizeAddress'' | ''true'', **''false''** | Always randomize MAC address on each new connection. Requires ''AddressRandomization=network'' in main.conf (optional) | | | ''AlwaysRandomizeAddress'' | ''true'', **''false''** | Always randomize MAC address on each new connection. Requires ''AddressRandomization=network'' in main.conf (optional) | | ||
| ''AddressOverride'' | ''MAC Address'' | Override the MAC address used for this network. Requires ''AddressRandomization=network'' in main.conf (optional) | | | ''AddressOverride'' | ''MAC Address'' | Override the MAC address used for this network. Requires ''AddressRandomization=network'' in main.conf (optional) | | ||
+ | |||
+ | ===== IP configuration settings ===== | ||
+ | |||
+ | See [[ipconfiguration|IP configuration]]. | ||
===== Pre-Shared Key (WPA/WPA2 Personal/SAE) network settings ===== | ===== Pre-Shared Key (WPA/WPA2 Personal/SAE) network settings ===== | ||
Line 28: | Line 32: | ||
^ Setting Key ^ Values ^ Description ^ | ^ Setting Key ^ Values ^ Description ^ | ||
| Group header: **''[Security]''** ||| | | Group header: **''[Security]''** ||| | ||
- | | ''EAP-Method'' | ''AKA'', ''%%AKA'%%'', ''GTC'' (internal), ''MD5'' (internal), ''MSCHAPV2'', ''PEAP'', ''PWD'', ''SIM'', ''TLS'', ''TTLS'', ''WSC'' (internal) | No default | | + | | ''EAP-Method'' | ''AKA'', ''%%AKA'%%'', ''GTC'' (*), ''MD5'' (*), ''MSCHAPV2'', ''PEAP'', ''PWD'', ''SIM'', ''TLS'', ''TTLS'', ''WSC'' (internal) | No default | |
| Applies to: **EAP-SIM**, **EAP-AKA**, **EAP-AKA'** ||| | | Applies to: **EAP-SIM**, **EAP-AKA**, **EAP-AKA'** ||| | ||
| ''EAP-Identity'' | //text// | EAP identity string transmitted in plaintext, if any (optional) | | | ''EAP-Identity'' | //text// | EAP identity string transmitted in plaintext, if any (optional) | | ||
Line 54: | Line 58: | ||
| ''EAP-TTLS-Phase2-Password'' | //text// | Password string for the TTLS non-EAP Phase 2 methods. No default, if not provided IWD will request a passphrase at connection time. | | | ''EAP-TTLS-Phase2-Password'' | //text// | Password string for the TTLS non-EAP Phase 2 methods. No default, if not provided IWD will request a passphrase at connection time. | | ||
| ''EAP-TTLS-Phase2-*'' | | Any settings to be used for the inner EAP method if one was specified as ''EAP-TTLS-Phase2-Method'', rather than a TTLS-specific method. The prefix ''EAP-TTLS-Phase2-'' replaces the ''EAP-'' prefix in the setting keys and their usage is unchanged. Since the inner method's negotiation is encrypted, a secure identity string can be provided. | | | ''EAP-TTLS-Phase2-*'' | | Any settings to be used for the inner EAP method if one was specified as ''EAP-TTLS-Phase2-Method'', rather than a TTLS-specific method. The prefix ''EAP-TTLS-Phase2-'' replaces the ''EAP-'' prefix in the setting keys and their usage is unchanged. Since the inner method's negotiation is encrypted, a secure identity string can be provided. | | ||
+ | | ''EAP-PEAP-Phase2-Method'' | see ''EAP-Method'' | Phase 2 authentication method for EAP-PEAP. No default value. The PEAP phase 1 with no phase 2 (rare) is not supported. | | ||
| ''EAP-PEAP-Phase2-*'' | | Any settings to be used for the inner EAP method with EAP-PEAP as the outer method. The prefix ''EAP-PEAP-Phase2-'' replaces the ''EAP-'' prefix in the setting keys and their usage is unchanged. Since the inner method's negotiation is encrypted, a secure identity string can be provided. | | | ''EAP-PEAP-Phase2-*'' | | Any settings to be used for the inner EAP method with EAP-PEAP as the outer method. The prefix ''EAP-PEAP-Phase2-'' replaces the ''EAP-'' prefix in the setting keys and their usage is unchanged. Since the inner method's negotiation is encrypted, a secure identity string can be provided. | | ||
| Applies to: **EAP-PWD** ||| | | Applies to: **EAP-PWD** ||| |