Hello:
I have been troubleshooting connecting some clients to an enterprise wifi network that is using TLS-EAP. I'm using NetworkManager and have put in the user certificate, as well as a CA certificate and no CA certificate. So far, no luck. I have verified the wifi infrastructure is in tact and functioning, this issue is all something on the CentOS 7 client.
I have upgraded NetworkManager and openssl to the latest versions, hoping for a fix but no luck. In /var/log/messages, it is showing the following entries of the failure. However, I have no idea as to why it is deauthenticating. I've also disabled ipv6 as well as power save for the wifi adapter. Below are the log entries showing the failure. Does anybody know what could be a possible cause?
Thank you very much in advance.
Mar 13 14:27:01 localhost NetworkManager[857]: <info> (wlp2s0): supplicant interface state: disconnected -> scanning
Mar 13 14:27:01 localhost kernel: wlp2s0: authenticate with f8:4f:57:cb:b4:00
Mar 13 14:27:01 localhost kernel: wlp2s0: send auth to f8:4f:57:cb:b4:00 (try 1/3)
Mar 13 14:27:01 localhost kernel: wlp2s0: authenticated
Mar 13 14:27:01 localhost kernel: wlp2s0: associate with f8:4f:57:cb:b4:00 (try 1/3)
Mar 13 14:27:01 localhost NetworkManager[857]: <info> (wlp2s0): supplicant interface state: scanning -> authenticating
Mar 13 14:27:01 localhost NetworkManager[857]: <info> (wlp2s0): supplicant interface state: authenticating -> associating
Mar 13 14:27:01 localhost kernel: wlp2s0: RX AssocResp from f8:4f:57:cb:b4:00 (capab=0x431 status=0 aid=45)
Mar 13 14:27:01 localhost vmnet-natd: RTM_NEWLINK: name:wlp2s0 index:4 flags:0x00011003
Mar 13 14:27:01 localhost vmnetBridge: RTM_NEWLINK: name:wlp2s0 index:4 flags:0x00011003
Mar 13 14:27:01 localhost kernel: wlp2s0: associated
Mar 13 14:27:01 localhost kernel: cfg80211: Calling CRDA for country: US
Mar 13 14:27:01 localhost kernel: cfg80211: Regulatory domain changed to country: US
Mar 13 14:27:01 localhost kernel: cfg80211: DFS Master region: unset
Mar 13 14:27:01 localhost kernel: cfg80211: (start_freq - end_freq @ bandwidth), (max_antenna_gain, max_eirp), (dfs_cac_time)
Mar 13 14:27:01 localhost kernel: cfg80211: (2402000 KHz - 2472000 KHz @ 40000 KHz), (N/A, 3000 mBm), (N/A)
Mar 13 14:27:01 localhost kernel: cfg80211: (5170000 KHz - 5250000 KHz @ 80000 KHz), (N/A, 1700 mBm), (N/A)
Mar 13 14:27:01 localhost kernel: cfg80211: (5250000 KHz - 5330000 KHz @ 80000 KHz), (N/A, 2300 mBm), (0 s)
Mar 13 14:27:01 localhost kernel: cfg80211: (5735000 KHz - 5835000 KHz @ 80000 KHz), (N/A, 3000 mBm), (N/A)
Mar 13 14:27:01 localhost kernel: cfg80211: (57240000 KHz - 63720000 KHz @ 2160000 KHz), (N/A, 4000 mBm), (N/A)
Mar 13 14:27:01 localhost NetworkManager[857]: <info> (wlp2s0): supplicant interface state: associating -> associated
Mar 13 14:27:03 localhost kernel: wlp2s0: deauthenticating from f8:4f:57:cb:b4:00 by local choice (Reason: 3=DEAUTH_LEAVING)
Mar 13 14:27:03 localhost vmnet-natd: RTM_NEWLINK: name:wlp2s0 index:4 flags:0x00001003
Deauthentication issue on EAP wifi
Re: Deauthentication issue on EAP wifi
I've given up on getting this to work and have found that using PEAP is working and supported. The only issue that I still cannot resolve is when the client hops access points (all access points broadcast the same wifi networks), it disconnects and won't automatically reconnect. I wish there was a way that it would hold the connection.