Contents[hide]
WLAN Station Configuration ScenarioThe following sections describe specific steps to configure station to connect to a WiFi network that supports arbitrary security modes. Hardware Configuration
wpa_supplicant.confTo be able to connect to a remote AP, wpa_supplicant daemon must run to provide WPA key negotiation with a WPA Authenticator and EAP authentication with Authentication Server. root@am37x-evm:/usr/sbin# wpa_supplicant -d -Dnl80211 -c/etc/wpa_supplicant.conf -iwlan0 -B wpa_supplicant is daemon and only one instance of it may run on a machine, all other modifications of security settings are made with frontend application wpa_cli. wpa_cliwpa_cli is a text-based frontend program for interacting with wpa_supplicant. It is used to query current status, change configuration, trigger events, and request interactive user input. Usage
wpa_cli Commands
Connect to non secured network
'"Bandipur"' ) with the SSID of a real wireless network you want to connect to. wpa_cli -iwlan0 disconnect for i in `wpa_cli -iwlan0 list_networks | grep ^[0-9] | cut -f1`; do wpa_cli -iwlan0 remove_network $i; done wpa_cli -iwlan0 add_network wpa_cli -iwlan0 set_network 0 auth_alg OPEN wpa_cli -iwlan0 set_network 0 key_mgmt NONE wpa_cli -iwlan0 set_network 0 mode 0 wpa_cli -iwlan0 set_network 0 ssid '"Bandipur"' wpa_cli -iwlan0 select_network 0 wpa_cli -iwlan0 enable_network 0 wpa_cli -iwlan0 reassociate to verify connection status with the WPA supplicant command: wpa_cli -iwlan0 status or with the IW command: iw wlan0 link Note: For detailed information about each command, please refer to wpa_cli commands section.
Connect to secured network - WPA
wpa_cli -iwlan0 disconnect for i in `wpa_cli list_networks | grep ^[0-9] | cut -f1`; do wpa_cli -iwlan0 remove_network $i; done wpa_cli -iwlan0 add_network wpa_cli -iwlan0 set_network 0 auth_alg OPEN wpa_cli -iwlan0 set_network 0 key_mgmt WPA-PSK wpa_cli -iwlan0 set_network 0 psk '"12345678"' wpa_cli -iwlan0 set_network 0 mode 0 wpa_cli -iwlan0 set_network 0 ssid '"vic_BSS"' wpa_cli -iwlan0 select_network 0 wpa_cli -iwlan0 enable_network 0 wpa_cli -iwlan0 reassociate wpa_cli -iwlan0 status iw wlan0 link
wpa_cli -iwlan0 status or with the IW command: iw wlan0 link Note: For detailed information about each command, please refer to wpa_cli commands section.
Connect to secured network - WPA2
wpa_cli -iwlan0 disconnect for i in `wpa_cli -iwlan0 list_networks | grep ^[0-9] | cut -f1`; do wpa_cli -iwlan0 remove_network $i; done wpa_cli -iwlan0 add_network wpa_cli -iwlan0 set_network 0 auth_alg OPEN wpa_cli -iwlan0 set_network 0 key_mgmt WPA-PSK wpa_cli -iwlan0 set_network 0 psk '"12345678"' wpa_cli -iwlan0 set_network 0 proto RSN wpa_cli -iwlan0 set_network 0 mode 0 wpa_cli -iwlan0 set_network 0 ssid '"Matterhorn"' wpa_cli -iwlan0 select_network 0 wpa_cli -iwlan0 enable_network 0 wpa_cli -iwlan0 reassociate wpa_cli -iwlan0 status iw wlan0 link
wpa_cli -iwlan0 status or with the IW command: iw wlan0 link Note: For detailed information about each command, please refer to wpa_cli commands section.
Connect to secured network - any WPA PSK
wpa_cli -iwlan0 disconnect for i in `wpa_cli -iwlan0 list_networks | grep ^[0-9] | cut -f1`; do wpa_cli -iwlan0 remove_network $i; done wpa_cli -iwlan0 add_network wpa_cli -iwlan0 set_network 0 auth_alg OPEN wpa_cli -iwlan0 set_network 0 key_mgmt WPA-PSK wpa_cli -iwlan0 set_network 0 psk '"12345678"' wpa_cli -iwlan0 set_network 0 pairwise CCMP TKIP wpa_cli -iwlan0 set_network 0 group CCMP TKIP wpa_cli -iwlan0 set_network 0 mode 0 wpa_cli -iwlan0 set_network 0 ssid '"vic_BSS"' wpa_cli -iwlan0 select_network 0 wpa_cli -iwlan0 enable_network 0 wpa_cli -iwlan0 reassociate wpa_cli -iwlan0 status
wpa_cli -iwlan0 status or with the IW command: iw wlan0 link Note: For detailed information about each command, please refer to wpa_cli commands section.
