First of all: Hello world
I am a new and proud owner of the Nexus One Everything is just fine BUT one thing. Maybe we can sort that out..
My college uses WPA Enterprise 802.1X (TTLS+PAP) with a root certificate. Thats not the problem Android 2.1 supports it
I am able to connect, Nimbuzz and Opera Mini work, BUT none of the standard apps (Browser, Mail, News, Weather...)
I know I have to use a HTTP proxy, and I kinda think the standard apps are too dumb to do so ... (Thank you google: Issue 1273)
Is there any way to get atleast the Mail to work? I dont really get why Nimbuzz works, but shouldnt something like K9-Mail work too?
I was so worried that WPA Enterprise might not work that I totally forgot about the proxy
My Nexus one is not rooted!
Thanks in advance
Breece
Ps.: And I really dont get why the cellphone doesnt simply use the Mobile connection if WiFi doesnt work -_- That would be atleast somewhat acceptable...
How did you manage to install a root certificate on the Nexus? Apparently it just supports .p12 files, not .cer.
In the case I just have the public key, there is no way to create a .p12 file out of it. I'm lost here.
Our wireless here at work doesn't require a certificate as far as I can tell, but my N1 (2.1 or 2.2) won't ever connect to it, shows it as WEP
In Linux, I have wpa_supplicant set as:
eap=TTLS
phase2="auth=PAP"
But it just doesn't work
henriquesp said:
How did you manage to install a root certificate on the Nexus? Apparently it just supports .p12 files, not .cer
Click to expand...
Click to collapse
You can use openSSL to convert between certificate formats, if you're on windows I believe easySSL (ezSSL?) which comes with openVPN is an easy way to obtain a binary version.
Same issue here, how to get cert?
My company wifi is
eap=TTLS
phase2="auth=PAP"
and requires certificates to install. I've been googling the last 5 days and still haven't found an answer yet. Any one know how to convert .cer to .p12 for androids?
how did u instal the root cert?
Have a look here for troubleshooting: searchnetworking.techtarget.com.au/articles/41635-How-to-fix-Android-Wi-Fi-problems
It should be possible to install certificates under Settings/Security and Location(dunno the exakt term,it's all in German on my phone), if it's on your SD Card.
If however it fails, try realmb.com/droidCert
I think it's pretty much the same thing though.
//edit: somehow, it's something different...I couldn't really figure out what this is all about, 'gonna read more stuff next couple of weeks...
If you got another format, you can use this website sslshopper.com/ssl-converter.html to convert your certificate. Or just google OpenSSL convert ...something like that.
I haven't tested it, so I can't say if it works in the end, but I might find out on Thursday...Or next semester because that's gonna be the last day for the next 10 weeks I'm gonna be at uni
Try the http/s thing out yourself, I can't post links, because I'm a new user-.-
AndyBurns said:
You can use openSSL to convert between certificate formats, if you're on windows I believe easySSL (ezSSL?) which comes with openVPN is an easy way to obtain a binary version.
Click to expand...
Click to collapse
Have you tried to use any of these tools for that?
It is indeed possible to encapsulate a public + private key within a .p12 (PKCS#12) format, but if you try to create a .p12 file out of a public only key (.cer file), it will keep asking you for the private key.
So, I have no clue on what to do next. Which private key should I use?? I don't have the private key, since it is another party certificate!! So asking for a private key in this case doesn't make sense at all.
AFAIK, PKCS#12 format is to encapsulate public + private keys only, and cannot hold a public only file. Or is this assumption wrong?
CyanogenMod supports WiFi proxy. It is one global setting (not per SSID).
Related
Hi,
Setting up my SBS2003 for push mail on my Qtek 9100.
I have been following the Microsoft setup white papers.
(Step-by-Step Guide to Deploying Windows Mobile-based Devices with Microsoft Exchange Server 2003 )
Trouble is the certificates seem to be causing the problem.
I copy across the only one found in my server clientsapps/sbscert directory ,( its called SBSCert.) to my qtek and it wont run.
It says cannot access certificate.
I tried loading the spaddcert file then adding the certificate and it says not a valid certificate.
CAn someone help me on this?
thanks,
Dave.
Hi,
Check out http://www.msexchange.org for MS Exchange information.
They have lots of information of MS Exchange server stuff. This site is mainly for the XDA/MDA related stuff.
-Tim
I'm going to assume you've already created a certificate (easiest way is through the Connect to Internet Wizard)
On your SBS server run mmc from the Run line. Then go to File - Add/Remove Snapi-n. Click Add and add the Certificates snap-in.
