Start YaST as user root.

Select Network Devices+Network Settings in the YaST control center. The Network Settings dialog opens. If your network is currently controlled by NetworkManager, it can not be edited by YaST and you see a warning message. Click Ok and the Global Options tab appears. Select Traditional Method with ifup to enable editing with YaST.

Switch to the Overview tab where all network cards that have been detected by the system are listed. If you need more information about general network configuration, refer to Section 21.4, “Configuring a Network Connection with YaST”.

Choose your wireless card from the list and click Edit to open the Network Card Setup dialog.

Configure whether to use a dynamic or a static IP address under the tab Address. Usually Dynamic Address is fine.

Click Next to proceed to the Wireless Network Card Configuration dialog.

Figure 32.1. YaST: Configuring the Wireless Network Card

Configure operating mode, network name (ESSID), and authentication mode:

1. Choose the Operating Mode.

   A station can be integrated in a WLAN in three different modes. The suitable mode depends on the network in which to communicate: Ad-hoc (peer-to-peer network without access point), Managed (network is managed by an access point), or Master (your network card should be used as the access point). To use any of the WPA-PSK or WPA-EAP modes, the operating mode must be set to Managed.

2. Select a Network Name (ESSID).

   All stations in a wireless network need the same ESSID for communicating with each other. If nothing is specified, the card may automatically selects an access point, which may not be the one you intended to use. Use Scan Network for a list of available wireless networks.

3. Select an Authentication Mode.

   Select a suitable authentication method for your network: No Encryption (not preferable), WEP-Open, WEP-Shared Key, WPA-EAP (WPA version 1 or2), or WPA-PSK (WPA version 1 or2). If you select WPA authentication, a network name (ESSID) must be set. WEP and WPA-PSK authentication methods require to input a key. The key has to be entered as either a Passphrase, as an ASCII string, or Hexadecimal string. You have the following options for your key input type:

   WEP Keys

   Either enter the default key here or click WEP Keys to enter the advanced key configuration dialog. Set the length of the key to 128 bit or 64 bit. The default setting is 128 bit. In the list area at the bottom of the dialog, up to four different keys can be specified for your station to use for the encryption. Press Set as Default to define one of them as the default key. Unless you change this, YaST uses the first entered key as the default key. If the standard key is deleted, one of the other keys must be marked manually as the default key. Click Edit to modify existing list entries or create new keys. In this case, a pop-up window prompts you to select an input type (Passphrase, ASCII, or Hexadecimal). If you select Passphrase, enter a word or a character string from which a key is generated according to the length previously specified. ASCII requests an input of 5 characters for a 64-bit key and 13 characters for a 128-bit key. For Hexadecimal, enter 10 characters for a 64-bit key or 26 characters for a 128-bit key in hexadecimal notation.

   WPA-PSK

   To enter a key for WPA-PSK, select the input method Passphrase or Hexadecimal. In the Passphrase mode, the input must be 8 to 63 characters. In the Hexadecimal mode, enter 64 characters.

4. If you need detailed configuration of your WLAN connection, use the Expert Settings button. Usually there should be no need to change the preconfigured settings. You have the following options:

   Channel

   The specification of a channel on which the WLAN station should work is only needed in Ad-hoc and Master modes. In Managed mode, the card automatically searches the available channels for access points. In Ad-hoc mode, select one of the offered channels (11 to 14, depending on your country) for the communication of your station with the other stations. In Master mode, determine on which channel your card should offer access point functionality. The default setting for this option is Auto.

   Bit Rate

   Depending on the performance of your network, you may want to set a certain bit rate for the transmission from one point to another. In the default setting Auto, the system tries to use the highest possible data transmission rate. Some WLAN cards do not support the setting of bit rates.

   Access Point

   In an environment with several access points, one of them can be preselected by specifying the MAC address.

   Use Power Management

   When you are on the road, use power saving technologies to maximize the operating time of your battery. Using power management may affect the connection quality and increase the network latency.

Click Next and finish with Ok.

If you have chosen WPA-EAP authentication, another configuration step is needed before your station is ready for deployment in the WLAN.

1. Enter the credentials you have been given by your network administrator. For TLS, provide Identity, Client Certificate, Client Key, and Server Certificate. TTLS and PEAP require Identity and Password. Server Certificate and Anonymous Identity are optional. YaST searches for any certificate under /etc/cert. Therefore, save the certificates given to you to this location and restrict access to these files to 0600 (owner read and write).

2. Click Details to enter the advanced authentication dialog for your WPA-EAP setup.

3. Select the authentication method for the second stage of EAP-TTLS or EAP-PEAP communication. If you selected TTLS in the previous dialog, choose any, MD5, GTC, CHAP, PAP, MSCHAPv1, or MSCHAPv2. If you selected PEAP, choose any, MD5, GTC, or MSCHAPv2. PEAP version can be used to force the use of a certain PEAP implementation if the automatically-determined setting does not work for you.