Bug 707921 – system-ca-certs=true by default, even if you choose not

After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.

Bug 707921 - system-ca-certs=true by default, even if you choose not


Summary:	system-ca-certs=true by default, even if you choose not


Status:	RESOLVED DUPLICATE of bug 702608

Product:	NetworkManager
Classification:	Platform
Component:	Wi-Fi
Version:	0.9.8
Hardware:	Other Linux

Importance:	Normal normal
Target Milestone:	---
Assigned To:	NetworkManager maintainer(s)
QA Contact:	NetworkManager maintainer(s)

URL:
Whiteboard:

Depends on:
Blocks:

Reported:	2013-09-11 15:44 UTC by Le Gluon du Net
Modified:	2013-10-19 00:40 UTC

See Also:
GNOME target:	---
GNOME version:	---

Description Le Gluon du Net 2013-09-11 15:44:16 UTC

Network Manager has bug for WPA2 enterprise wifi network:
it uses "system-ca-certs=true" by default, even if you answer not.
Each time I create a new WIFI connexion, I have to edit the wifi file configuration located in /etc/NetworkManager/system-connections/ to replace the line "system-ca-certs=true" by "system-ca-certs=false".

It's a high priority bug since a lot of people at work could no more connect to their WPA2 enterprise network.

Thank you for your help.

conf:

Ubuntu 13.04

Comment 1 pauljohn 2013-10-03 05:15:08 UTC

Does your dmesg output look like this when that happens?  201.669193] wlan0: authenticate with 88:f0:77:f2:a3:91
[  201.718103] wlan0: direct probe to 88:f0:77:f2:a3:91 (try 1/3)
[  201.918948] wlan0: direct probe to 88:f0:77:f2:a3:91 (try 2/3)
[  202.122888] wlan0: direct probe to 88:f0:77:f2:a3:91 (try 3/3)
[  202.326811] wlan0: authentication with 88:f0:77:f2:a3:91 timed out
[  202.609720] wlan0: authenticate with 88:f0:77:f2:a3:9e
[  202.646465] wlan0: send auth to 88:f0:77:f2:a3:9e (try 1/3)
[  202.652196] wlan0: authenticated
[  202.654715] wlan0: associate with 88:f0:77:f2:a3:9e (try 1/3)
[  202.656897] wlan0: RX AssocResp from 88:f0:77:f2:a3:9e (capab=0x11 status=0 aid=2)
[  202.661500] wlan0: associated
[  202.661583] cfg80211: Calling CRDA for country: US
[  202.665577] cfg80211: Regulatory domain changed to country: US
[  202.665582] cfg80211:   (start_freq - end_freq @ bandwidth), (max_antenna_gain, max_eirp)
[  202.665584] cfg80211:   (2402000 KHz - 2472000 KHz @ 40000 KHz), (300 mBi, 2700 mBm)
[  202.665587] cfg80211:   (5170000 KHz - 5250000 KHz @ 40000 KHz), (300 mBi, 1700 mBm)
[  202.665589] cfg80211:   (5250000 KHz - 5330000 KHz @ 40000 KHz), (300 mBi, 2000 mBm)
[  202.665591] cfg80211:   (5490000 KHz - 5600000 KHz @ 40000 KHz), (300 mBi, 2000 mBm)
[  202.665593] cfg80211:   (5650000 KHz - 5710000 KHz @ 40000 KHz), (300 mBi, 2000 mBm)
[  202.665595] cfg80211:   (5735000 KHz - 5835000 KHz @ 40000 KHz), (300 mBi, 3000 mBm)
[  202.665597] cfg80211:   (57240000 KHz - 63720000 KHz @ 2160000 KHz), (N/A, 4000 mBm)
[  207.934797] wlan0: deauthenticating from 88:f0:77:f2:a3:9e by local choice (reason=3)

Comment 2 Michael Catanzaro 2013-10-19 00:40:37 UTC

Thanks for the bug report. This particular bug has already been reported into our bug tracking system, but please feel free to report any further bugs you find.

*** This bug has been marked as a duplicate of bug 702608 ***