• State Answer Suggested
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 42 subscribers
  • Views 216 views
  • Users 0 members are here
Support feedback
Options
Options
Related

This thread has been locked.

If you have a related question, please click the "Ask a related question" button in the top right corner. The newly created question will be automatically linked to this question.

CC3235MODASF: Find the root CA needed for the WiFi Enterprise connection

Sundaresan Thangeswaran1
Intellectual 410 points
Part Number: CC3235MODASF


Hi,

I have found the below code in the document (swpu332a) to find the root CA for the server.

If I use the same code to find the EAP Radius server certificate, since it failed in the WLAN event handler, it doesn't call the socket event handler.

Is there any way to find the name of the root certificate of the EAP server?

Regards,

Sundar

  • 0
    Guru 80445 points

    Hi Sundar,

    There is no way how to get name of CA for EAP. Only way is to ask administrator of RADIUS server. Other option is to disable validation of CA for EAP by sl_ API before connection attempt.

    Jan

  • 0 in reply to Jan D
    Intellectual 410 points

    Hi Jan,

    Thanks for the input. Some organizations use self-signed certificates, and they may share the wrong certificate. If I am connecting to the same EAP network using my mobile or laptop, can I download the correct CA certificate from my phone or laptop?

    Does the disabled validation of CA work for all the EAP networks? because we have an EAP network here and the CC3235MOD Launchpad connects to the network if I program the CA certificate.

    Regards,

    Sundar

  • 0 in reply to Sundaresan Thangeswaran1
    Guru 80445 points

    Hi Sundar,

    Sorry, but I am not able say whether your computer or cell phone can extract CA file for EAP security.

    It will work for EAP networks that use the EAP method which requires CA file for validation of RADIUS server. For example EAP-FAST methods does not require CA file. When validation against CA file is disabled it is not needed to have set proper RTC time. But disabling validation against CA is not recommanded from security stand point.

    Jan