Confirming; eduroam is just a huge pain to connect to and has been for a long while now; we should take any opportunity to fix the issues that are found.
Sadly, my university doesn't belong to eduroam yet, so I will be unable to test a fix; but I'll look at the code to see if there's a simple way to figure this out. Unfortunately, I suspect there may be some things to tweak in how wpasupplicant speaks to openssl for this to get fixed. Perhaps as a good data point; could you try to configure your system to use just wpasupplicant to connect to that network, and see if it works better or if there is still a need for the whole chain to be validated? This would at least confirm whether there are changes to be done in NetworkManager itself. ** Changed in: network-manager (Ubuntu) Status: New => Triaged ** Changed in: network-manager (Ubuntu) Importance: Undecided => Medium ** Changed in: network-manager (Ubuntu) Assignee: (unassigned) => Mathieu Trudel-Lapierre (mathieu-tl) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1023277 Title: Please provide option to make NetworkManager verify only the root certificate of the signed cert chain (WPA2-Enterprise) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/network-manager/+bug/1023277/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs