sepastian/nmcli_eduroam_uni_passau.sh

## nmcli_eduroam_uni_passau.sh
# Setup eduroam connection using personal certificate (802-1.x WPA EAP)
# at the University of Passau.
#
# PREREQUISITES
#
# Instructions based on "Manuelle Einrichtung" [1] and Stackoverflow [2].
#
# 0) mkdir ~/.eduroam # create dir holding certificate files
# 1) download private key in PKCS#12 format [3], save as ~/.eduroam/eduroam.p12
# 2) download radius root certificate [4], save as ~/.eduroam/radius_rootcert.pem
# 3) invoke `nmcli` as shown below to add a new connection using the certificates
#
# To activate the new connection
#
# 4) nmcli connection up eduroam --ask
#
# [1] https://www.zim.uni-passau.de/dienstleistungen/netzwerk-und-server/netzwerkzugang/eduroam/fuer-uniangehoerige/linux/#c105408
# [2] https://unix.stackexchange.com/a/334675/56290
# [3] https://www.zim.uni-passau.de/dienstleistungen/netzwerk-und-server/netzwerkzugang/eduroam/fuer-uniangehoerige/eduroam-zertifikate/
# [4] https://www.zim.uni-passau.de/fileadmin/dokumente/einrichtungen/zim/dienstleistungen/Netzwerke_und_Server/eduroam/radius_rootcert.pem

# Delete an existing connection, for example, if the certificate changed.
nmcli connection delete eduroam

# Add connection for eduroam using peronal certificate and RADIUS root certificate.
nmcli connection add \
  type wifi con-name "eduroam" ifname wlp3s0 ssid "eduroam" -- \
  wifi-sec.key-mgmt wpa-eap 802-1x.eap tls 802-1x.identity "gassne10@uni-passau.de" \
  802-1x.ca-cert ~/.eduroam/radius_rootcert.pem \
  802-1x.private-key-password "gassne10" 802-1x.private-key ~/.eduroam/eduroam.p12

# Activate connection eduroam.
nmcli connection up eduroam --ask
	# Setup eduroam connection using personal certificate (802-1.x WPA EAP)
	# at the University of Passau.
	#
	# PREREQUISITES
	#
	# Instructions based on "Manuelle Einrichtung" [1] and Stackoverflow [2].
	#
	# 0) mkdir ~/.eduroam # create dir holding certificate files
	# 1) download private key in PKCS#12 format [3], save as ~/.eduroam/eduroam.p12
	# 2) download radius root certificate [4], save as ~/.eduroam/radius_rootcert.pem
	# 3) invoke `nmcli` as shown below to add a new connection using the certificates
	#
	# To activate the new connection
	#
	# 4) nmcli connection up eduroam --ask
	#
	# [1] https://www.zim.uni-passau.de/dienstleistungen/netzwerk-und-server/netzwerkzugang/eduroam/fuer-uniangehoerige/linux/#c105408
	# [2] https://unix.stackexchange.com/a/334675/56290
	# [3] https://www.zim.uni-passau.de/dienstleistungen/netzwerk-und-server/netzwerkzugang/eduroam/fuer-uniangehoerige/eduroam-zertifikate/
	# [4] https://www.zim.uni-passau.de/fileadmin/dokumente/einrichtungen/zim/dienstleistungen/Netzwerke_und_Server/eduroam/radius_rootcert.pem

	# Delete an existing connection, for example, if the certificate changed.
	nmcli connection delete eduroam

	# Add connection for eduroam using peronal certificate and RADIUS root certificate.
	nmcli connection add \
	type wifi con-name "eduroam" ifname wlp3s0 ssid "eduroam" -- \
	wifi-sec.key-mgmt wpa-eap 802-1x.eap tls 802-1x.identity "gassne10@uni-passau.de" \
	802-1x.ca-cert ~/.eduroam/radius_rootcert.pem \
	802-1x.private-key-password "gassne10" 802-1x.private-key ~/.eduroam/eduroam.p12

	# Activate connection eduroam.
	nmcli connection up eduroam --ask