is a text-based frontend program for interacting with
It is used to query current status,
request interactive user input.
can show the
current authentication status,
mode, dot11 and dot1x MIBs, etc.
can configure EAPOL state machine
parameters and trigger events such as reassociation
and IEEE 802.1X logoff/logon.
provides an interface to supply authentication information
such as username and password when it is not provided in the
This can be used, for example, to implement
one-time passwords or generic token card
authentication where the authentication is based on a
challenge-response that uses an external device for generating the
supports two modes: interactive and command line.
Both modes share the same command set and the main difference
is in interactive mode providing access to unsolicited messages
(event messages, username/password requests).
Interactive mode is started when
is executed without any parameters on the command line.
Commands are then entered from the controlling terminal in
response to the
In command line mode, the same commands are
entered as command line arguments.
The control interface of
can be configured to allow
non-root user access by using the
This makes it possible to run
with a normal user account.
needs authentication parameters, such as username and password,
that are not present in the configuration file, it sends a
request message to all attached frontend programs, e.g.,
in interactive mode.
shows these requests with a
is a unique identifier for the current network,
is a description of the request.
In the case of an
(One-Time Password) request,
it includes the challenge from the authentication server.
A user must supply
the needed parameters in response to these requests.
CTRL-REQ-PASSWORD-1:Password needed for SSID foobar
> password 1 mysecretpassword
Example request for generic token card challenge-response:
CTRL-REQ-OTP-2:Challenge 1235663 needed for SSID foobar
> otp 2 9876