Help

802.1x login...

jmclaughlin
New Contributor

Posted on ‎03-23-2009 07:27 AM

Has anyone had any luck creating an 802.1x login profile package? I'd
like to be able to automate the process of creating all plist files and
other necessary settings to allow a machine bound to AD to log on and be
automatically connected to our WLAN. At the least, I'd like to provide
pre-configured settings and then supply the Internet Connect window at
login that would just prompt them for their AD credentials for wifi
authentication.

John McLaughlin
Technical Support Specialist
Newton Public Schools

0 Kudos
Reply
4 REPLIES 4

Bukira
Contributor

Posted on ‎03-23-2009 07:40 AM

HI,

We have a wireless connection thats uses authentication, what i did was turn off the wireless at logout and turn it on at login , it then prompts my users for login details and to accept the certificate

#!/bin/sh

#Set Network Service

networksetup -createnetworkservice "Library Wireless" "Airport" networksetup -setairportpower on

exit 0

Criss

?xml version="1.0" encoding="ISO-8859-1"?>

Criss Myers
Senior Customer Support Analyst (Mac Services)
Apple Certified Technical Coordinator v10.5
LIS Business Support Team
Library 301
University of Central Lancashire
Preston PR1 2HE
Ex 5054
01772 895054

0 Kudos
Reply

jmclaughlin
New Contributor

Posted on ‎03-23-2009 08:44 AM

Hi Criss, This would seem to enable a user profile and not a login profile. Also,
when I use that networksetup line, it creates a new service and not a
preferred network within Airport which is what we need.

John McLaughlin
Technical Support Specialist
Newton Public Schools

0 Kudos
Reply

jmclaughlin
New Contributor

Posted on ‎04-23-2009 01:02 PM

Hi, Yes, I actually just figured out the dev work for the script and created
a package which I'm using to deploy within a Self Service policy. What
you have to do is recreate the Airport dictionary within
/Library/Preferences/SystemConfiguration/preferences.plist just as it is
when you get a connection manually. Then you need to copy your root
certificate in pem format to the system you're creating the connection on. Use that cert to trust in your script. Make sure that the permissions
for the cert are correct when you copy it. I used /private/var/tmp and so
the permissions were root:wheel in that case. Let me know if you have any
issues. I may post the code on AFP548 and/or here if enough people ask me
about it.

John McLaughlin
Technical Support Specialist
Newton Public Schools

0 Kudos
Reply

Mscheid
New Contributor III

Posted on ‎02-25-2012 08:00 AM

Created the login profile (LoginProfile.networkConnect) and have a dmg that installs it to the root folder and then use: /usr/sbin/networksetup -import8021xProfiles Airport /LoginProfile.networkconnect; rm /LoginProfile.networkconnect

in the run command under advanced tab to have it install the profile and delete the file form the root of the drive.

Works very well!

0 Kudos
Reply