Then open the Certificate snap-in. Drill down to Trusted Root Certification Authorities\Certificates and locate the certificate that you created. Right click , All Tasks, Export. Export to der encoded binary (the first one). Now copy that file to your device, execute and all should be well!
Hope that helps.
thanks but i'm not sure now what I'm looking for.
Anybody who has it working can you provide me with some help.
You need to export the certificate you created and then install it on your device.
To export:
Open internet explorer and then click,
Tools - internet options - content - certificates - trusted root certificates
locate the one you created, highlight it and then click export.
Follow through the instructions, and export it to a location where you can find it.
After you've exported it copy the exported cert' to your device.
Finally on your device navigate to the certificate and click on it.
Well it seems to be working at the moment.
Dr Puttingham has been a great help.
Just trying to sort it out so that I can turn SSL back on but other than that its working just fine.
Introducing the SslChainSaver
Here's a GREAT lil util I found that makes this all just a little easier!
http://blogs.msdn.com/windowsmobile/archive/2006/08/11/sslchainsaver.aspx
I ran into this as I'm writing a cab will install my self gererated cert from my customized Extended ROM along with my many registry tweaks, etc and discovered that it's not that easy!
I am having a similar problem. My work's certificate is issued internally. I used Sslchainsaver to get the root.cr file and installed it on my T-Mobile MDA (on Cingular network). When it attemps to syncronize I get the following error:
You have an incorrect SSL certificate common name in the Host Name field. For example, you may have entered www.tailspintoys when the common name on the certificate is actually www.wingtiptoys.com. Make sure the server name is entered correctly.
Support Code: 0x80072F06
Any help would be really appreciated since I have been trying to get this to work for quite sometime now.
Thanks
@azaouk - my rule of thumb has always been to name this with the Fully Qualified Name (FQN) of my mx record. For instance say my domain is www.whyeatme.com. I would typically create a "A" record for "mail.whyeatme.com" or such. Then I create my self gernerated certificate with that same name. It's telling you what it's complaint is ...
Dr Puttingham said:
I'm going to assume you've already created a certificate (easiest way is through the Connect to Internet Wizard)
Click to expand...
Click to collapse
Hi all !
So... how about assuming I didn't create the user certificate yet...
The thing is, I already had to do that for one user, worked fine, created a user.cer file, and already have a mobile.cer file, if I put them both on a windows mobile device, mails arrive from the exchange server.
Now I have to do this again, but I don't remember how I did it and however I did this all alone last time, it seems I'm unable to retreive that path again...
So, I'm not sure we are talking about the same method here, I do this very very simple, but I'm sure someone here can tell me how I just get that cer file for a specific user.
Thanks in advance !!
Michel
Hi,
The wireless network we have at work requires us to first connect to the network (the easy part), then open a web browser (Opera) to login. In my Opera under Settings->Privacy->Password management, I've saved my username and password, however it doesn't auto-fill the form like it should on other websites. I've also had this problem on my laptop (auto-fill doesn't work), so was wondering if there's a script or software or something for me to automatically login instead of having to type in my username and password every time?
Looking at the login website, it says it's a Cisco Wireless Network (presumably that's the router used).
Thanks
dan168 said:
Hi,
The wireless network we have at work requires us to first connect to the network (the easy part), then open a web browser (Opera) to login. In my Opera under Settings->Privacy->Password management, I've saved my username and password, however it doesn't auto-fill the form like it should on other websites. I've also had this problem on my laptop (auto-fill doesn't work), so was wondering if there's a script or software or something for me to automatically login instead of having to type in my username and password every time?
Looking at the login website, it says it's a Cisco Wireless Network (presumably that's the router used).
Thanks
Click to expand...
Click to collapse
Did you try for example a MortScript-based solution? (I don't think a GET-based solution would work, instead of the default POST-based one. You can, however, give it a try too, if adding the full URL, along with your l/p, as a bookmark, isn't a problem.)
Menneisyys said:
Did you try for example a MortScript-based solution? (I don't think a GET-based solution would work, instead of the default POST-based one. You can, however, give it a try too, if adding the full URL, along with your l/p, as a bookmark, isn't a problem.)
Click to expand...
Click to collapse
The POST-based is probably the most simple solution actually - going to give that a try now on my laptop. As far as MortScript goes, I think it'll probably work, but I do need to get around to learning it first.
Quick question without going into the MortScript documentation - how would I go about either calling Opera, or ideally, send a http command through a script? I'm an engineer and part of my job IS programming, but don't program for any web-based stuff so a bit lost there...