Connect to secured network - WEP 40 Open
wpa_cli -iwlan0 disconnect for i in `wpa_cli -iwlan0 list_networks | grep ^[0-9] | cut -f1`; do wpa_cli -iwlan0 remove_network $i; done wpa_cli -iwlan0 add_network wpa_cli -iwlan0 set_network 0 auth_alg OPEN wpa_cli -iwlan0 set_network 0 wep_key0 1234567890 wpa_cli -iwlan0 set_network 0 key_mgmt NONE wpa_cli -iwlan0 set_network 0 mode 0 wpa_cli -iwlan0 set_network 0 ssid '"vic_BSS"' wpa_cli -iwlan0 select_network 0 wpa_cli -iwlan0 enable_network 0 wpa_cli -iwlan0 reassociate wpa_cli -iwlan0 status iw wlan0 link
wpa_cli -iwlan0 status or with the IW command: iw wlan0 link Note: For detailed information about each command, please refer to wpa_cli commands section.
Connect to secured network - WEP 128 Open
wpa_cli -iwlan0 disconnect for i in `wpa_cli -iwlan0 list_networks | grep ^[0-9] | cut -f1`; do wpa_cli -iwlan0 remove_network $i; done wpa_cli -iwlan0 add_network wpa_cli -iwlan0 set_network 0 auth_alg OPEN wpa_cli -iwlan0 set_network 0 wep_key0 ABCdef1234567890abcDEF3333 wpa_cli -iwlan0 set_network 0 key_mgmt NONE wpa_cli -iwlan0 set_network 0 mode 0 wpa_cli -iwlan0 set_network 0 ssid '"vic_BSS"' wpa_cli -iwlan0 select_network 0 wpa_cli -iwlan0 enable_network 0 wpa_cli -iwlan0 reassociate wpa_cli -iwlan0 status iw wlan0 link
wpa_cli -iwlan0 status or with the IW command: iw wlan0 link Note: For detailed information about each command, please refer to wpa_cli commands section.
Enterprise environment: connect to WPA EAP TLSwpa_cli -iwlan0 disconnect for i in `wpa_cli -iwlan0 list_networks | grep ^[0-9] | cut -f1`; do wpa_cli -iwlan0 remove_network $i; done wpa_cli -iwlan0 add_network wpa_cli -iwlan0 set_network 0 auth_alg OPEN wpa_cli -iwlan0 set_network 0 key_mgmt WPA-EAP wpa_cli -iwlan0 set_network 0 pairwise TKIP wpa_cli -iwlan0 set_network 0 group TKIP wpa_cli -iwlan0 set_network 0 proto WPA wpa_cli -iwlan0 set_network 0 eap TLS wpa_cli -iwlan0 set_network 0 identity '"test"' wpa_cli -iwlan0 set_network 0 client_cert '"/etc/certs/cert.pem"' wpa_cli -iwlan0 set_network 0 private_key '"/etc/certs/key.pem"' wpa_cli -iwlan0 set_network 0 private_key_passwd '"test"' wpa_cli -iwlan0 set_network 0 mode 0 wpa_cli -iwlan0 set_network 0 ssid '"vic_BSS"' wpa_cli -iwlan0 select_network 0 wpa_cli -iwlan0 enable_network 0 wpa_cli -iwlan0 reassociate wpa_cli -iwlan0 status iw wlan0 link Note: For detailed information about each command, please refer to wpa_cli commands section.
Enterprise environment: connect to WPA EAP PEAP0wpa_cli -iwlan0 disconnect for i in `wpa_cli -iwlan0 list_networks | grep ^[0-9] | cut -f1`; do wpa_cli -iwlan0 remove_network $i; done wpa_cli -iwlan0 add_network wpa_cli -iwlan0 set_network 0 auth_alg OPEN wpa_cli -iwlan0 set_network 0 key_mgmt WPA-EAP wpa_cli -iwlan0 set_network 0 pairwise TKIP wpa_cli -iwlan0 set_network 0 group TKIP wpa_cli -iwlan0 set_network 0 proto WPA wpa_cli -iwlan0 set_network 0 eap PEAP wpa_cli -iwlan0 set_network 0 identity "test" wpa_cli -iwlan0 set_network 0 password "test" wpa_cli -iwlan0 set_network 0 phase1 "peapver=0" wpa_cli -iwlan0 set_network 0 phase2 "MSCHAPV2" wpa_cli -iwlan0 set_network 0 mode 0 wpa_cli -iwlan0 set_network 0 ssid '"vic_BSS"' wpa_cli -iwlan0 select_network 0 wpa_cli -iwlan0 enable_network 0 wpa_cli -iwlan0 reassociate wpa_cli -iwlan0 status iw wlan0 link Note: For detailed information about each command, please refer to wpa_cli commands section.
