有线连接无法连接 802.1x 企业网络,提示认证出错

wpad-mini 已经移除,安装上了 wpa-supplicant

root@PC-AR300M:~# wpa_supplicant -i eth0 -dd -Dwired -c /etc/config/wpa_supplicant.conf -t
1494540486.198103: Successfully initialized wpa_supplicant
1494540486.302298: eth0: Associated with --:--:--:--:--:--
1494540486.302472: WMM AC: Missing IEs
1494540488.204946: eth0: CTRL-EVENT-EAP-STARTED EAP authentication started
1494540488.212184: eth0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25
1494540488.213710: eth0: CTRL-EVENT-EAP-METHOD EAP vendor 0 method 25 (PEAP) selected
1494540488.719771: eth0: CTRL-EVENT-EAP-FAILURE EAP authentication failed
1494540518.830393: eth0: CTRL-EVENT-EAP-STARTED EAP authentication started
1494540518.834792: eth0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25
1494540518.836147: eth0: CTRL-EVENT-EAP-METHOD EAP vendor 0 method 25 (PEAP) selected
1494540518.983704: eth0: CTRL-EVENT-EAP-FAILURE EAP authentication failed

加上了 -dd 参数还是无法获取详细错误信息,寻求帮助。

在树莓派用同一份 wpa_supplicant.conf 能正常链接,因此不是用户名密码错误的问题…

ctrl_interface=/var/run/wpa_supplicant
ap_scan=0
network={
  key_mgmt=IEEE8021X
  eap=PEAP
  identity="username@york.ac.uk"
  password="password"
  ca_cert="/etc/certs/radius.pem"
  phase1="peaplabel=0"
  phase2="auth=MSCHAPV2"
}

我现在是用电脑桥接网络过来,绕过路由认证。但是我更希望能够从路由器直接接入到学校的网络,毕竟电脑不会一直开着。

如果有需要的话,路由器的信息如下:

root@PC-AR300M:~# uname -a
Linux PC-AR300M 3.18.27 #1 Wed Jan 11 13:18:57 HKT 2017 mips n

root@PC-AR300M:~# cat /proc/cpuinfo
system type		: Qualcomm Atheros QCA9533 ver 2 rev 0
machine			: GL-AR300M
processor		: 0
cpu model		: MIPS 24Kc V7.4
BogoMIPS		: 432.53
wait instruction	: yes
microsecond timers	: yes
tlb_entries		: 16
extra interrupt vector	: yes
hardware watchpoint	: yes, count: 4, address/irw mask: [0x0ffc, 0x0ffc, 0x0ffb, 0x0ffb]
isa			: mips1 mips2 mips32r1 mips32r2
ASEs implemented	: mips16
shadow register sets	: 1
kscratch registers	: 0
package			: 0
core			: 0
VCED exceptions		: not available
VCEI exceptions		: not available

固件版本 2.25

你可以直接安装 wpad吗?不是安装wpa-supplicant。虽然似乎看起来没有什么却别。

因为有一些客户说了是可以的。

@alzhao 照着你的说明试了下,但还是提示认证失败,错误信息依旧,只有这么几行。

但是让我感觉奇怪的是跑 wpa_supplicant 的时候,即使带上 -dd 参数,输出的信息还是那么几行。不知道是不是调用的参数出错了?

我看别人贴的日志信息都是带有挺多数据的… 不清楚是什么问题… 难不成学校阻止路由器接入?

我是通过 ip addr 猜测是哪一个网络设备接口:

root@GL-AR300M:~# ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default 
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
    link/ether e4:95:6e:40:bf:9e brd ff:ff:ff:ff:ff:ff
    inet 144.32.16.144/23 brd 144.32.17.255 scope global eth0
       valid_lft forever preferred_lft forever
    inet6 fe80::e695:6eff:fe40:bf9e/64 scope link 
       valid_lft forever preferred_lft forever
3: eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel master br-lan state UP group default qlen 1000
    link/ether e4:95:6e:40:bf:9e brd ff:ff:ff:ff:ff:ff
4: ifb0: <BROADCAST,NOARP> mtu 1500 qdisc noop state DOWN group default qlen 32
    link/ether 6a:a0:91:cb:52:d7 brd ff:ff:ff:ff:ff:ff
5: ifb1: <BROADCAST,NOARP> mtu 1500 qdisc noop state DOWN group default qlen 32
    link/ether a6:0a:ab:1c:f7:0a brd ff:ff:ff:ff:ff:ff
6: gre0@NONE: <NOARP> mtu 1476 qdisc noop state DOWN group default 
    link/gre 0.0.0.0 brd 0.0.0.0
7: gretap0@NONE: <BROADCAST,MULTICAST> mtu 1462 qdisc noop state DOWN group default qlen 1000
    link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff
9: br-lan: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default 
    link/ether e4:95:6e:40:bf:9e brd ff:ff:ff:ff:ff:ff
    inet 192.168.8.1/24 brd 192.168.8.255 scope global br-lan
       valid_lft forever preferred_lft forever
    inet6 fddb:377:c167::1/60 scope global noprefixroute 
       valid_lft forever preferred_lft forever
    inet6 fe80::e695:6eff:fe40:bf9e/64 scope link 
       valid_lft forever preferred_lft forever
10: wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master br-lan state UP group default qlen 1000
    link/ether e4:95:6e:40:bf:9e brd ff:ff:ff:ff:ff:ff
    inet6 fe80::e695:6eff:fe40:bf9e/64 scope link 
       valid_lft forever preferred_lft forever

感谢回复。

很多学校是用了一个什么网,是禁止路由器接入的。我也不知道是连不上还是可以连上但是用不了。