Install 802.1x In Fedora
<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
1
.
安装
Xsupplicant
download Xsupplicant package from the following url:
# cp xsupplicant-<?xml:namespace prefix = st1 ns = "urn:schemas-microsoft-com:office:smarttags" />1.2.8.tar.gz /tmp/
# cd /tmp/
# tar zxvf xsupplicant-1.2.8.tar.gz
# cd xsupplicant-1.2.8
# ./configure
# make
# make install
|
2.
获取证书
# mkdir /certificate
# cp “
证书来源路径
”
/viaroot.pem /certificate
|
3.
配置
Xsupplicant
# vi /etc/xsupplicant.conf
default
{
Identity = “windows AD account”
eap-peap {
root_cert = /certificate/viaroot.pem
root_dir = “/certificate”
#cncheck specify ACS server
cncheck = SHOFFICE
cnexact = no
session_resume = no
eap-mschapv2 {
password = “windows AD account’s password”
username = windows AD account
}
}
}
|
4.
启动
Xsupplicant
# /usr/local/sbin/xsupplicant –i eth0
# dhclient eth0
|
5.
开机自启动
Xsupplicant
#
vi /etc/init.d/network
#! /bin/bash
#
# network Bring up/down networking
#
# chkconfig: 2345 10 90
# description: Activates/Deactivates all network interfaces configured to \
# start at boot time.
#
### BEGIN INIT INFO
# Provides: $network
### END INIT INFO
# Source function library.
. /etc/init.d/functions
if [ ! -f /etc/sysconfig/network ]; then
exit 0
fi
. /etc/sysconfig/network
if [ -f /etc/sysconfig/pcmcia ]; then
. /etc/sysconfig/pcmcia
Fi
# 802.1x start
Xsupplicant –i eth0 #
添加此行
# Check that networking is up.
[ "${NETWORKING}" = "no" ] && exit 0
# if the ip configuration utility isn't around we can't function.
[ -x /sbin/ip ] || exit 1
# Even if IPX is configured, without the utilities we can't do much
[ ! -x /sbin/ipx_internal_net -o ! -x /sbin/ipx_configure ] && IPX=
# Even if VLAN is configured, without the utility we can't do much
[ ! -x /sbin/vconfig ] && VLAN=
……
|
转载于:https://blog.51cto.com/wdl1111/115899