<font color="red">Warning: Use of PEAP-MSCHAPv2 to connect to the Virginia Tech network is strongly discouraged by the Linux and Unix Users Group due to attacks that can allow all traffic to be decrypted with a 100% success rate.</font>
'''PEAP-MSCHAPv2''' is a wireless authentication scheme used by Virginia Tech as an alternative to [[EAP-TLS]] for connections to [[VT-Wireless]].
identity="your {{{identity|PID}}}"
password="your passphrase"
ca_cert="/etc/ssl/certs/GlobalSign_Root_CA.pem
}
==netcfg==
Tested on [[Arch Linux]] with netcfg 3.0 (updated on 2013-04-12).
* Create a file, '''/etc/network.d/VT-Wireless''' and place this in it:
CONNECTION='wireless'
INTERFACE='wlan0'
SECURITY='wpa-configsection'
ESSID='VT-Wireless'
IP='dhcp'
IP6='stateless'
CONFIGSECTION='
ssid="VT-Wireless"
proto=WPA2
key_mgmt=WPA-EAP
eap=PEAP
phase2="auth=MSCHAPV2"
identity="IDENTITY"
password="NETWORK PASSWORD"
'
Make sure to change '''IDENTITY''' to your {{{identity|PID}}}, and '''NETWORK PASSWORD''' to your network password.
* After creating this file, make sure to change the owner to root (<code>sudo chown root:root /etc/network.d/VT-Wireless</code>) and change the permissions so that it can be read only by the owner (<code>sudo chmod 0600 /etc/network.d/VT-Wireless</code>). This will ensure that your private key password cannot be read by others easily.
* To connect, simply type the following in a terminal:
sudo netcfg VT-Wireless
==netctl==