Edit: nevermind, reading the MortScript manual now, seems fairly easy to follow, will try to figure it out myself instead of wasting people's time here
Oh, just tried the POST idea on my laptop, works great! Thanks! Now time to look at MortScript me thinks
Hello Everyone,
I recently bought an EEE PC as a second computer and seeing as it's about the most easily lost or stolen laptop ever made, I thought it might be an idea to run some software on it that might help me recover it should it ever go missing.
After trying a few existing bits of software and not finding any satisfactory, I resorted to writing my own.
Since it seemed useful to me, I thought I'd make it available to anyone interested. It's a very early version at the moment and very basic, but I don't think there are too many bugs (famous last words!! ).
I thought I would post a message here as I use this forum quite a lot, and I know a lot of people here won't have a problem with editing the config file to set it up, I've tried to make things as simple as possible. However, if you don't know the difference between POP3 and SMTP mail servers, this app is probably not for you!!
If people are interested, I'll continue to develop it further. A few ideas are listed on my website.
Visit www.ajhonline.co.uk for download links and help.
Alex
this isn't hard to circumvent.
Nice app, but wouldn't they probably wipe the HDD?
How would it compare to Lojack's (utilizes Computrace) service? Some laptops have the Computrace service embedded in the bios. I currently use a Dell D410 and Panasonic CF-19, and they both have Computrace built into the bios. If someone formats my hard drive, or installs another harddrive, the bios will rebuild the neccessary files, run in the the background and start reporting the IP address back to Lojack.
Yes, of course the hard drive could be wiped, or it could never be connected to the internet. It is also easy to circumvent, although if I do develop it further, it would be fairly straight forward to make it less obvious and better hidden. This is only a very first version, to gauge interest more than anything,
It's not meant to be 100% foolproof, that probably isn't possible anyway. The advantage is it's free. I really developed it because I couldn't get Adeona to work (it just kept failing to connect to its server), not to compete with commercial solutions.
Hmmm, you know how I said I didn't think there were any bugs....
I just found that the Windows version was not saving the detected IP addresses correctly, so it would email you a "new" IP address message every time the computer was rebooted.
However the problem is now fixed, and a new version 0.1a available for download. The cross platform version wouldn't have been affected, but there's a new version of that too, just for completeness.
Sorry
Alex
I've now made some additions and released a new version which includes the changes below:
Added a separate configuration application to simplify initial setup
Added the ability to encrypt the mail server password for better security
Added a link to DNSTools to the IP Detected email for easy lookup of the WHOIS records for the IP Address
As before, visit www.ajhonline.co.uk and download version 0.2 from there.
Alex
PS - If you are using the Windows version and doing an upgrade from a previous version, make sure you keep a copy of your existing fyl.properties file, otherwise it will be overwritten during the install and any existing known IP addresses will be lost.
huff,.
i wish i have seen this before i lost my friend laptop,.
great help sir,. keep up,.
Version 0.22 is now available for download from www.ajhonline.co.uk.
It's only a small update; you are now able to specify a range of IP addresses as already known so that you don't get an email when one of those is detected.
Alex
Hey Guys,
in germany we just connect (3G) behind T-Mobile NAT. I want to have a fix ip address with dyndns. Behind a NAT this is not possible. Can anybody help me to solve this problem.
is there a possibility to configure a openvpn-server on cyanogen. Have anybody already make this?
In the cyanogen mod 4.1.999 there were following programs: dropbear, openssl and openvpn or were these programs for client mode configuration?
I couldn't find anything for a server mode. I found a openvpn-monitor.apk which doensn't hava a function.
Thanks for help!
You can use dyndns.org to map your current IP to a domain. If your Router supports it, it can do this automatically. If not, you have to manually run an app.
nschargitz said:
In the cyanogen mod 4.1.999 there were following programs: dropbear, openssl and openvpn or were these programs for client mode configuration?
I couldn't find anything for a server mode. I found a openvpn-monitor.apk which doensn't hava a function.
Click to expand...
Click to collapse
No, only the client binaries are included. If you need a server version for your handset you will need to either compile it yourself or find someone who has done the work for you. But as far as I know there are no ROMs that include those server binaries (except for maybe a copy of sshd).
traspler said:
You can use dyndns.org to map your current IP to a domain. If your Router supports it, it can do this automatically. If not, you have to manually run an app.
Click to expand...
Click to collapse
I guess the router doing the NAT is not located in his living room but in some server room operated by T-Mobile, so port forwarding or something like that is not an option.
