I'm trying to get Arch Linux running on my laptop, but I'm running into some issues connecting to my school's Wi-Fi. I've been told that the network requires a CA certificate, but the IT department insists it doesn't. Is there a way to obtain the CA certificate from Windows 11 (or from macOS if I can get it from a friend) and use it on Arch Linux with iwd to connect to the network? Thanks for your help!
3 Answers
Based on what you've shared, it sounds like you might be trying to connect a device that isn't managed by your school network. If the Windows or Mac systems automatically have that CA certificate, they’re likely set up to comply with network security policies specific to your school. Connecting a non-managed device could pose security risks, which may be why IT is reluctant to provide the certificate. You're possibly facing WPA Enterprise connection issues because of this, so it’s worth reconsidering if connecting your personal laptop is the right move.
If your goal is to get connected without jumping through hoops, taking the CA certificate directly from a Windows system isn't ideal. You should ideally get it from IT since they manage network security. If they say it’s not required, double-check with them about what they need for connection. Also, if you’re getting hint of TLS inspection, some level of cert validation is likely involved. It might be worth discussing with them directly to understand what exactly they expect from your device.
Hey, it sounds like you need to really clarify what issues you’re facing with the school internet. Just saying you ‘had a few problems’ isn’t specific enough for us to help. For example, what exactly happens when you try to connect? Are there errors? What kind of Arch Linux version are you using? How do you normally access the internet at school? If you can provide more details, we'll be better equipped to assist you.
I keep getting an authentication error with reason "23" in the logs, which points to needing a certificate. I've tried a bunch of commands in the Arch terminal but I think IT isn’t going to help with the certificate itself.
What if I keep trying to connect? Will they eventually give me access?