From Offensive-security.com
Working security mode configurations
- Notes: Be sure these two lines are at the top of wpa_supplicant.conf
ctrl_interface=/var/run/wpa_supplicant
ctrl_interface_group=0
- All of these different security mode's can be combined into one wpa_supplicant.conf for multi-AP support which can be found here: wpa_supplicant.conf
OPEN
- Notes: Plaintext (no encryption) network
network={
ssid=""
key_mgmt=NONE
}
WEP
- Notes: Single Key 64bit & 128bit WEP
network={
ssid="InsertSSID"
key_mgmt=NONE
wep_key0="InsertASCIIKey"
wep_tx_keyidx=0
}
WPA
- Notes: WPA protected network, TKIP, AES & TKIP + AES
network={
ssid="InsertSSID"
proto=WPA
key_mgmt=WPA-PSK
pairwise=CCMP TKIP
group=CCMP TKIP
psk="InsertASCIIKey"
}
WPA2
- Notes: WPA2 protected network, TKIP, AES & TKIP + AES
network={
ssid="InsertSSID"
proto=RSN
key_mgmt=WPA-PSK
pairwise=CCMP TKIP
group=CCMP TKIP
psk="InsertASCIIKey"
}
802.1x
PEAP
- Notes: No certificate validation configuration
- EAP Type: PEAP
- Network Authentication: WPA
- Data Encryption: TKIP
- Authentication Method/Protocol: MSCHAP-V2
- Inner EAP Type: EAP-MSCHAPv2
ctrl_interface=/var/run/wpa_supplicant
ctrl_interface_group=0
fast_reauth=1
network={
ssid="InsertSSID"
scan_ssid=1
key_mgmt=WPA-EAP
eap=PEAP
pairwise=TKIP
group=TKIP
proto=WPA
identity="InsertUserName"
password="InsertPassword"
#phase1="peaplabel=0"
phase2="auth=MSCHAPV2"
priority=1
}
