Regardless of what program you use to make your connection, you will need to [https://netcert.cns.vt.edu/netcert/ obtain your p12 certificate and password from CNS].Complete the form and download the p12 certificate file. Write down Save thecertificate password permanently and store copy it some place where you can find itagainfor immediate use. You will need it in setting up your connection to VT-Wireless. ==Choosing a Network Manager==[[w:NetworkManager|NetworkManager]] is installed by default on Ubuntu and Fedora. As of fall 2009, it does not support the PKCS#12 format certificates that CNS provide out of the box, however. Converting the certificate requires some work, but the steps are outlined below. If you don't rely on NetworkManager for other kinds of connections like mobile broadband or [[Proxies and VPN|VPN]], or are having problems with NetworkManager, use Wicd instead. If you don't want or need a graphical interface, a WPA Supplicant configuration is also described below.

The setup for NetworkManager depends on your version of thesoftware. Please follow the instructions appropriate to your versionbelow.In GNOME, you can right-click the NetworkManager applet icon inthe panel and select "About" to find the version of NetworkManager.Ubuntu users: version 0.6 ships with 8.04 Hardy Heron, and 0.7 shipswith 8.10 Intrepid Ibex.

Ubuntu users: Version 0.6 ships with 8.04 Hardy Heron, 0.7 ships with 8.10 Intrepid Ibex, 0.x ships with 9.04 Jaunty Jackalope and 0.8 ships with Karmic Koala. ====NetworkManager 0.7and 0.8====

['''NOTE:''' The following steps are only necessary to use NetworkManager 0.7and 0.8. NetworkManager 0.6 has a [#NetworkManager_0.6 more straightforward setup] and wpa_supplicant works pretty much [#Connecting_by_WPA_Supplicant out of the box] as well.]You will need to convert the PKCS#12 (.p12 ) certificate into PEM formats. We will assume your downloaded p12 file is called '''<ttcode>netcert-1.p12</ttcode>''' and that its password is '''''<code>netcertpasswd'''''<code>.Open a terminal and <ttcode>cd</ttcode> to the directory that contains your .p12 file. Then issue the following commands:

<pre>openssl pkcs12 -in netcert-1.p12 -out vt_client_cert.pem -clcerts -nokeys

 In each step, you will be prompted for the password (''<code>netcertpasswd''</code>)that you were issued along with your .p12 certificate. Right click and paste it in or press <code>ctrl+shift+v</code> if you're using Gnome Terminal Additionally, inthe final step where you generate your private key, you will be askedto enter a password. Enter the same password that came with your p12

<ul><li> * [http://www.codealias.info/technotes/wpa2_eap-tls_authentication_linux_client_setup http://www.codealias.info/technotesWPA2 EAP/wpa2_eap-tls_authentication_linux_client_setupTLS Linux client setup]</li></ul>

Next, you will need to make sure you have the Thawte CA certificate authority certificate. In Ubuntu, you should be able to find this certificate as at <ttcode>/etc/ssl/certs/Thawte_Premium_Server_CA.pem</ttcode>.If you can't find the certificateon your system, you can copy the text below and paste it into a new file of the same name.

<pre>-----BEGIN CERTIFICATE-----

 <!--<a href="http://www.vtluug.org/wiki/index.php?title=Image:Nm_choose_wireless.png" class="image" title="Image:nm_choose_wireless.png"><img alt="Image:nm_choose_wireless.png" src="VT-Wireless_files/Nm_choose_wireless.html" height="255" width="313" border="0"></a>--> 

 <!--<a href="http://www.vtluug.org/wiki/index.php?title=Image:Nm_choose_tls.png" class="image" title="Image:nm_choose_tls.png"><img alt="Image:nm_choose_tls.png" src="VT-Wireless_files/Nm_choose_tls.html" height="466" width="494" border="0"></a>--> 

 <!--<a href="http://www.vtluug.org/wiki/index.php?title=Image:Nm_vt_wireless_options.png" class="image" title="Image:nm_vt_wireless_options.png"><img alt="Image:nm_vt_wireless_options.png" src="VT-Wireless_files/Nm_vt_wireless_options.html" height="466" width="494" border="0"></a>-->