Enterprise environment: connect to WPA2 EAP TLSwpa_cli -iwlan0 disconnect for i in `wpa_cli -iwlan0 list_networks | grep ^[0-9] | cut -f1`; do wpa_cli -iwlan0 remove_network $i; done wpa_cli -iwlan0 add_network wpa_cli -iwlan0 set_network 0 proactive_key_caching 1 wpa_cli -iwlan0 set_network 0 auth_alg OPEN wpa_cli -iwlan0 set_network 0 key_mgmt WPA-EAP wpa_cli -iwlan0 set_network 0 pairwise CCMP wpa_cli -iwlan0 set_network 0 group CCMP wpa_cli -iwlan0 set_network 0 proto WPA2 wpa_cli -iwlan0 set_network 0 eap TLS wpa_cli -iwlan0 set_network 0 identity '"test"' wpa_cli -iwlan0 set_network 0 client_cert '"/etc/certs/cert.pem"' wpa_cli -iwlan0 set_network 0 private_key '"/etc/certs/key.pem"' wpa_cli -iwlan0 set_network 0 private_key_passwd '"test"' wpa_cli -iwlan0 set_network 0 mode 0 wpa_cli -iwlan0 set_network 0 ssid '"vic_BSS"' wpa_cli -iwlan0 select_network 0 wpa_cli -iwlan0 enable_network 0 wpa_cli -iwlan0 reassociate wpa_cli -iwlan0 status iw wlan0 link Note: For detailed information about each command, please refer to wpa_cli commands section.
Enterprise environment: connect to WPA EAP PEAP0wpa_cli -iwlan0 disconnect for i in `wpa_cli -iwlan0 list_networks | grep ^[0-9] | cut -f1`; do wpa_cli -iwlan0 remove_network $i; done wpa_cli -iwlan0 add_network wpa_cli -iwlan0 set_network 0 auth_alg OPEN wpa_cli -iwlan0 set_network 0 key_mgmt WPA-EAP wpa_cli -iwlan0 set_network 0 pairwise CCMP wpa_cli -iwlan0 set_network 0 group CCMP wpa_cli -iwlan0 set_network 0 proto WPA2 wpa_cli -iwlan0 set_network 0 eap PEAP wpa_cli -iwlan0 set_network 0 identity '"test"' wpa_cli -iwlan0 set_network 0 password '"test"' wpa_cli -iwlan0 set_network 0 phase1 '"peapver=0"' wpa_cli -iwlan0 set_network 0 phase2 '"MSCHAPV2"' wpa_cli -iwlan0 set_network 0 mode 0 wpa_cli -iwlan0 set_network 0 ssid '"vic_BSS"' wpa_cli -iwlan0 select_network 0 wpa_cli -iwlan0 enable_network 0 wpa_cli -iwlan0 reassociate wpa_cli -iwlan0 status iw wlan0 link Note: For detailed information about each command, please refer to wpa_cli commands section. Enterprise environment: connect to any WPA EAP TLSwpa_cli -iwlan0 disconnect for i in `wpa_cli -iwlan0 list_networks | grep ^[0-9] | cut -f1`; do wpa_cli -iwlan0 remove_network $i; done wpa_cli -iwlan0 add_network wpa_cli -iwlan0 set_network 0 auth_alg OPEN wpa_cli -iwlan0 set_network 0 key_mgmt WPA-EAP #wpa_cli -iwlan0 set_network 0 pairwise CCMP TKIP #wpa_cli -iwlan0 set_network 0 group CCMP TKIP wpa_cli -iwlan0 set_network 0 proto WPA2 wpa_cli -iwlan0 set_network 0 eap TLS wpa_cli -iwlan0 set_network 0 identity '"test"' wpa_cli -iwlan0 set_network 0 client_cert '"/etc/certs/cert.pem"' wpa_cli -iwlan0 set_network 0 private_key '"/etc/certs/key.pem"' wpa_cli -iwlan0 set_network 0 private_key_passwd '"test"' wpa_cli -iwlan0 set_network 0 mode 0 wpa_cli -iwlan0 set_network 0 ssid '"vic_BSS"' wpa_cli -iwlan0 select_network 0 wpa_cli -iwlan0 enable_network 0 wpa_cli -iwlan0 reassociate wpa_cli -iwlan0 status iw wlan0 link Note: For detailed information about each command, please refer to wpa_cli commands section.
|
|
来自: dwlinux_gs > 《WPA Supplicant》