[RADIATOR] Certificate Not Trusted - InCommon?

Ullfig, Roberto Alfredo rullfig at uic.edu
Thu Sep 9 16:40:09 UTC 2021

You're right - there is no username. Just an SSID and credentials. So why do these services not require trusting a certificate? Are those services less secure? Is the shared password going over in clear text?

Roberto Ullfig - rullfig at uic.edu
Systems Administrator
Enterprise Applications & Services | Technology Solutions
University of Illinois - Chicago
From: radiator <radiator-bounces at lists.open.com.au> on behalf of Heikki Vatiainen <hvn at open.com.au>
Sent: Thursday, September 9, 2021 10:59 AM
To: radiator at lists.open.com.au <radiator at lists.open.com.au>
Subject: Re: [RADIATOR] Certificate Not Trusted - InCommon?

On 9.9.2021 18.11, Ullfig, Roberto Alfredo wrote:

> No, I'm referring to WiFi offered at airports, coffee shops, bars, or at
> someone's home etc... You are given a username and password and the
> phone shows the SSID, you just enter the username and password and are
> connected. There is never a window asking you to trust a certificate.

Could be WPA-Personal, also known as WPA-PSK, where a shared secret (Pre
Shared Key) is needed, or Wi-Fi Protected Setup? But I think these don't
require a username. One option is a built-in client that launches a
customised browser to help with captive portal login.

The problem with the above is that Wi-Fi client software in your device
does not know how to authenticate the network. The network demands that
credentials are used but the Wi-Fi client software has nothing to demand
from the network.


Heikki Vatiainen
OSC, makers of Radiator
Visit radiatorsoftware.com for Radiator AAA server software
radiator mailing list
radiator at lists.open.com.au
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.open.com.au/pipermail/radiator/attachments/20210909/b24f8dee/attachment.html>

More information about the radiator mailing list