I have the same problem at the moment, T-Mobile assigns me a private IP like 10.0.3.21 which cannot be accessed from the internet even with DynDNS or something like that.
If I come to a conlusion that to try to make my SSH accessible from the internet, I will post it, of course.
Hello,
thanks for reply! But i dont wont access my g1 over a home network. When i want to do this, i connect via telnet or something else. Because my router give me a static IP or a static DHCP IP.
I want to access to my g1 over umts (mobile). I have tried to access my g1 with an dyndns app in the market. In the descriptions of the app was a info that says, in germany with t-mobile contract it doesn´t works.
Have anybode compiled a openvpn-server app?
Thanks!
openvpn has just one program for its peer-to-peer, client, and server modes. There is no separate server.
Hello everybody!
This is my first contribution for the O4X community. Hope you like it!
I have managed to change the Wi-Fi MAC address of my device and now I share this technique with you.
What is a MAC address?
A Media Access Control address (MAC address) is a unique identifier assigned to network interfaces for communications on the physical network segment. It may also be known as a burned-in address, an Ethernet hardware address (EHA), hardware address or physical address. (Source: Wikipedia)
Why would somebody change his/her MAC address?
- To access the internet where it is restricted to particular addresses.
- To hide his/her illegal activity. (Though this is not effective enough since the Android system sends product information and a lot of other things to the Google servers and I'm sure that previous IP addresses could be searched for if somebody does something really nasty.)
Is it legal to change the MAC address?
As far as I know, it is. However, I firmly discourage you on doing anything illegal with changed/unchanged MAC.
Let's do it!
What do you need?
- A rooted device.
- A file manager that can explore the root filesystem.
How does this exactly work?
Normally, the Wi-Fi driver gets the MAC address from the built-in chip then it writes the address to '/data/misc/wifi/config_mac'. This is done at a very early stage at bootup, I didn't check when, probably in native binaries or somewhere at the framework (though I doubt the latter). This is the original burned-in address. This cannot be changed with software modifications, but only by soldering off the chip from the motherboard and rewriting its contents. Our Wi-Fi device is a Broadcom BCM4330. It has very good built-in features and the open source driver can be found in our kernel sources. So what you have to do is editing the '/data/misc/wifi/config_mac' file with a modified address.
Before you change your MAC address in any way, turn off Wi-Fi! I recommend writing down your original address somewhere (just to be extra secured).
- If you delete the file or use an invalid one (e.g. 000000000000, ffffffffffff or 133713371337), Wi-Fi will stuck at turning on and you need to do a reboot to get it working again.
- Since the file is created everytime again at boot, it is not persistent. If you reboot, it is gone. If you would like to use it permanently, create a script (like 'echo "001122334455" > /data/misc/wifi/config_mac') with some script manager application and set it to run at each reboot.
I did not test this on CM. Since CM has the Wi-Fi module built into the kernel (Anybody knows why??), it may not work. Somebody pls try and report.
Every custom modification to devices have risks. Use this at your own risk!
Have fun and enjoy!
Hi, thanks for the support
I would like to say that I have managed to change the mac adress on the Cyanogenmod (cm10.1) by editing a file called "bcmdhd.cal", which is located in system/etc/wifi; the line is for example
macaddr=00:90:4c:c5:12:38
Click to expand...
Click to collapse
I only change the "38" with "39".
I have to edit it before installing the rom (every time I install the rom, I must say ), because my sister has another 4X, and with the same mac adress the router goes crazy
Thanks for pointing it out. :good:
Does the bcmdhd.cal editing change the MAC persistently? I assume it does.
Sent from my LG-P880
Adam77Root said:
Thanks for pointing it out. :good:
Does the bcmdhd.cal editing change the MAC persistently? I assume it does.
Sent from my LG-P880
Click to expand...
Click to collapse
yes, i change it in the zip, then after the install the wifi menu reports the new adress.
EDIT.... i found that my trick worked on the first nightlies of the cm10.1; your way does work on the stable cyanogen and last nightly
sorry for my english...
I just use MAC Address Ghost from the play store
arx-7-arbalest said:
Hi, thanks for the support
I would like to say that I have managed to change the mac adress on the Cyanogenmod (cm10.1) by editing a file called "bcmdhd.cal", which is located in system/etc/wifi; the line is for example
I only change the "38" with "39".
I have to edit it before installing the rom (every time I install the rom, I must say ), because my sister has another 4X, and with the same mac adress the router goes crazy
Click to expand...
Click to collapse
I know this is an old thread, but this post of yours just solved a problem I've been having for months.