Please provide option to make NetworkManager verify only the root certificate of the signed cert chain (WPA2-Enterprise)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
network-manager (Ubuntu) |
Expired
|
Medium
|
Unassigned |
Bug Description
I have to use a chain certificate, that had all certificates involved in the verification of the AP. this seems uncomfortable and breaks design (of at least the eduroam networks).
The (German) eduroam networks are all signed with a certificate of the corresponding university or college CA, which is signed by the DFN (german scientific network) which is signed by Deutsche Telekom Root CA (installed by default on ubuntu)
By opting to verify the complete chain, I have to set up various configurations for various locations.
The eduroam network is designed to enable students from all over the world to log in to worldwide higher education networks with their home-university's login.
There should be an option to only verify the root certificate of the signed cert chain.
tags: | added: nm-improvements |
Changed in network-manager (Ubuntu): | |
assignee: | Mathieu Trudel-Lapierre (cyphermox) → nobody |
I found this relevant page: http:// rwth.bernd- jantzen. de/eduroam/