Bernie Hackett wrote:
Your wish is my command...network={ ssid="umd-secure" scan_ssid=1 proto=RSN key_mgmt=WPA-EAP group=CCMP TKIP eap=TTLS identity="bhackett" anonymous_identity="anonymous" password="<your directory password here>" ca_cert="/etc/thawte_server_roots/ThawtePremiumServerCA.cer" subject_match="CN=wireless.umd.edu" phase2="auth=PAP" } I'm not sure you actually need the certs but they are available for free.
The certificate verification is not required, but it highly recommended. It keeps you from connecting to a rogue AP pretending to be 'umd-secure'. You can get the Thawte Premium Server Certificate Authority root cert directly from Thawte: http://www.thawte.com/roots/index.html. -Karl
