Wicd template for University of Manitoba's wireless network
You can use the following wicd template to connect to the University of Manitoba's wireless network in the Fort Garry Campus ("uofm-wpa").
It employs a version of WPA2-Enterprise with PEAP (version 0) and MSCHAPv2 for the 2nd phase of authentication. The required "Thawte Premium Server Certificate" should be installed by most Linux distros. In Gentoo it is installed by the ca-certificates package and can be found in /etc/ssl/certs. The network setup requires both CCMP (i.e. AES) and TKIP encryption ciphers to connect successfully. PEAP has to be forced to version 0. Most wpa_supplicant examples flying around on the net use an entry ' phase2="auth=MSCHAPV2" ' for PEAP with MSCHAPV2. Curiously, it does not work here. Instead, the eap field has to be set to 'PEAP MSCHAPV2'.
name = UofM WPA2-Enterprise
author = Markus Meier (meier _at_ cc.umanitoba.ca)
version = 1
require identity *Identity password *Password ca_cert *Certificate
# The required "Thawte Premium Server Certificate" is installed by the "ca-certificates" package
-----
ctrl_interface=/var/run/wpa_supplicant
country=CA # set country to Canada
eapol_version=2
fast_reauth=1
network={
ssid="$_ESSID"
scan_ssid=$_SCAN
proto=RSN # require WPA2
eap=PEAP MSCHAPV2
key_mgmt=WPA-EAP
identity="$_IDENTITY"
password="$_PASSWORD"
# Only PEAP version 0 works
phase1="peapver=0"
pairwise=CCMP TKIP
group=CCMP TKIP
ca_cert="$_CA_CERT"
}