How to actually connect to UC Davis campus wifi (Eduroam) on Linux

Update for Jammy Jellyfish users: May 2022

If you recently updated to Ubuntu 22.04 LTS (Jammy Jellyfish) you may have found yourself unable to connect to Eduroam. This seems to be due to a weird ssl issue with Eduroam that I do not currently pretend to understand but no one cares about that anyway. You want answers. Here is what worked for me which is based off of this bug report.

Open /usr/lib/ssl/openssl.cnf in your favorite text editor.
Add the following lines to the beginning of the file.

openssl_conf = openssl_init

[openssl_init]
ssl_conf = ssl_sect

[ssl_sect]
system_default = system_default_sect

[system_default_sect]
Options = UnsafeLegacyRennegotiation

Save and reboot. Attempt re-connecting with the according to this guide but use your Davis CAS credentials.

Good luck.

Pre-2022: Leaving up for archival purposes

I use Ubuntu 20.04 as my daily driver operating system at work and at home. Until recently, when I was on campus I had a really hard time consistently connecting to the Eduroam network on my Linux machine; usually resorting to guest wifi (disgusting) and requesting a new login every two weeks after my credentials expired.

A few days ago I decided I was going guest wifi cold turkey and returned to by search for any resources that might be available. The Davis IT knowledge hub suggests you run a Eduroam provided Python script configuration program. This worked on one of my machines and failed on another. Additionally, it may require storing your password in plain text (don’t do this). I had much better luck following this guide from the physics department. However it is outdated and there is one key change you must make for the instructions in this guide to work.

The guide instructs you to use a file located at /etc/ssl/certs/AddTrust_External_Root.crt as your CA certificate when configuring the connection. Unless you have an older machine this file will probably not exist. This is because this particular certificate expired in May 2020 and has been updated. Instead, make sure to use the certificate located at /etc/ssl/certs/USERTrust_RSA_Certification_Authority.pem. This path may be slightly different if you are using a different distro. Follow all other instructions provided by the physics department.

Hope this is helpful!