From owner-freebsd-questions@FreeBSD.ORG Wed Dec 11 18:05:52 2013 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 1F72FC51; Wed, 11 Dec 2013 18:05:52 +0000 (UTC) Received: from mx1.fisglobal.com (mx1.fisglobal.com [199.200.24.190]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id D8F271708; Wed, 11 Dec 2013 18:05:51 +0000 (UTC) Received: from smtp.fisglobal.com ([10.132.206.16]) by ltcfislmsgpa03.fnfis.com (8.14.5/8.14.5) with ESMTP id rBBI5aS4029932 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NOT); Wed, 11 Dec 2013 12:05:36 -0600 Received: from LTCFISWMSGMB21.FNFIS.com ([169.254.1.7]) by LTCFISWMSGHT05.FNFIS.com ([10.132.206.16]) with mapi id 14.03.0158.001; Wed, 11 Dec 2013 12:05:35 -0600 From: "Teske, Devin" To: "Julian H. Stacey" Subject: Re: Starting the wpa_supplicant Daemon from rc.conf Thread-Topic: Starting the wpa_supplicant Daemon from rc.conf Thread-Index: AQHO9puWoPIShjNFp0SouHWafn+QQw== Date: Wed, 11 Dec 2013 18:05:34 +0000 Message-ID: <5876BFBD-0C9F-4F97-B289-57A8D82D25F8@fisglobal.com> References: <201312111747.rBBHlFXJ025741@fire.js.berklix.net> In-Reply-To: <201312111747.rBBHlFXJ025741@fire.js.berklix.net> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.132.253.120] Content-Type: text/plain; charset="us-ascii" Content-ID: Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:5.11.87, 1.0.14, 0.0.0000 definitions=2013-12-11_05:2013-12-11,2013-12-11,1970-01-01 signatures=0 Cc: Martin McCormick , Devin Teske , "Teske, Devin" , FreeBSD Questions X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list Reply-To: Devin Teske List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 Dec 2013 18:05:52 -0000 On Dec 11, 2013, at 9:47 AM, Julian H. Stacey wrote: > "Teske, Devin" wrote: >> On Dec 10, 2013, at 1:56 PM, Martin McCormick wrote: >>> We are using 802.1x on our wired network and the wpa_supplicant >>> on this system works like it should to authenticate with the >>> network if manually called as in=20 >>>=20 >>> sudo ./etc/testwpa which is the name I gave the script that >>> calls wpa_supplicant and gives it the configuration file and >>> interface information to authenticate. >>>=20 >>> The only thing that is not yet working is getting >>> wpa_supplicant to authenticate automatically upon reboot or >>> startup. I presently have the following in /etc/rc.conf: >>>=20 >>> #wpa_supplicant >>> wpa_supplicant_enable=3D"YES" >>> wpa_supplicant_program=3D"/usr/sbin/wpa_supplicant"=09 >>> #executable >>> wpa_supplicant_flags=3D"-B -c/etc/wpa_supplicant.conf -D wired -i le0" >>>=20 >>=20 >> What you actually want is: >>=20 >> ifconfig_le0=3D" WPA" >> # Don't worry, the WPA will be stripped out when talking to ifconfig(8) >> # NB: WPA can appear anywhere in the ifconfig_* value >=20 > Martin, > I notice my rc.conf also has > ifconfig_wlan0=3D"WPA" > Sorry I didnt mention it earlier, I didn't notice it, & my WLAN config is= =20 > a mess, a work in progress, (pending a new test net). >=20 > I also noticed that le0 looks wrong for a 2nd reason: > man le says your le is an ethernet device,=20 > my rc.conf has these snippets > wlans_urtwn0=3D"wlan0" > wlans_run0=3D"wlan0" > # man urtwn & man run : ... wireless nets > ifconfig_wlan0=3D"DHCP" > ifconfig_wlan0=3D"WPA" > wlandebug_wlan0=3D"scan+auth+assoc" # /etc/defaults/rc.conf > Though may be misleading, as said, work in progress. >=20 Keep in mind though... Martin is doing 802.1X over a wired connection. Your configuration appears to be for 802.11 for wireless. In /etc/network.subr, you can see the code that determines that le0 is a wired connection and treats it differently. I do believe that addi= ng the "WPA" keyword to the ifconfig_le0 line is correct for an 802.1X wired conne= ction. --=20 Devin _____________ The information contained in this message is proprietary and/or confidentia= l. If you are not the intended recipient, please: (i) delete the message an= d all copies; (ii) do not disclose, distribute or use the message in any ma= nner; and (iii) notify the sender immediately. In addition, please be aware= that any message addressed to our domain is subject to archiving and revie= w by persons other than the intended recipient. Thank you.